1mount.ecryptfs_private(1) eCryptfs mount.ecryptfs_private(1)
2
3
4
6 mount.ecryptfs_private - eCryptfs private mount helper.
7
8
10 mount.ecryptfs_private
11
12 NOTE: This program will not dynamically load the relevant keys. For
13 this reason, it is recommended that users use ecryptfs-mount-private(1)
14 instead!
15
16
18 mount.ecryptfs_private is a mount helper utility for non-root users,
19 who are members of ecryptfs group, to cryptographically mount a private
20 directory, ~/Private.
21
22 If, and only if:
23 - the private mount passphrase is in their kernel keyring, and
24 - the current user owns both ~/.Private and ~/Private, and
25 - ~/Private is not already mounted, then
26
27 This program will:
28 - mount ~/.Private onto ~/Private
29 - as an ecryptfs filesystem
30 - using the AES cipher
31 - with a key length of 16 bytes
32 - using the passphrase whose signature is in ~/.ecryptfs/Private.sig
33
34 The only setuid operation in this program is the call to mount(8).
35
36 The ecryptfs-setup-private(1) utility will create the ~/.Private and
37 ~/Private directories, generate a mount passphrase, wrap the
38 passphrase, and write the ~/.ecryptfs/Private.sig.
39
40 The system administrator can add the pam_ecryptfs.so module to the PAM
41 stack which will automatically use the login passphrase to unwrap the
42 mount passphrase, add the passphrase to the user's kernel keyring, and
43 automatically perform the mount. See pam_ecryptfs(8).
44
45
47 ~/.Private - underlying directory containing encrypted data
48
49 ~/Private - mountpoint containing decrypted data (when mounted)
50
51 ~/.ecryptfs/Private.sig - file containing signature of mountpoint
52 passphrase
53
54 ~/.ecryptfs/wrapped-passphrase - mount passphrase, encrypted with the
55 login passphrase
56
57
59 ecryptfs(7), ecryptfs-rewrap-passphrase(1), ecryptfs-setup-private(1),
60 keyctl(1), mount(8), umount.ecryptfs_private(1), pam_ecryptfs(8)
61
62 /usr/share/doc/ecryptfs-utils/ecryptfs-faq.html
63
64 http://launchpad.net/ecryptfs/
65
66
68 This manpage and the mount.ecryptfs_private utility was written by
69 Dustin Kirkland <kirkland@canonical.com> for Ubuntu systems (but may be
70 used by others). Permission is granted to copy, distribute and/or mod‐
71 ify this document under the terms of the GNU General Public License,
72 Version 2 or any later version published by the Free Software Founda‐
73 tion.
74
75 On Debian systems, the complete text of the GNU General Public License
76 can be found in /usr/share/common-licenses/GPL.
77
78
79
80ecryptfs-utils 2008-07-21 mount.ecryptfs_private(1)