[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[ale] Encrypting FS by a normal user? to protect from root?

Subject: [ale] Encrypting FS by a normal user? to protect from root?
From: bpitts at learnlink.emory.edu (Brian Pitts)
Date: Fri, 16 Mar 2007 18:06:21 -0400
In-reply-to: <[email protected]>
References: <[email protected]> <[email protected]> <[email protected]>

Atlanta Linux Enthusiasts wrote:
> The good news is you also made me think about using EncFS to expose an
> encrypted and non-encrypted FS on my local machine.  I could backup to
> the non-encrypted version, then rsync the encrypted version to the
> remote site. That is sounding fairly safe and I don't think any
> individual files are over the size of a DVD ISO so I don't need too
> much extra space.
The main downside  I see is that you end up storing the data twice 
locally, in encrypted and unencrypted form. What I would try is mounting 
dreamhost using sshfs, then creating the encrypted directory directly on 
it. Something like

mkdir ~/dreamhost
sshfs me at dreamhost.com: ~/dreamhost
mkdir ~/dreamhost/encrypted ~/unencrypted
encfs ~/dreamhost/encrypted ~/unencrypted
rsync -av ~/dataToBackup ~/unencrypted

You could take the same approach and mount an encrypted loopback device 
over sshfs.

-Brian

Follow-Ups:
- [ale] Encrypting FS by a normal user? to protect from root?
  - From: greg.freemyer at gmail.com (Greg Freemyer)

References:
- [ale] Encrypting FS by a normal user? to protect from root?
  - From: greg.freemyer at gmail.com (Greg Freemyer)
- [ale] Encrypting FS by a normal user? to protect from root?
  - From: Jeremy.Bouse at UnderGrid.net (Jeremy T. Bouse)

Prev by Date: [ale] OT fairtax isn't
Next by Date: [ale] Encrypting FS by a normal user? to protect from root?
Previous by thread: [ale] Encrypting FS by a normal user? to protect from root?
Next by thread: [ale] Encrypting FS by a normal user? to protect from root?
Index(es):
- Date
- Thread