Puppy Linux Discussion Forum

[jamesbond]

EncFS (wikipedia http://en.wikipedia.org/wiki/EncFS) is a user-space encrypted file system driver, developed by Valient Gough. Initially introduced in 2005, it went on active development until late 2008 - until which it seems to stop for a while. Recently Valient has restarted development and responded to bug reports. Homepage: http://www.arg0.net/encfs and also http://code.google.com/p/encfs.

It enables one to encrypt/decrypt at directory/folder level, instead of filesystem level (cf. cryptoloop, dm-crypt) or file level (cf. bcrypt). It uses FUSE and stores the encypted content on other filesystem - I have tested it on ext3 inside aufs (ie, Puppy's /root folder).

Inspired in a discussion with 01smokey here http://murga-linux.com/puppy/viewtopic.php?p=422965#422965, I have built this package and its dependencies for Quirky 1.x, and have created a few scripts to integrate with Rox. All you have to do is right-click any folder in Rox, and then choose whether to add encryption, remove encryption, or open access/close access for this encrypted folder. Each encrypted folder has its own password.

Package
All compiled under Quirky 1.1. Tested to work under Puppeee as well.
1. EncFS 1.5-2 proper
2. rlog 1.4
3. fuse 2.7.4 (only the libraries)
4. boost c++ libraries (note - I only build a subset which is required by encfs - the "filesystem and serialization" libraries).
5. rox-encfs 0.4 - my scripts to integrate EncFS with Rox.

Fatdog64 users can get it from the ibiblio repository - only encfs, rlog and rox-encfs required since Fatdog64 already comes with fuse and boost.

Sources
1. EncFS version 1.5-2 http://encfs.googlecode.com/files/encfs-1.5-2.tgz
2. rlog logging library (also by valient) version 1.4 (dependency of EncFS) - from here http://code.google.com/p/rlog/
3. Boost C++ library version 1.41 (newer versions of Boost have problems with EncFS - this is the last version known to work well) http://sourceforge.net/projects/boost/files/boost/1.41.0/
4. Fuse version 2.7.4 - I use this one instead of the latest because I think Quirky is build with this version http://bkhome.org/sources/alphabetical/f/fuse-2.7.4.tar.bz2

Others
If you prefer a centralised control over your encrypted directories, you may want to look at Master Wong's work here http://murga-linux.com/puppy/viewtopic.php?t=43131 which is also based on EncFS. Note that it was based on an older version of EncFS.

Usage Notes
1. Do not delete the folder when it is open for access. Unpredictable things will happen.
2. Encrypted files will be stored in a hidden encrypted storage directory, with the same name of the original directory, prefixed with a dot. (e.g if the original name is "icons", the storage directory is ".icons" - see the screenshots below). Do not delete this folder, and especially do not delete this folder while the folder is open for access.

EDIT: Update rox-encfs to 0.4 which will refresh rox automatically.

[jamesbond]

The package. All are straight built - there is no effort spent to make it smaller as per puppy's tradition, others are welcome to do so.

EDIT: tested on puppeee (RC1) also - works well. Puppeee users don't need libfuse - it's already part of the included with Puppeee.

EDIT: update rox-encfs to 0.4

[jamesbond]

Screenshots.

[smokey01]

I have done some testing with Lupu-501 and it seems to work very well but I do have a question or two, maybe more.

It appears there are five commands in your ROX script, they are:

Add Encryption
Change Password
Open Encrypted Folder
Remove Encryption
Close Encrypted Folder

I noticed that not all five are visible at the same time. Generally it seems either Open Encrypted Folder or Close Encrypted Folder are available but not both.

When I encrypt the folder it's contents are still visible until I close the folder. When I close the folder everthing is now secure. To get access to the folder I expected to be able to simply right click on the folder and select Open Encrypted Folder, type in the password and the folder would be visible again. This is not the case. I have to remove the encryption to see the contents of the folder.

I thought it would be possible to Open Encrypted Folder, work with files then close it when you are finished working. The entire time the folder is encrypted but open until it's closed and secure.

If you no longer needed to have the folder encrypted then simply Remove Encryption and it would revert to being a normal folder.

Are my assumptions correct? or am I expecting something that doesn't exist? or am I doing something wrong?

This is a very useful application.

Thanks for you work on it.

[jamesbond]

[smokey01]

It now works absolutely perfect and as expected.

I just tried it on LHP-443 full install, no problems.

This should be part of the standard puppy build as it is very useful and adds to the security that many complain about. Size is probably the only issue but not for me.

I will put it up on my site if you don't mind.

Thanks

[jamesbond]

Sure, go ahead!

[smokey01]

I stripped it down by about 420k by removing source and locals.

I also combined the five Pets into one for simplicity. It can be downloaded from here.

http://www.smokey01.com/pets/FolderEnc-1.0.pet

It would be nice if it would accept the enter key after typing the password instead of having to use the mouse. Clicking on OK is good but the enter key is more intuitive.

[jamesbond]

[smokey01]

Is this an option?

--editbox filepath height width
The edit-box dialog displays a copy of the file. You may edit it
using the backspace, delete and cursor keys to correct typing er-
rors. It also recognizes pageup/pagedown. Unlike the --
inputbox, you must tab to the "OK" or "Cancel" buttons to close
the dialog. Pressing the "Enter" key within the box will split
the corresponding line.

On exit, the contents of the edit window are written to dialog's
output.

Or is this only for dialog and not Xdialog?

http://hpux.connect.org.uk/hppd/hpux/Shells/dialog-1.1/man.html

[jamesbond]

I'm using this:

[smokey01]

Yes I noticed that after I posted. I was a little tired last night.

This is how Will made it work in Psip:

#!/bin/sh
CHAT=$(cat $PJTMP/chat.tmp) #should strip out newlines if we ever get to multiline posts
echo -e "\ni\n${1}\n${CHAT}\n" >> $PJSIGNAL
BUDDY_NAME="$(echo $1 | sed 's/sip://;s/@.*//')"
echo -e "$(date +%y/%m/%d-%T) [you->$BUDDY_NAME] ${CHAT}" >> $HOME/.psip/PSIP_chatlog

Now I have to be honest I don't fully understand it.

During my searching I noticed craftybytes was also trying to find a solution to the same problem.

He mention something about sed and I see it's used here.

I guess it's not bigggie but it would be good to solve. I might have a talk to some of the coding gurus in the forum.

[jamesbond]

Ok, I'm been doing some reading (from here http://xpt.sourceforge.net/techdocs/language/gtkdialog/gtkde02-GtkdialogExamples/single/)

The replacement code for Xdialog --password --inputbox above is this:

[TwoPuppies]

‭I've used this application in both Quirky and Lupu, and it is really excellent. But it's really a shame that it does not work in Puppy 4.2 (my favourite Puppy OS). Is there any way that it can be modified so that it will?

[trapster]

Is bcrypt in 4.2?

My simple directory encryption that I put in my right-click menu: