Crypt /home/phablet with Gocryptfs
-
Hello,
The security of Ubuntu Touch is essential when you want to guarantee the protection of a phone in the event of theft or loss, especially when the bootloader is unlocked and no disk encryption by default.I would still like to point out that I admire the phenomenal work done by the Ubport team and the community, however I greatly hope for the native possibility of disk encryption for UT 24.04.
For this reason I wanted to fix it but I encountered a problem and I would need help to resolve it.
So my solution is quite simple: encrypt the /home/phablet with gocryptfs and mount it when unlocking the session with Pam Auth
Here is a complete link which explains the procedure on a classic ubuntu/debian machine
https://leighmcculloch.com/posts/ubuntu-encrypt-home-directory-with-gocryptfs/This worked perfectly on my ubuntu machine and a raspberry Pi but not on my ubuntu touch for the following reason: As soon as I mounted the encrypted directory or any encrypted directory in my /home/phablet and accessed it or want to move documents
gocryptfs /home/phablet.cypher /home/phabletI have the following error:
ls: cannot open directory '.': Transport endpoint is not connectedI tried to fight several nights with umount -l and check if the error was not coming from /etc/fstab or the fact that the /home/phablet partition was itself mounted in the /userdata partition,...