Suggestion: GUI frontend(s) for ecryptfs-utils
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
eCryptfs |
Triaged
|
Wishlist
|
Unassigned | ||
ecryptfs-utils (Debian) |
Fix Released
|
Unknown
|
|||
ecryptfs-utils (Ubuntu) |
Triaged
|
Wishlist
|
Michael Rooney |
Bug Description
Binary package hint: ecryptfs-utils
This is a request from the user, suggested in the Discussion section of the EncryptedPrivat
* https:/
This suggestion has been moved here, as a wishlist bug.
Below is the text of the discussion, copied and pasted from that wiki page:
----
markc-qsiuk says:
* I hope there will also be an option for the ~/Private directory to ''not'' be mounted at login, together with a user-friendly mechanism to (un)mount it explicitly when needed. As it stands at the moment, some hypothetical future browser exploit could simply harvest any files in ~/Private knowing that they're likely to contain usernames and passwords. As the browser is running under the auspices of the user, it would be able to read the content of the ~/Private directory. I'd rather leave my private data encrypted, and just mount the directory on-demand when I need to. Ideally I'd like both Nautilus and the Gnome fileselector to know about the ~/Private directory and prompt me to mount it (requesting my password) when I try to open it. I suppose that, in essence, I would like access to my privately encrypted files to be much like trying to do something as an administrator - I should be prompted for a password to confirm that I am who I say I am, and that I am explicitly giving permission for the file(s) to be accessed.
kirkland says:
* I have opened wiki:Bug:256154 to support configurable mounting/unmounting of ~/Private. With the patch attached to that bug, this will be handled by the pam_ecryptfs module checking for the existence of a file, ~/.ecryptfs/
markc-qsiuk says:
* Thanks for that additional information. The solution for mounting an unmounted Private directory seems reasonable (at least as a starting point). I'm not sure I would describe "just run ecryptfs.
MikeRooney:
* I will be happy to make a basic user interface in python-gtk2, if someone can give me the basic requirements of it.
markc-qsiuk:
* I think that for a basic UI there are two things required: (1) an indication of the current state of the private directory (mounted or unmounted), and (2) a means to switch to the opposite state. A configuration screen to enable or disable auto-mounting of the directory via the GUI would also be good. A Gnome panel applet would be a sensible option as it allows the user to check and modify the status at any time without launching another application, though I'm not sure how practical it would be in Kubuntu or Xubuntu. In the case of a such an applet, I would suggest an icon which indicates a locked state when the ~/Private directory is unmounted (i.e. the data are secure), and an unlocked state when the encrypted directory is mounted (i.e. the data are readable to any process running as the user - less secure). Clicking on the icon would execute {{{mount.
Related branches
Changed in ecryptfs-utils: | |
milestone: | intrepid-alpha-5 → none |
Changed in ecryptfs: | |
importance: | Undecided → Medium |
status: | New → In Progress |
Changed in ecryptfs: | |
status: | In Progress → Triaged |
Changed in ecryptfs-utils (Ubuntu): | |
status: | In Progress → Triaged |
Changed in ecryptfs-utils (Debian): | |
status: | Unknown → Fix Released |
Changed in ecryptfs: | |
importance: | Medium → Wishlist |
Changed in ecryptfs-utils (Ubuntu): | |
importance: | Medium → Wishlist |
Alrighty then, I'll bite :)