I think I want root to be able to mount/access the directories so that
the data can be included in a backup set (which is then piped through
openssl for encryption) on a file-by-file basis rather than just
backing
up a filesystem image and risking the whole thing if that image
becomes
corrupted.
Most of your requests are pretty common and come up frequently enough
you should be able to find the answers, but this part makes me
wonder. So how does root have the key? Do you type it in everytime
you do a backup or is there a file called "dontreadthis" in /root?
You could maybe do some tricks with cfs but it's a guaranteed shot in
the foot.
Ideas? What do others do to secure /home?
I don't let people steal my computers.