scuttle: ubuntu + encryption

  1. Article explaining how to use yubipam to enable yubikey authentication on a linux machine. However, yubipam only supports single factor auth, username + token, no additional password.
  2. PAM module that allows offline authentication against a yubikey. Requires a key to be retrieved from yubico by sending email plus payment info, etc. Less secure than online validation. Only supports single factor auth, username + token, no password.
  3. Script to enable a yubikey to be used with luks full disk encryption. Very interesting...
  4. One strategy to backup encrypted ecryptfs data as suggested by the author of ecryptfs. Useful and simple. Backup the metadata and the raw files with rsync.
  5. A critical utility for ecryptfs called ecryptfs-recover-private which automates and simplifies the process of recovering encrypted home directory data from Ubuntu.
  6. A different strategy to find an encrypted filename from an unencrypted filename under ecryptfs (Ubunut's encrypted home directory system).
  7. Interesting article including a script that figures out a mapping from unencrypted filenames into ecryptfs encrypted filenames. Potentially useful.
  8. How to restore encrypted partitions on the ubuntu forums. Could be useful if needing to restore from a backup of an encrypted disk.
  9. Walkthrough on setting up Ubuntu Hardy Heron with full disk encryption. Very handy. :)
  10. A tutorial on setting up encrypted partitions in Ubuntu Gutsy Gibbon (7.10). Goes into some detail as to what each command does. Useful.
  11. An article on how to create an encrypted volume and then four ways to benchmark encrypted disk performance. Summary, the author estimates a 10% performance cost on a 3.2GHz system, 4Gb memory, no swap.
  12. A detailed how-to, including screenshots, on setting up an encrypted LVM in Ubuntu. This approach creates one single encrypted LVM and then multiple partitions within it (as well as an unencrypted boot partition). Easy to follow, useful reading.

