我最近使用 ecryptfs 加密了我的主目录chris。我的理解是,我的加密文件存储在其中,当我想查看它们时,/home/.ecryptfs/chris/.Private它们会被挂载到那里。/home/chris
我刚刚启动了我的 Windows 分区,以查看是否仍然可以访问我的文件,并注意到我的主目录现在包含:
chris/
chris.wyDpBnFC/
.ecryptfs
现在,我感到困惑的是,该chris.wyDpBnFC/目录似乎是我可以读取的主目录的未加密副本?为什么会存在这个目录?ecryptfs 是否自动创建了它?我是否应该删除它,这样我的文件就无法被读取,除非使用我的密钥解密?
答案1
显然,你跑了ecryptfs-迁移-主页,最后印有以下说明:
========================================================================
Some Important Notes!
1. The file encryption appears to have completed successfully, however,
chris MUST LOGIN IMMEDIATELY, _BEFORE_THE_NEXT_REBOOT_,
TO COMPLETE THE MIGRATION!!!
2. If chris can log in and read and write their files, then the migration is complete,
and you should remove /home/chris.wyDpBnFC.
Otherwise, restore /home/chris.wyDpBnFC back to .
3. chris should also run 'ecryptfs-unwrap-passphrase' and record
their randomly generated mount passphrase as soon as possible.
4. To ensure the integrity of all encrypted data on this system, you
should also encrypt swap space with 'ecryptfs-setup-swap'.
========================================================================
您需要返回并实际执行步骤(2);-)
全面披露:我是加密文件系统。