Skip to main content

Encrypted /home with Ubuntu 10.04

This has troubled me for quite some time now:

# adduser --encrypt-home foo
[...]
foo$ cat README.txt 
THIS DIRECTORY HAS BEEN UNMOUNTED TO PROTECT YOUR DATA.

From the graphical desktop, click on:
 "Access Your Private Data"
or
From the command line, run:
 ecryptfs-mount-private

foo$ ecryptfs-mount-private 
ERROR: Encrypted private directory is not setup properly

When adding the user via the GUI it did not work either :-\ Turns out, I had to reinstall, again:

# apt-get purge ecryptfs-utils libecryptfs0 keyutils \
          libpam-encfs encfs librlog5 libboost-*
# apt-get install libpam-encfs ecryptfs-utils

# adduser --debug --encrypt-home foo
Adding user `foo' ...
Selecting UID from range 1000 to 29999 ...
Selecting GID from range 1000 to 29999 ...
Adding new group `foo' (1001) ...
/usr/sbin/groupadd -g 1001 foo
Adding new user `foo' (1001) with group `foo' ...
/usr/sbin/useradd -d /home/foo -g foo -s /bin/bash -u 1001 foo
Creating home directory `/home/foo' ...
Setting up encryption ...
/usr/bin/ecryptfs-setup-private -b -u foo
************************************************************************
YOU SHOULD RECORD YOUR MOUNT PASSPHRASE AND STORE IT IN A SAFE LOCATION.
  ecryptfs-unwrap-passphrase ~/.ecryptfs/wrapped-passphrase
THIS WILL BE REQUIRED IF YOU NEED TO RECOVER YOUR DATA AT A LATER TIME.
************************************************************************
[...]

foo$ mount | tail -1
/home/foo/.Private on /home/foo type ecryptfs (ecryptfs_sig=521cef411f2c84b1, \
ecryptfs_fnek_sig=44158dfbb2100d2f,ecryptfs_cipher=aes,ecryptfs_key_bytes=16)

foo$ df -h .
Filesystem            Size  Used Avail Use% Mounted on
/home/foo/.Private    9.4G  2.9G  6.1G  32% /home/foo