System information
After the last step of an interactive mount, mo unt will display all the selections made and perform the
mount. This output consists of the command-line option equivalents of each chosen setting. For
example, mounting /ho me with a key type of passphrase, aes cipher, key bytesize of 16 with both
pl ai ntext passthro ug h and fi lename encrypti o n disabled, the output would be:
Attempting to mount with the following options:
ecryptfs_unlink_sigs
ecryptfs_key_bytes=16
ecryptfs_cipher=aes
ecryptfs_sig=c7fed37c0a341e19
Mounted eCryptfs
The options in this display can then be passed directly to the command line to encrypt and mount a
file system using the same configuration. To do so, use each option as an argument to the -o option
of mo unt. For example:
# mo unt -t ecryptfs /ho me /ho me -o ecryptfs_unl ink_si g s \
ecryptfs_key_bytes= 16 ecryptfs_ci pher= aes ecryptfs_si g = c7fed 37c0 a34 1e19
3.2. Addit ional Informat ion
For more information on eCryptfs and its mount options, refer to man ecryptfs (provided by the
ecryptfs-uti l s package). The following Kernel document (provided by the kernel -d o c
package) also provides additional information on eCryptfs:
/usr/share/d o c/kernel -d o c-version/D o cumentati o n/fi l esystems/ecryptfs. txt
[2]
[2] This is a s ing le co mmand sp lit into multip le lines , to ac c o mmo d ate p rinted and PDF vers io ns o f this
d o c ument. All co ncatenated lines — p reced ed b y the b ac kslash (\) — sho uld b e treated as o ne
co mmand , sans b acks las hes .
Red Hat Ent erprise Lin ux 6 St orage Admin ist rat io n G uide
26