Why are these icons here?
EncFS is described by its project director as
EncFS provides an encrypted filesystem in user-space. It runs without any special permissions and uses the FUSE library and Linux kernel module to provide the filesystem interface.
There are several advantages to the EncFS way of encrypting secrets, in my mind.
To elaborate on the last point: the value of open-source is clear, but why specify Linux? Here's my feeling: When I want to save secrets, I don't want to use a system available on 99% of personal computing devices. If I wanted to communicate in private, then I would obviously make another choice.
In a Debian-based Linux system, you can install EncFS by
sudo (apt-get update && apt-get install encfs)
We can create a new vault as follows
cd mkdir --mode=0700 vault mkdir --mode=0700 .vault encfs ~/.vault ~/vault
At this point you will be prompted for some configuration information (I choose paranoid—we are talking about keeping secrets) and a passphrase. Remember that without this passphrase, the contents of your vault are gibberish; and if it is too weak, the contents are not secure.
The hidden directory .vault will
contain the encrypted contents of the un-encrypted directory vault.
This is as simple as copying a file to vault:
cp my-secrets.txt vault/.
To unmount your vault, use the fusermount command:
fusermount -u ~/vault
If you check, you will see that vault is empty now, and .vault is full of files with gibberish names—containing your secret data.
Hold your breath: do you remember your passphrase? Ok, then do
encfs ~/.vault ~/vault
to remount your vault. Easy peasy.
Time-stamp: "19-08-2015 12:47:22 /home/work/public_html/encfs.html"