1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Directory Encryption

Discussion in 'Linux & Open Source' started by NachT, Oct 14, 2018.

  1. NachT

    Wise Guy

    Joined: May 20, 2006

    Posts: 1,045

    Hey all,

    I'll start off by warning you I've been an avid Windows user for the past forever, and have just recently started using Linux (Ubuntu 18 to be exact).

    What i'm looking for is a good recommendation for a package/app used to encrypt entire directories on Linux, the app name will be enough, I can research how to utilise the rest.

    Some key points to be aware of:

    - I'll be using the suggested package to encrypt all of my consolidated backups off-site. This is currently around 800GB of data, and can include any file type.

    - The location of the data will be sitting on a two drive RAID1 array

    - The data will be accessed and written to via a samba share

    On Windows, I use TrueCrypt which has been amazing, so I'm looking for something similar to this for Linux.

    My main concern is, if whatever package is suggested creates an encrypted 'container', this container will have to be decrypted and mounted, during this stage would the utilised space double on the drive? As it would have to be re-encrypted, then that 1 whole 800GB file would have to re-sync to the other RAID1 drive. Also, if the usage space double during decryption, I wouldn't have the drive space for this to happen.

    Also, CLI only as this is on a Ubuntu Server. No GUI suggestions please :)
    Thanks!
     
  2. Hades

    Capodecina

    Joined: Oct 19, 2002

    Posts: 20,739

    Location: Surrey and London

    Most distros will offer to encrypt your home directory at the point of install.

    Also KDE Plasma (used by KDE Neon, Kubuntu, OpenSUSE and other KDE Plasma based distros) offers something called a 'vault' which will encrypt certain folders if you want it to.
     
  3. SupraWez

    Wise Guy

    Joined: Nov 17, 2007

    Posts: 1,705

    TrueCrypt is now VeraCrypt and is available in the Ubuntu software app, looks and works the same as TrueCrypt on Windows but can't do encrypted boot drive, it can also work directly with TrueCrypt encrypted files.
     
  4. Ice Tea

    Mobster

    Joined: Nov 1, 2004

    Posts: 2,801

    I thought Ubuntu had it's own Gnome folder encryption?
     
  5. SMN

    Wise Guy

    Joined: Nov 2, 2008

    Posts: 2,391

    Location: The ether

    Use ecryptfs and let it do the rest? http://ecryptfs.org/

    I have my nextcloud data directory hosted in ecryptfs, and I then use CrashPlan to replicate the encrypted data copy up to Crashplans servers (where they are again encrypted with a second private key).
     
  6. illuz

    Mobster

    Joined: Apr 27, 2012

    Posts: 3,224

    VeraCrypt Container all day.
     
  7. NachT

    Wise Guy

    Joined: May 20, 2006

    Posts: 1,045

    Thanks for all the feedback guys,

    I tried ecryptfs, which actually does seem pretty amazing. But in my case it wasn't working correctly. I was using an ecryptfs'ed Directory within a samba share, then trying to upload files from Windows systems, which worked fine, unless the files were over around 4GB whih seemed to crash out.

    I've opted for the VeraCrypt container solution, which is working perfectly :D Getting great read/write speeds from it from both Linux and Windows systems. Only downside is I might need to increase the container size later down the line, but that's no big deal I suppose :)