Ecryptfs Encrypted Home Folder - Remote Reboot possible

From wiki.linuxonlinehelp.eu
Jump to navigation Jump to search
  • First Backup ALL DATA of HOME to a external DISK, NAS or USB Stick!
  • Open a Console and Enter:
  • Install and load ecryptfs
$ sudo apt-get install ecryptfs-utils
$ sudo modprobe ecryptfs

Add permanent to System Kernel on Boot

$ sudo nano /etc/modules  #insert here the word "ecryptfs" without quotes
$ sudo update-initramfs -u -k all
  • Migrate User
$sudo ecryptfs-migrate-home -u yourusername
  • Test Login as User!
  • If successful remove old Data
$sudo rm /home/username.XFSVDVSDV #where XFSVDVSDV is a random Value! 
  • Encrypt SWAP
$sudo apt-get install cryptsetup
$sudo ecryptfs-setup-swap

Overnight overwrite ALL Free Space on the Disk, with create a File with zero's inside, overwrite and purge it on the End!

$sudo dd if=/dev/null of=/zerofileplaceholder.img && rm -rf /zerofileplaceholder.img 

Remark:

  • If Home is a own Disk/Partition set to "/home/zerofileplaceholder.img"