truecrypt or something like that

[blackbird]

Hey there
Most of what i want in amahi works now.
One of my next steps is encryption. In some shares are very sensitive files in the future.
So i would like to encrypt some shares on my server with truecrypt. Haven't tried it yet because i don't want to destroy something.
Does it work? And if yes, how?

Have worked with truecrypt in Windows until now and i've to say that it works really great. I can see that there is an GUI also for Linux.
So now i would like to put it together with my new favorite server software
Can anyone help me with some links or infos?

[gboudreau]

I gave never used Truecrypt myself on anything but Windows, where I created a 2GB file that I mounted as a F: drive, and on which I put sensitive data.

If it works the same on Linux, and you want to use Greyhole with Truecrypt, it depends on how you want to use it.
If you don't want to use Greyhole, you should post in another forum to find someone with TC experience to help you further.

For Greyhole:

- If you want to put the big file on the share, and thus allow clients to connect to the shares, and mount themselves those .tc files, you'll want to use the 'frozen directories' feature of Greyhole. This will make Greyhole update extra copies of the .tc files only on regular intervals, say once a day. If you don't do that, every time a small change would happen on a mounted .tc file, Greyhole would then copy the complete .tc file to update extra copies, which would probably be a lot of unnecessary copying.

- If, instead, you'd like to keep the .tc files on your Linux server, and mount them there, and have the files inside those .tc mounts available on your shares, I guess the easiest way would be to put create as many .tc files as you want extra copies, put each on a separate drive, and mount them all somewhere (like /mnt/tcX). Then, you'd add those mount points to your storage pool. You'll then want to specify those mounts as the 'sticky dirs' for the shares / directories in your shares that you want to have in your .tc files. This will force Greyhole to use those .tc mounts to keep file copies for files in the share or directories in your shares that you specified.

Good luck.

[blackbird]

ok, i can't say that i understand everything u talked about but i try to answer

I think what i'm searching for is the second version u've written.

My target is :

I've i.e. 5 shares. 3 of this shares are encrypted on the Server side. The Client don't have to enter a password. But when i restart my Server i've to enter the password on the Server. So if some steal my Server he can't access my files in this shares. And all have to work with Greyhole and the redundancy of Greyhole. I dont want to copy files by hand all the time. Everthing should work like without encryption after setup...
So i can create shares with and without encryption and my wife don't have to think about it

[gboudreau]

OK.
You'll need to try TrueCrypt now, and see what options are available to you, and which one you'd prefer.
With that information, come back here, and detail (or give a link to the proper documentation page) the option you'd like to use. From that, I should be able to create an easy to follow guide to TrueCrypt on Greyhole shares on the wiki.

[evylrat]

Did anyone ever try this? I've only ever tried Truecrypt on windows, not linux.
I too am looking at something like the second version that gboudreau mentions. mounting the TC file on Amahi and having the shares point to that mount point so they can be accessed over the network. Perhaps some form of timeout so that the TC file is closed every few days so you have to import the password again.

But for simplicity might just try the first version, which is just a case of storing the TC file on greyhole.