Secure your data with gocryptfs

25th May 2023 security 2023 password

Are you thinking to encrypt some important data? Then you can use gocryptfs...

1. Install Gocryptfs on Linux

Install gocryptfs: apt-get install gocryptfs
Once installed we can validate the version used with the following command: gocryptfs -version

2. Creating an Encrypted Directory

Create a directory to contain the files and subdirectories you are protecting (to hold the encrypted data). mkdir secretdir
Use gocryptfs to initialize that directory. gocryptfs -init secretdir
Choose a password for protecting your files. Password: yourpassword

Your master key is generated and displayed. Copy and save this somewhere safe and private.

If you change into the new directory, you’ll see two files have been created.
- The ''gocryptfs.diriv'' is a short binary file, while ''gocryptfs.conf'' contains settings and information you should keep safe.
- With sufficient time and effort, it might be possible to extract your password from the "encrypted key" and "salt" entries,

ini process

3. Mounting the Encrypted Directory

The encrypted directory is mounted on a mount point, which is simply an empty directory. We are going to create one called ''subdir''
We can now mount the encrypted directory on the mount point. Strictly speaking, what’s actually mounted is the gocryptfs file system inside the encrypted directory. We’re prompted for the password. gocryptfs secretdir subdir
When the encrypted directory is mounted, we can use the mount point directory the same as we would any other. Anything we edit and create in this directory is actually written to the mounted, encrypted directory.
We can create a simple text file, like the following: touch mysecretfile.txt
We can edit it, add some content to it, and then save the file.
If we switch to our encrypted directory as shown below, we see that a new file with an encrypted name has been created.

encrypted

If we try to view the contents of the encrypted file, we can see that it is really encrypted:

cat encrypted

4. Unmount the encrypted directory

When you are done with your encrypted directory, you can unmount it with the fusermount command. As part of the FUSE package, the following command removes the gocryptfs File system within the encrypted directory of the mount point. fusermount -u subdir
You can check your mount point directory, you’ll see that it’s still empty.

unmount

Everything you did is safely stored in the encrypted directory.

Previous Post Next Post

Evolutivo.FW Blog

Here we try to inform about all the action that is happening on the development of the main project and all its' satellite applications in a more human understandable form and also create a space where we can talk about our opinions and future ideas for EvolutivoFW. Welcome!

Random Article

I'm Feeling Lucky!

Popular Tags

functionality development 2023 2024 customizations security password evolutivo gdpr document gendoc integration big data limit support global variable menu settings configuration drag drop drag and drop database optimization relation tiddlywiki release fork filter custom view permission mail converter mail scanner workflow archive hide teleport sso mautic complexity salesforce comparison onlyoffice widget cache

Syndicate

Atom 1.0 RSS