ecryptfs How To Backup / Migrate Linux Mint Ubuntu Debian system ecryptfs properly and restore access

In this scenario, let's say you want to clone your OS at the filesystem level and the source system (the system you want to clone from) is in use.

Doing a blind rsync / is a big problem because it uses twice as much space for no reason.

The reason for this is that with ecryptfs you have a /home/.ecryptfs directory which has the actual encrypted versions of your files and folders. However your home directory (eg. /home/someuser) is mounted.

Doing the blind rsync will cause you to backup the mounted actual files and the actual encrypted files, which is how your data is doubled. 

How an unmounted ecryptfs home directory looks

We can see that all that's really contained in the home directory are two symlinks .ecryptfs and .Private which link to /home/.ecryptfs/easy/.ecryptfs and /home/.ecryptfs/easy/.Private

How would we backup our ecryptfs system then?

You would want to do something like this:

replace "--exclude=/home/easy" with the path of your home directories (and add more excludes for each user under home that has ecryptfs files).

rsync -Phaz / --exclude=/home/easy/ --exclude=/proc/* --exclude=/sys/* user@remotehost:/mnt/target

On the target system though we'll need to create the symlinks again:

This assumes your entire filesystem has been stored in /mnt/target (change this path to where your target was transferred to)

chroot /mnt/target

Now we create the symlinks.

Now change to the user's directory where you need this done.

#change /home/easy to your user dir

cd /home/easy

 

Change "ln -s /home/.ecryptfs/easy" to the name of your user eg . "ln -s /home/.ecryptfs/yourusername"

ln -s /home/.ecryptfs/easy/.ecryptfs .ecryptfs

ln -s /home/.ecryptfs/easy/.Private .Private

 

Ecryptfs Success

Once you login again, you should now have restored access to all of the encrypted files, assuming that you did your backup correctly and that /home/.ecryptfs was copied properly from the source system.


Tags:

ecryptfs, migrate, linux, mint, ubuntu, debian, restore, accessin, clone, os, filesystem, rsync, directory, encrypted, versions, folders, eg, someuser, mounted, doubled, unmounted, contained, symlinks, quot, exclude, directories, excludes, user, phaz, proc, sys, remotehost, mnt, ll, assumes, stored, chroot, sudo, ln, yourusername,

Latest Articles

  • How to resize a pdf without losing much quality in Linux Mint Ubuntu Debian Redhat Solution
  • qemu: could not load PC BIOS 'bios-256k.bin' solution
  • Proxmox How To Custom Partition During Install
  • Hyper-V Linux VM Boots to Black Screen, Storage, NIC Not Found Issues
  • Ubuntu Mint How to Fix Missing/Broken /dev and /dev/pts which causes terminal to immediately close exit and not work
  • How high can a Xeon CPU get?
  • bash fix PATH environment variable "command not found" solution
  • Ubuntu Linux Mint Debian Redhat Youtube Cannot Play HD or 4K videos, dropped frames or high CPU usage with Nvidia or AMD Driver
  • hostapd example configuration for high speed AC on 5GHz using WPA2
  • hostapd how to enable and use WPS to connect wireless devices like printers
  • Dell Server Workstation iDRAC Dead after Firmware Update Solution R720, R320, R730
  • Cloned VM/Server/Computer in Linux won't boot and goes to initramfs busybox Solution
  • How To Add Windows 7 8 10 11 to GRUB Boot List Dual Booting
  • How to configure OpenDKIM on Linux with Postfix and setup bind zonefile
  • Debian Ubuntu 10/11/12 Linux how to get tftpd-hpa server setup tutorial
  • efibootmgr: option requires an argument -- 'd' efibootmgr version 15 grub-install.real: error: efibootmgr failed to register the boot entry: Operation not permitted.
  • Apache Error Won't start SSL Cert Issue Solution Unable to configure verify locations for client authentication SSL Library Error: 151441510 error:0906D066:PEM routines:PEM_read_bio:bad end line SSL Library Error: 185090057 error:0B084009:x509 certif
  • Linux Debian Mint Ubuntu Bridge br0 gets random IP
  • redis requirements
  • How to kill a docker swarm