Jump to content

ECryptfs

From Official NixOS Wiki
Revision as of 23:57, 5 March 2023 by imported>Minion3665 (Add pkgs to the ecryptfs systemPackages expression)

eCryptfs is a cryptographic filesystem encrypting each file individually. To install ecryptfs add the following to environment.systemPackages: 

{ pkgs, ... }: {
  environment.systemPackages = with pkgs; [
    ecryptfs
    ecryptfs-helper
  ];
}

ecryptfs-helper contains utilities to facilitate e.g. encrypting your home folder, mounting it as user, and data recovery.

man ecryptfs-setup-private describes how to encrypt your home folder.

To automatically mount your private folder on login with PAM, add this to your config: 

{
  security.pam.enableEcryptfs = true;
}
Retrieved from "https://wiki.nixos.org/w/index.php?title=ECryptfs&oldid=1772"