cryptsetup dm_mod
Todd Zullinger
tmz at pobox.com
Tue Oct 20 23:56:06 UTC 2009
Rick Stevens wrote:
> You can only encrypt entire devices (e.g. partitions), not
> individual directories or directory trees.
>
> I'm not sure how your partitioning is set up, but if you used the
> default, then you have a "/boot" partition and a "/" partition
> (which contains the /home directory). If that's the case, you can
> only encrypt /, not /home or /home/jd or /home/jd/Documents.
>
> In other words, you can only encrypt items starting with "/dev" in
> the first column of the output of the "mount" command. There are
> exceptions (encrypted NFS volumes and the like), but for 95% of the
> world, the preceeding is true.
An alternative for François would be to create a loopback filesystem
and encrypt that. The result can be mounted at /home/jd/Documents/.
Another alternative would be fuse-encfs.
IMHO, I think encrypting / is the best all-around option.
--
Todd OpenPGP -> KeyID: 0xBEAF0CE3 | URL: www.pobox.com/~tmz/pgp
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
The more corrupt the state, the more numerous the laws.
-- Tacitus, Roman senator and historian (A.D. c.56-c.115)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 542 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-list/attachments/20091020/6870ac6f/attachment-0001.sig>
More information about the fedora-list
mailing list