[[sw:encfs_creation]]
 

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

sw:encfs_creation [d-m-Y H:i] (current)
Line 1: Line 1:
 +====== EncFS Creation ======
 +
 +<​code>​
 +$ encfs <​encrypted-dir>​ <​decrypted-dir>​
 +Creating new encrypted volume.
 +Please choose from one of the following options:
 + enter "​x"​ for expert configuration mode,
 + enter "​p"​ for pre-configured paranoia mode,
 + ​anything else, or an empty line will select standard mode.
 +?> x
 +
 +Manual configuration mode selected.
 +The following cipher algorithms are available:
 +1. AES : 16 byte block cipher
 + -- Supports key lengths of 128 to 256 bits
 + -- Supports block sizes of 64 to 4096 bytes
 +2. Blowfish : 8 byte block cipher
 + -- Supports key lengths of 128 to 256 bits
 + -- Supports block sizes of 64 to 4096 bytes
 +3. blowfish-compat : algorithm compatible with EncFS 0.2-0.6
 + -- key length 160 bits
 + -- block size 64 bytes
 +
 +Enter the number corresponding to your choice: 1
 +
 +Selected algorithm "​AES"​
 +
 +Please select a key size in bits.  The cipher you have chosen
 +supports sizes from 128 to 256 bits in increments of 64 bits.
 +For example: ​
 +128, 192, 256
 +Selected key size: 256
 +
 +Using key size of 256 bits
 +
 +Select a block size in bytes. ​ The cipher you have chosen
 +supports sizes from 64 to 4096 bytes in increments of 16.
 +Or just hit enter for the default (512 bytes)
 +
 +filesystem block size: 512
 +
 +Using filesystem block size of 512 bytes
 +
 +The following filename encoding algorithms are available:
 +1. Block : Block encoding, hides file name size somewhat
 +2. Null : No encryption of filenames
 +3. Stream : Stream encoding, keeps filenames as short as possible
 +
 +Enter the number corresponding to your choice: 1
 +
 +Selected algorithm "​Block""​
 +
 +Enable filename initialization vector chaining?
 +This makes filename encoding dependent on the complete path, 
 +rather then encoding each path element individually. ​
 +This is normally desireable, therefor the default is Yes. 
 +Any response that does not begin with '​n'​ will mean Yes: no
 +
 +Enable per-file initialization vectors?
 +This adds about 8 bytes per file to the storage requirements.
 +It should not affect performance except possibly with applications
 +which rely on block-aligned file io for performance.
 +The default here is Yes.  ​
 +Any response that does not begin with '​n'​ will mean Yes: yes
 +
 +External chained IV disabled, as both 'IV chaining'​
 +and '​unique IV' features are required for this option.
 +Enable block authentication code headers
 +on every block in a file?  This adds about 12 bytes per block
 +to the storage requirements for a file, and significantly affects
 +performance but it also means [almost] any modifications or errors
 +within a block will be caught and will cause a read error.
 +The default here is No.  ​
 +Any response that does not begin with '​y'​ will mean No: no
 +
 +
 +Configuration finished. ​ The filesystem to be created has
 +the following properties:
 +Filesystem cipher: "​ssl/​aes",​ version 2:1:1
 +Filename encoding: "​nameio/​block",​ version 3:0:1
 +Key Size: 256 bits
 +Block Size: 512 bytes
 +Each file contains 8 byte header with unique IV data.
 +
 +Now you will need to enter a password for your filesystem.
 +You will need to remember this password, as there is absolutely
 +no recovery mechanism. ​ However, the password can be changed
 +later using encfsctl.
 +
 +New Encfs Password: ​
 +Verify Encfs Password: ​
 +
 +$
 +</​code>​
  
 
 
Recent changes RSS feed Creative Commons License Donate Powered by PHP Valid XHTML 1.0 Valid CSS Driven by DokuWiki