Perils of Encrypting your Home Folder on Ubuntu

6 min readSep 16, 2020

Encrypting an existing user home folder in Ubuntu should be a single-command task, but it got tricky for me with some complications. I’ll try to explain what issues I had and how I fixed them. I used the latest LTS 20.04.1 version of Ubuntu.

First off, you’ll probably want to encrypt the whole drive instead, since some sensitive data may reside not only in your home folder but also outside of it. For instance, you should definitely encrypt the swap file in addition to home folder encryption, as the swap file may contain all kinds of sensitive information offloaded from the memory.

This article will cover both encrypting the home directory, and encrypting the swap file.

Once again, home folder encryption is tricky, and it may ruin your home folder, so first, do a backup. Please use this guide at your own risk.

Encrypting the home folder

Start with installing eCryptFS:

sudo apt install ecryptfs-utils cryptsetup

Now you’ll need an additional local administrator user to encrypt your home folder, since when you’re logged in, some of the files in this folder may be open or inaccessible. To make sure you don’t loose anything during the encryption, this process has to be done from another user. The easiest way to create one is as follows:

sudo adduser tempadmin
sudo usermod -aG sudo tempadmin

Now log out and log in using this tempadmin user. Before running the utility, make sure you have enough free space on the drive — it should be at least 2.5 times the size of your home folder you want to encrypt.

Run the utility that’s supposed to encrypt your home folder, providing the name of the user whose home folder you want to encrypt (it’s just user in my example):

sudo ecryptfs-migrate-home -u user

If you try to run the utility and it fails due to insufficient free space, it may leave an .ecryptfs folder in your /home folder. This may prevent the utility to run the second time, but at this stage it should be safe to just remove this .ecryptfs folder, clean up the free space, and restart the utility.

Perils of Encrypting your Home Folder on Ubuntu

Encrypting the home folder

Read the full story with a free account.

Written by Forketyfork

More from Forketyfork

How to Run Locally Built Docker Images in Kubernetes

While working with Kubernetes locally, you may want to run some locally built Docker images in Kubernetes. This may not work…

CentOS 8: No URLs in mirrorlist error

If you use CentOS 8, you might have noticed that starting from January 31, 2022, installing packges with yum no longer works with an error…

CentOS 8 installation: Error setting up base repository

As a follow-up to my previous article about CentOS 8 issues, I’d like to show how to fix a similar issue with a new CentOS 8 installation…

Parsing JSON Arrays as Objects with Jackson

In this article, I’ll describe a trick from the Jackson JSON parsing library that allows parsing non-typical JSON with greater flexibility.

Recommended from Medium

Use Git like a senior engineer

Git is a powerful tool that feels great to use when you know how to use it.

10 Seconds That Ended My 20 Year Marriage

It’s August in Northern Virginia, hot and humid. I still haven’t showered from my morning trail run. I’m wearing my stay-at-home mom…

Lists

General Coding Knowledge

Productivity

Staff Picks

You’re Using ChatGPT Wrong! Here’s How to Be Ahead of 99% of ChatGPT Users

Master ChatGPT by learning prompt engineering.

How I Eliminated Procrastination From My Life (Using Neuroscience)

Keep this part of the brain in optimal condition if you want to stop procrastinating.

System Design Blueprint: The Ultimate Guide

Developing a robust, scalable, and efficient system can be daunting. However, understanding the key concepts and components can make the…

5 Ways I’m Using AI to Make Money in 2023

These doubled my income last year