Encrypted home partition accessible by administrator

Colin Law clanlaw at gmail.com
Wed Apr 24 11:23:08 UTC 2019


On Wed, 24 Apr 2019 at 12:16, Liam Proven <lproven at gmail.com> wrote:
>
> On Sun, 21 Apr 2019 at 18:02, Colin Law <clanlaw at gmail.com> wrote:
> >
> > I am experimenting with encrypting a users home partition. I created a
> > new user using
> > sudo apt install ecryptfs-utils
> > sudo adduser --encrypt-home username
>
> I've never tried it that way. I have put /home onto a different
> partition and encrypted the whole thing. That worked fine and was
> relatively easy.
>
> > which appeared to do the job, however I see that when logged in as an
> > administrator (not the new user) I am able to browse the encrypted
> > files in Nautilus by using the administrators password.
>
> Sounds like normal Unix behaviour, yes.

Even when the user whose home is encrypted is not logged in?  I had
assumed that the users password was part of the key to unlocking the
encryption.

Colin



More information about the ubuntu-users mailing list