Verschluesselung:encfs: Unterschied zwischen den Versionen
Cbs (Diskussion | Beiträge) |
Cbs (Diskussion | Beiträge) (→EncFS) |
||
Zeile 1: | Zeile 1: | ||
==EncFS== | ==EncFS== | ||
− | TODO | + | {{TODO|hinzufuegen: encfs-container erstellen}} |
+ | ===Create encfs-container=== | ||
+ | |||
+ | Create a new encrypted filesystem. Store the raw (encrypted) data in "~/.crypt" , and make the | ||
+ | unencrypted data visible in "~/crypt". Both directories are in the home directory in this example. | ||
+ | This example shows the full output of encfs as it asks the user if they wish to create the filesystem: | ||
+ | <pre> | ||
+ | encfs ~/.crypt ~/crypt | ||
+ | Directory "/home/me/.encfs" does not exist, create (y,n)?y | ||
+ | Directory "/home/me/encfs" does not exist, create (y,n)?y | ||
+ | Creating new encrypted volume. | ||
+ | Please choose from one of the following options: | ||
+ | enter "x" for expert configuration mode, | ||
+ | enter "p" for pre-configured paranoia mode, | ||
+ | anything else, or an empty line will select standard mode. | ||
+ | ?> | ||
+ | |||
+ | Standard configuration selected. | ||
+ | Using cipher Blowfish, key size 160, block size 512 | ||
+ | New Password: <password entered here> | ||
+ | Verify: <password entered here> | ||
+ | </pre> | ||
+ | The filesystem is now mounted and visible ('''UN-encrypted''') in ~/encfs. If files are created there, they can be | ||
+ | seen in encrypted form in ~/.encfs. To unmount the filesystem, use fusermount with the -u | ||
+ | (unmount) option: | ||
+ | fusermount -u ~/encfs | ||
===Mount sshfs=== | ===Mount sshfs=== |
Version vom 27. November 2008, 07:20 Uhr
Inhaltsverzeichnis
EncFS
TODO: hinzufuegen: encfs-container erstellen |
Create encfs-container
Create a new encrypted filesystem. Store the raw (encrypted) data in "~/.crypt" , and make the unencrypted data visible in "~/crypt". Both directories are in the home directory in this example. This example shows the full output of encfs as it asks the user if they wish to create the filesystem:
encfs ~/.crypt ~/crypt Directory "/home/me/.encfs" does not exist, create (y,n)?y Directory "/home/me/encfs" does not exist, create (y,n)?y Creating new encrypted volume. Please choose from one of the following options: enter "x" for expert configuration mode, enter "p" for pre-configured paranoia mode, anything else, or an empty line will select standard mode. ?> Standard configuration selected. Using cipher Blowfish, key size 160, block size 512 New Password: <password entered here> Verify: <password entered here>
The filesystem is now mounted and visible (UN-encrypted) in ~/encfs. If files are created there, they can be seen in encrypted form in ~/.encfs. To unmount the filesystem, use fusermount with the -u (unmount) option:
fusermount -u ~/encfs
Mount sshfs
Mounte das entfernte verzeichnis, das den encfs-container enthaelt (.../.encfs), in deinen lokalen mountpoint
sshfs -o reconnect -o sshfs_sync [-o IdentityFile=/path/to/.ssh/id_rsa] root@DEST-SYS:/home/backups/koblenz /path/to/mountpoint/sshfs-mount
Mount encfs-container
Mounte (und entschluessele) den entfernten, verschluesselten container (..../.encfs)
echo 'S3CUR3-P4SS-incl.!' | encfs --stdinpass /path/to/mountpoint/sshfs-mount/.encfs /path/to/mountpoint/sshfs-mount/unencrypted_.encfs
Umount both
nach diesen beiden aktionen hat man in /path/to/mountpoint/sshfs-mount/unencrypted_.encfs/... die entschluesselten daten liegen. nun kann man seine daten nach /path/to/mountpoint/sshfs-mount/unencrypted_.encfs/ kopieren
danach macht man einen umount auf das 'encfs' und danach auf sshfs
# umount encfs fusermount -u /home/csteidl/1/g-file-sshfs-mount/mnt # umount sshfs umount /home/csteidl/1/g-file-sshfs-mount