Mounting Encrypted Home Directories

From Pterodactylus
Revision as of 00:21, 26 November 2011 by Bombe (talk | contribs) (Make it clear that the unwrapped passphrase needs to be specified everywhere from now on.)
Jump to: navigation, search

Unwrap the old passphrase to get the mount passphrase: 

   ecryptfs-unwrap-passphrase /old/.ecryptfs/user/wrapped-passphrase

Use the resulting passphrase whenever the next commands ask you for a passphrase.

Now generate the kernel session keys: 

   ecryptfs-add-passphrase --fnek

The value in brackets on the second line is the one to remember. Now mount the .Private directory: 

   mount -t ecryptfs /old/.ecryptfs/user/.Private /mnt/old

As passphrase enter the mount passphrase from above. Choose aes, 16, answer no to plaintext passthrough, yes to filename encryption and enter the value I told you to remember earlier.

Done.

Retrieved from "https://wiki.pterodactylus.net/index.php?title=Mounting_Encrypted_Home_Directories&oldid=25"