Is there any way to fully encrypt my hard-drive AFTER an installation of Linux Mint?

backup encryption truecrypt
17,963

Solution 1

If you want the entire hard drive encrypted, even the Linux Mint system partitions, swap, your home, the whole works, then I suspect the easiest would be to:

  1. backup your data (the Mint Backup Tool you linked an image to should work, but double-check for files you want backed up that aren't in your home)
  2. reinstall with encryption using the installer (I'm pretty sure it supports system encryption)
  3. then restore your data (home, reinstall programs)

OR

Just encrypt your home folder now with ecryptfs-migrate-home but be sure & read it's man page & should heed it's warnings:

WARNING: Make a complete backup copy of the non-encrypted data to another system or external media. This script is dangerous and in case of an error, could result in data lost, or lock USER out of the system!

...

After a successful migration, the USER really must run ecryptfs-unwrap-passphrase(1) or zescrow(1) and record their randomly generated mount passphrase.

And ecryptfs-setup-swap would encrypt your swap too, if interested.

Solution 2

You can try LUKS to encrypt partition or removable device

You need to install cryptsetup utility

apt-get install cryptsetup

Configure LUKS partition

The following command will remove all data on the partition that you are encrypting.

for example to encrpt /dev/xvdc ,type the following command:

cryptsetup -y -v luksFormat /dev/xvdc

This command initializes the volume, and sets an initial key or passphrase. Please note that the passphrase is not recoverable so do not forget it

Type the following command:

cryptsetup luksOpen /dev/xvdc backup2

You can use the following command to see the status:

cryptsetup -v status backup2

to dump LUKS headers 

cryptsetup luksDump /dev/xvdc

Format LUKS partition

dd if=/dev/zero of=/dev/mapper/backup2

to save time use pv

pv -tpreb /dev/zero | dd of=/dev/mapper/backup2 bs=128M

create file system:

mkfs.ext4 /dev/mapper/backup2

To mount the new filesystem :

mkdir /backup2
mount /dev/mapper/backup2 /backup2 
df -H
cd /backup2
ls -l

to unmount:

umount /backup2

To secure DATA

cryptsetup luksClose backup2

mount or remount encrypted partition

cryptsetup luksOpen /dev/xvdc backup2
mount /dev/mapper/backup2 /backup2
df -H
mount
Share:
17,963

Related videos on Youtube

cmyk
Author by

cmyk

Updated on September 18, 2022

Comments

  • cmyk
    cmyk over 1 year

    I'm askin myself, is there any software who can encrypt my whole hard drive with Linux Mint 17.3 on it AFTER the installation? Like TrueCrypt for Windows?!

    If not and I've to reinstall everthing is there any possibility to safe all my datas (including the installed programs) to restore it after an successful installation of an fully encrypted OS?

    Maybe with this tool (included in Linux Mint): http://www.crmk.de/mintbackuptool.jpg ???

    • Admin
      Admin over 5 years
      With Ubuntu 16.04 it is possible: askubuntu.com/a/1107295/723997
    • Admin
      Admin over 4 years
      image not found: mintbackuptool.jpg
  • Govind
    Govind about 8 years
    pv "monitor(s) the progress of data through a pipe," it doesn't save time, but it would let you guess when the process will be finished
  • cmyk
    cmyk about 8 years
    Sadly I can't upvote actually. Even not on my own question :((
  • Govind
    Govind about 8 years
    @cmyk No problem, if you stay on the site with more Qs & As I'm sure you'll get more "reputation points", I've already upvoted the Q. FYI, superuser.com has questions about Linux too, especially good for programs / techniques that are available to other OS's too (open source programs like web browsers, bash, etc) also askubuntu.com but they close questions that aren't directly about Ubuntu (even about Ubuntu-derived distros like Mint get closed). Good luck!
  • Milan Babuškov
    Milan Babuškov over 2 years
    Why is this even marked as the accepted answer when it doesn't answer the question? The solution to reinstall doesn't answer the question of full-disk encrypting AFTER then install. And this is on top of google when looking for that.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

How to split TrueCrypt file into smaller files for cloud backup to OneDrive?
Mounting truecrypt system partition copied to USB drive
What is the maximum supported size of a truecrypt file?
Incremental (delta) backup of a encrypted data
Crashplan + TrueCrypt - Overkill?
How do I get Grub2 to boot a Truecrypt-encrypted MBR?
Can I use gparted to resize a Truecrypt-encrypted partition?
Decrypt TrueCrypt containers using dm-crypt
The safest way to backup GPG and SSH keys
Encrypt tar.gz file on create