this post was submitted on 02 Dec 2023
24 points (90.0% liked)

Linux

48122 readers
703 users here now

From Wikipedia, the free encyclopedia

Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).

Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word "Linux" in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.

Rules

Related Communities

Community icon by Alpár-Etele Méder, licensed under CC BY 3.0

founded 5 years ago
MODERATORS
nooter692@lemmy.ml
AgreeableLandscape@lemmy.ml
MarcellusDrum@lemmy.ml
cypherpunks@lemmy.ml
cyclohexane@lemmy.ml
d3Xt3r@lemmy.nz
24
Is there a tool to real-time encrypt folders? (lemmy.world)
submitted 11 months ago by wontbowyoung@lemmy.world to c/linux@lemmy.ml
13 comments fedilink hide all child comments
 

I'm looking for a veracrypt/truecrypt equivalent but at the folder-level and dynamic sizing

Something like a tool which could encrypt folders in real-time and then be able to lock it up. Truecrypt expects me to provide a size for it, I'd like something more dynamically sizeable based on the files I store in it.

Even just a tool that encrypts files written into it and converts them to other files works with me

top 13 comments
sorted by: hot top controversial new old
[–] cvf@kbin.social 11 points 11 months ago

CryFS does what you want, it's the default used by the KDE Vaults feature.

there's also a comparison page on the site, comparing it to other solutions.

[–] TCB13@lemmy.world 9 points 11 months ago* (last edited 11 months ago) (1 children)

Here's a table with multiple solutions and comparisons: https://www.cryfs.org/comparison

Just be aware that some solutions like gocryptfs are provided on a user-space filesystem (Fuse). This has a very low performance and most importantly if you require inotify on the decrypted data for some application then it won't be available. In short inotify is what allows apps to watch a filesystem for changes and act accordingly in real time.

[–] AProfessional@lemmy.world 15 points 11 months ago (1 children)

Tables like this suck. They are made by one of the projects in the comparison and they include no data.

[–] TCB13@lemmy.world 2 points 11 months ago

Better than nothing. :)

[–] HarriPotero@lemmy.world 4 points 11 months ago

Sounds like you're looking for EncFS.

It'll leak the size and structure of whatever you have there. Filenames and content are encrypted.

[–] AbidanYre@lemmy.world 2 points 11 months ago (1 children)

Tomb might fit your needs

https://dyne.org/software/tomb/

[–] wontbowyoung@lemmy.world 2 points 11 months ago* (last edited 11 months ago) (1 children)

Thanks I will look into it. But tomb also seems to not have dynamic sizing

[–] AbidanYre@lemmy.world 3 points 11 months ago (1 children)

You can increase the size of a tomb, but IIRC it's an offline process.

[–] wontbowyoung@lemmy.world 2 points 11 months ago

Yeah, I think as of now I will go for it

[–] theit8514@lemmy.world 2 points 11 months ago

I have used gocryptfs (https://github.com/rfjakob/gocryptfs) in the past, it creates an overlay mount that encrypts each dir and file separately, so no need to precreate a container. There are some security downsides to this approach though so be aware of that. https://nuetzlich.net/gocryptfs/threat_model/

[–] bizdelnick@lemmy.ml 1 points 11 months ago

EncFS, CryptoFS, eCryptFS...

[–] 0xtero@kbin.social 1 points 11 months ago

gpg-zip maybe?
https://www.gnupg.org/documentation/manuals/gnupg/gpg_002dzip.html

[–] uis@lemmy.world 0 points 11 months ago

Ext4 encryption