Slashdot Mirror

← Back to Stories (view on slashdot.org)

Encrypt Filesystems with EncFS and Loop-AES

Posted by ryuzaki0 on from the no-peeking dept.

Linux.com (Slashdot sister site) has a quick look a file encryption using EncFS and Loop-AES as examples before briefly examining other options. From the article: "you can find a number of options for filesystem encryption in Linux exist, depending on your needs. The most important thing when choosing which one to use is to be clear about your needs. Will the size of the files you need to encrypt grow or stay static? Do you need to encrypt certain files or entire partitions? What level of security do you need? Answers to these questions will help determine the most appropriate program to use."

2 of 63 comments (clear)

  1. eCryptfs by omnirealm · · Score: 5, Informative

    Don't forget this new competitor: eCryptfs, mostly written and supported by IBM, and fully GPL:

    http://ecryptfs.sf.net/

    It's all in the kernel, which means that shares memory mapping work (unlike userspace filesystems), and it keeps metadata on a per-file basis, which is *really* nice for things like incremental backup utilities.

    --
    An unjust law is no law at all. - St. Augustine
  2. Re:Why I'll never use kernel level encryption agai by sholden · · Score: 5, Informative

    Why bother waiting so long:

    1. boot into the old kernel/backout the upgrade.
    2. Mount encrypted filesystem and copy data elsewhere
    3. Create encrypted filesystem such that you don't get deprecated warnings.
    4. Copy the data back.

    I really can't understand continuing with something marked deprecated anyway - certainly not doing an upgrade while doing so. What do you think deprecated means? I'd be doing steps 2-4 as soon as the deprecated option was needed.