No ecryptfs-util in CentOS 7?

Support for security such as Firewalls and securing linux
XG Dong
Posts: 13
Joined: 2014/09/04 19:20:39

No ecryptfs-util in CentOS 7?

Post by XG Dong » 2014/09/12 17:25:58

Hi,

Just about to install this package but it says "No package ecryptfs-utils available".

Shall I download source code from ecyptfs.org and manually install it?

Another thing confuses me is that no people on the internet was asking about this!

User avatar
TrevorH
Site Admin
Posts: 33202
Joined: 2009/09/24 10:40:56
Location: Brighton, UK

Re: No ecryptfs-util in CentOS 7?

Post by TrevorH » 2014/09/12 17:44:19

It's listed in the RHEL 7 release notes as deprecated I think.
The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke

XG Dong
Posts: 13
Joined: 2014/09/04 19:20:39

Re: No ecryptfs-util in CentOS 7?

Post by XG Dong » 2014/09/13 18:12:20

TrevorH wrote:It's listed in the RHEL 7 release notes as deprecated I think.
Oh...well. I had a rough look through the redhat security guide, did not find an equivalent alternative for ecryptfs...openssl can do file encryption but it seems not to be on-the-fly.

User avatar
TrevorH
Site Admin
Posts: 33202
Joined: 2009/09/24 10:40:56
Location: Brighton, UK

Re: No ecryptfs-util in CentOS 7?

Post by TrevorH » 2014/09/13 20:09:49

I believe it's recommended to use luks instead.
The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke

XG Dong
Posts: 13
Joined: 2014/09/04 19:20:39

Re: No ecryptfs-util in CentOS 7?

Post by XG Dong » 2014/09/14 12:19:51

TrevorH wrote:I believe it's recommended to use luks instead.
I do not think LUKS does the job. It is more like another layer of "boot password", after that data is written as normal. I need an encryption layer like ecryptfs.

owl102
Posts: 413
Joined: 2014/06/10 19:13:41

Re: No ecryptfs-util in CentOS 7?

Post by owl102 » 2014/09/14 12:43:18

XG Dong wrote:after that data is written as normal.
Where did you get this information? LUKS does encryption, see for example http://en.wikipedia.org/wiki/Linux_Unified_Key_Setup
German speaking forum for Fedora and CentOS: https://www.fedoraforum.de/

XG Dong
Posts: 13
Joined: 2014/09/04 19:20:39

Re: No ecryptfs-util in CentOS 7?

Post by XG Dong » 2014/09/15 17:16:42

owl102 wrote:
XG Dong wrote:after that data is written as normal.
Where did you get this information? LUKS does encryption, see for example http://en.wikipedia.org/wiki/Linux_Unified_Key_Setup
https://access.redhat.com/documentation ... ption.html
Read this section: "What LUKS does not do"

User avatar
TrevorH
Site Admin
Posts: 33202
Joined: 2009/09/24 10:40:56
Location: Brighton, UK

Re: No ecryptfs-util in CentOS 7?

Post by TrevorH » 2014/09/15 17:25:49

Yes and "file level encryption" means encrypting files individually which luks does not do. What luks does is encrypt the entire block device and any files that are stored on top of that block device. The files are encrypted because they are on an encrypted filesystem.
The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke

XG Dong
Posts: 13
Joined: 2014/09/04 19:20:39

Re: No ecryptfs-util in CentOS 7?

Post by XG Dong » 2014/09/16 08:29:20

TrevorH wrote:Yes and "file level encryption" means encrypting files individually which luks does not do. What luks does is encrypt the entire block device and any files that are stored on top of that block device. The files are encrypted because they are on an encrypted filesystem.
Let's say my computer is somehow stolen, I have the disk encrypted with LUKS, BIOS boot password, is my data safe any more? I am not talking about brute force cracking my pass phrase. Say if someone just plug my hard drive into another computer, will he be able to read my files?

drk
Posts: 405
Joined: 2014/01/30 20:38:28

Re: No ecryptfs-util in CentOS 7?

Post by drk » 2014/09/16 08:35:33

XG Dong wrote: Say if someone just plug my hard drive into another computer, will he be able to read my files?
No.

Post Reply