On Thu, 7 Apr 2005, Kevin Saenz wrote: > Hi all, > > I would like to encrypt /home and my shared directories on my boxes. > Would I have to reformat them with an encrypt option? What is the over > head with encrypted FS? Is it advisable to share encrypted fs using > samba or would there be too much of an over head? Do I have to do a > lot of house keeping on the file systems?
What do you want to get out of this? I suspect that once the filesystem's mounted (encrypted or not) then it's available as per normal to all users of the system, furthermore, if you're only using it to export via samba then I can't see much point. If the system knows how to mount it on startup then it's like leaving the key in the front door. If on the other hand each user's home directory was a separate encrypted filesystem somehow mounted by using the password supplied to samba or some other method (maybe a web interface that asks for a passphrase to mount/unmount?) that might be worth looking into, the point is the password's not stored on the system. As for the overhead.. dunno haven't experimented although I believe CPU's that support MMX stuff crunch crypto better (ie gets farmed off to the MMX sub-processor). Rest assured though, there will be some overhead. -- ---<GRiP>--- Grant Parnell - SLUG President EverythingLinux services - the consultant's backup & tech support. Web: http://www.elx.com.au/support.php We're also busybits.com.au and linuxhelp.com.au and everythinglinux.com.au. Phone 02 8756 3522 to book service or discuss your needs or email us at paidsupport at elx.com.au ELX or its employees participate in the following:- OSIA (Open Source Industry Australia) - http://www.osia.net.au AUUG (Australian Unix Users Group) - http://www.auug.org.au SLUG (Sydney Linux Users Group) - http://www.slug.org.au LA (Linux Australia) - http://www.linux.org.au -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
