Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in
Moving from Ubuntu to Gentoo: eCryptfs home folder?
View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Installing Gentoo
View previous topic :: View next topic  
Author Message
Q-collective
Advocate
Advocate


Joined: 22 Mar 2004
Posts: 2056

PostPosted: Tue Dec 31, 2013 12:05 am    Post subject: Moving from Ubuntu to Gentoo: eCryptfs home folder? Reply with quote

I'm transitioning back to Gentoo from Ubuntu. My /home is on a separate partition and my ~ is encrypted via ecryptfs. I tried to chown -R both the ~ and the /home/.ecryptfs with my username, but I can't unlock the ecryptfs ~ with my usual passphrase. When I boot back into Ubuntu and revert the chown I can login back fine as normal. What extra steps need to be taken here?

What I already did:
- I made sure I loaded the ecryptfs module (I'm running genkernel)
- I'm on 3.12.6 Gentoo sources
- I setup my /etc/pam.d/system-auth as per the instructions here

What I'm getting:
- When I login I get:
Code:
Signature not found in user keyring
Perhaps try the interactive 'ecryptfs-mount-private'

- When I try to run ecryptfs-mount-private:
Code:
$ ecryptfs-mount-private
Enter your login passphrase:
Inserted auth tok with sig into the user session keyring
setreuid: Operation not permitted

- When I use ls I get:
Code:
Access-Your-Private-Data.desktop README.txt


Again, when I go back to Ubuntu and re-chown the two directories, it works as expected. So, I'm missing something...
Back to top
View user's profile Send private message
Q-collective
Advocate
Advocate


Joined: 22 Mar 2004
Posts: 2056

PostPosted: Tue Dec 31, 2013 12:27 am    Post subject: Reply with quote

OK, after helpful advise from tamiko on irc, I remerged ecryptfs-utils with the suid USE flag and rebooted the system.

We have progress, but not quite a solution yet: Wen I login I still have to run "ecryptfs-mount-private" manually and cd again in ~ to actually see the files. This works I suppose when logging in from console, but this is a desktop and I rather login from KDM directly in one go.
Back to top
View user's profile Send private message
msst
Apprentice
Apprentice


Joined: 07 Jun 2011
Posts: 216

PostPosted: Tue Dec 31, 2013 2:22 pm    Post subject: Reply with quote

Well I don't have the solution, but a workaround may be to use pam-mount, I use that for some individual loop-aes mounts and it works pretty transparent.

This can be configured in some xml config file to tell it how and what to mount Potter login. Documentation for that pam module is ok.
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Installing Gentoo All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum