Users installing from Ubuntu 9. Other users can run sudo ecryptfs-setup-swap. This is critically important, because your home directory data will appear as cleartext in memory, as the kernel reads your encrypted data. If the kernel swaps this data to disk, it could potentially leak your decrypted data back to disk, totally defeating your Encrypted Home. Encrypted Swap solves this problem.
However: Hibernation will not work. Actually, hibernation will work just fine. But you can't resume. There are ways around this, but it involves choosing a password to use for your swap encryption, and entering that password every time you boot your system, and sharing that password with anyone else that might want to resume the system.
This is a known, wishlist issue that we hope to solve for Ubuntu You may be able to avoid these problems by running without a swapfile. Set a password by clicking the password box. The account is disabled until you apply a password. Run the following command to encrypt your home directory, replacing user with the name of your user account: sudo ecryptfs-migrate-home -u user. In summary, the notes say:.
You must log in as the other user account immediately — before a reboot! A copy of your original home directory was made. Learn more. When installing I'm given the option of encrypting my home folder -- what does this do? Ask Question. Asked 11 years, 3 months ago. Active 3 years, 4 months ago. Viewed 82k times. Does encrypting my home folder make my computer more secure?
Do I have to enter my password more if my home folder is encrypted? What else should I know about encrypting my home folder? Improve this question. David Siegel David Siegel 8, 10 10 gold badges 32 32 silver badges 34 34 bronze badges. Add a comment. Active Oldest Votes. Simply Encrypting your home folder doesn't actually make your computer more secure - it simply makes all the files and folders in your home folder more secure from unauthorized viewing.
Your computer is still "vulnerable" in a security standpoint - but it becomes very difficult for your content to be stolen unless the attacker has your password. You won't need to actually enter your password any more than you normally do - when you log in to your computer your files are seamlessly decrypted for just your session. There is a possibility depending on your computers hardware that this will affect the performance on your machine. If you're worried about performance more than security and you're on an older machine you may wish to disable this feature.
Technically Ubuntu uses "eCryptfs" which stores all the data in a directory this case the home folders as encrypted data. Improve this answer. Marco, thank you for your answer, you seem to have an excellent grasp of home folder encryption. Just for the benefit of less technical users, can you spare me all the technical detail and answer the question as if I were asking as a computer-illiterate user?
Thank you! There are some formatting quirks, though — David Siegel. Also note that if you dual-boot, it makes accessing your Linux partition from your secondary OS much more difficult.
If someone has your password then it's game over.
0コメント