1
<?xml version="1.0" encoding="UTF-8" standalone="no"?>
2
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
3
<html xmlns="http://www.w3.org/1999/xhtml">
4
<head xmlns="http://www.w3.org/1999/xhtml">
5
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
6
<title xmlns="">eCryptfs</title>
7
<link rel="stylesheet" href="../../libs/ubuntu-book.css" type="text/css" />
8
<style xmlns="" type="text/css">
9
#content { background-image: url('images/draft.png');
10
background-repeat: repeat-y;
11
background-position: top center;
12
/* The following properties make the watermark "fixed" on the page. */
13
/* I think that's just a bit too distracting for the reader... */
14
/* background-attachment: fixed; */
15
/* background-position: center center; */
17
<link rel="home" href="index.html" title="Guida a Ubuntu Server" />
18
<link rel="up" href="security.html" title="Capitolo 8. Sicurezza" />
19
<link rel="prev" href="certificates-and-security.html" title="Certificati" />
20
<link rel="next" href="monitoring.html" title="Capitolo 9. Monitoraggio" />
21
<link rel="copyright" href="legal.html" title="Riconoscimenti e licenza" />
23
<link href="http://help.ubuntu-it.org/favicon.ico" rel="shortcut icon" />
25
<div id="page-border-left-repeat">
26
<div id="page-border-right-repeat">
27
<script type="text/javascript">
28
var gaJsHost = (("https:" == document.location.protocol) ? "https://ssl." : "http://www.");
29
document.write(unescape("%3Cscript src='" + gaJsHost + "google-analytics.com/ga.js' type='text/javascript'%3E%3C/script%3E"));
31
<script type="text/javascript">
33
var pageTracker = _gat._getTracker("UA-8147493-2");
34
pageTracker._trackPageview();
35
} catch(err) {}</script>
36
<div id="page-border-top-repeat">
38
<div id="header-navigation">
41
<a href="http://www.ubuntu-it.org">Web</a>
44
<a href="http://wiki.ubuntu-it.org">Documentazione</a>
47
<a href="http://forum.ubuntu-it.org">Forum</a>
50
<a href="http://planet.ubuntu-it.org">Planet</a>
54
<form action="http://help.ubuntu-it.org/10.10/ubuntu/search.php" id="cse-search-box">
56
<input type="text" name="s" size="28" title="search" />
57
<input type="submit" value="Cerca" title="search" />
64
<div class="pagelocation"><a href="http://help.ubuntu-it.org/">Documentazione di Ubuntu</a> > <a href="http://help.ubuntu-it.org/ubuntu1010.html">Ubuntu 10.10</a> > <span class="breadcrumb-link"><a href="index.html">Guida a Ubuntu Server</a></span> > <span class="breadcrumb-link"><a href="security.html">Sicurezza</a></span> > <span class="breadcrumb-node">eCryptfs</span></div>
65
<div xmlns="http://www.w3.org/1999/xhtml" class="sect1" title="eCryptfs">
66
<div class="titlepage">
69
<h2 class="title" style="clear: both"><a id="ecryptfs"></a>eCryptfs</h2>
73
<p><span class="emphasis"><em>eCryptfs</em></span> è un file system crittografico POSIX-conforme per Linux. Disponendosi al di sopra del livello del file system normale, <span class="emphasis"><em>eCryptfs</em></span> è in grado di proteggere i file indipendentemente dal file system sottostante, dal tipo di partizione, ecc...</p>
74
<p>Durante la fase di installazione è disponibile un'opzione per cifrare l'intera partizione <code class="filename">/home</code> in grado di configurare tutto il necessario per cifrare e montare la partizione.</p>
76
As an example, this section will cover configuring <code class="filename">/srv</code> to be encrypted using <span class="emphasis"><em>eCryptfs</em></span>.
78
<div class="sect2" title="Usare eCryptfs">
79
<div class="titlepage">
82
<h3 class="title"><a id="ecryptfs-usage"></a>Usare eCryptfs</h3>
86
<p>Per prima cosa, installare i pacchetti necessari. In un terminale digitare:</p>
88
<span class="command"><strong>sudo apt-get install ecryptfs-utils</strong></span>
90
<p>Montare la partizione da cifrare:</p>
92
<span class="command"><strong>sudo mount -t ecryptfs /srv /srv</strong></span>
94
<p>Vengono chiesti alcuni dettagli su come <span class="application"><strong>ecryptfs</strong></span> dovrebbe cifrare i dati.</p>
95
<p>Per verificare che i file in <code class="filename">/srv</code> siano veramente cifrati, copiare la directory <code class="filename">/etc/default</code> in <code class="filename">/srv</code>:</p>
97
<span class="command"><strong>sudo cp -r /etc/default /srv</strong></span>
99
<p>Smontare <code class="filename">/srv</code> e cercare di visualizzare un file:</p>
101
<span class="command"><strong>sudo umount /srv</strong></span>
102
<span class="command"><strong>cat /srv/default/cron</strong></span>
104
<p>Montare <code class="filename">/srv</code> utilizzando <span class="application"><strong>ecryptfs</strong></span> per poter visualizzare nuovamente i dati.</p>
106
<div class="sect2" title="Montare automaticamente le partizioni cifrate">
107
<div class="titlepage">
110
<h3 class="title"><a id="ecryptfs-automount"></a>Montare automaticamente le partizioni cifrate</h3>
114
<p>È possibile montare un file system <span class="application"><strong>ecryptfs</strong></span> in diversi modi all'avvio. Questo esempio fa uso di un file <code class="filename">/root/.ecryptfsrc</code> contenente le opzioni di mount e un file, salvato su una chiave USB, contenente la passphrase.</p>
115
<p>Creare il file <code class="filename">/root/.ecryptfsrc</code> contenente:</p>
116
<pre class="programlisting">
117
key=passphrase:passphrase_passwd_file=/mnt/usb/passwd_file.txt
118
ecryptfs_sig=5826dd62cf81c615
120
ecryptfs_key_bytes=16
121
ecryptfs_passthrough=n
122
ecryptfs_enable_filename_crypto=n
124
<div class="note" title="Nota" style="margin-left: 0.5in; margin-right: 0.5in;">
125
<table border="0" summary="Note">
127
<td rowspan="2" align="center" valign="top" width="25">
128
<img alt="[Nota]" src="../../libs/admon/note.png" />
130
<th align="left"></th>
133
<td align="left" valign="top">
134
<p>Modificare il campo <span class="emphasis"><em>ecryptfs_sig</em></span> con la firma presente in <code class="filename">/root/.ecryptfs/sig-cache.txt</code>.</p>
139
<p>Creare il file <code class="filename">/mnt/usb/passwd_file.txt</code> per la passphrase:</p>
140
<pre class="programlisting">
141
passphrase_passwd=[secrets]
143
<p>Aggiungere quanto necessario in <code class="filename">/etc/fstab</code>:</p>
144
<pre class="programlisting">
145
/dev/sdb1 /mnt/usb ext3 ro 0 0
146
/srv /srv ecryptfs defaults 0 0
148
<p>Assicurarsi che il dispositivo USB venga montato prima della partizione cifrata.</p>
150
Finally, reboot and the <code class="filename">/srv</code> should be mounted using <span class="emphasis"><em>eCryptfs</em></span>.
153
<div class="sect2" title="Altre utilità">
154
<div class="titlepage">
157
<h3 class="title"><a id="ecryptfs-other-utils"></a>Altre utilità</h3>
161
<p>Il pacchetto <span class="application"><strong>ecryptfs-utils</strong></span> contiene diverse utilità:</p>
162
<div class="itemizedlist">
163
<ul class="itemizedlist" type="disc">
164
<li class="listitem">
165
<p><span class="emphasis"><em>ecryptfs-setup-private</em></span>: crea una directory <code class="filename">~/Private</code> per contenere informazioni cifrate. Questa utilità può essere eseguita da utenti senza alcun tipo di privilegio all'interno del sistema per creare una piccola zona privata dove salvare dati.</p>
167
<li class="listitem">
168
<p><span class="emphasis"><em>ecryptfs-mount-private</em></span> e <span class="emphasis"><em>ecryptfs-umount-private</em></span>: monta e smonta la directory <code class="filename">~/Private</code> degli utenti.</p>
170
<li class="listitem">
171
<p><span class="emphasis"><em>ecryptfs-add-passphrase</em></span>: aggiunge una nuova passphrase al portachiavi.</p>
173
<li class="listitem">
174
<p><span class="emphasis"><em>ecryptfs-manager</em></span>: gestisce gli oggetti <span class="application"><strong>eCryptfs</strong></span> come le chiavi.</p>
176
<li class="listitem">
177
<p><span class="emphasis"><em>ecryptfs-stat</em></span> consente di visualizzare le meta informazioni di <span class="application"><strong>ecryptfs</strong></span> relative a un file.</p>
182
<div class="sect2" title="Riferimenti">
183
<div class="titlepage">
186
<h3 class="title"><a id="eCryptfs-references"></a>Riferimenti</h3>
190
<div class="itemizedlist">
191
<ul class="itemizedlist" type="disc">
192
<li class="listitem">
194
For more information on <span class="emphasis"><em>eCryptfs</em></span> see the <a class="ulink" href="https://launchpad.net/ecryptfs" target="_top">Launchpad project page</a>.
197
<li class="listitem">
199
There is also a <a class="ulink" href="http://www.linuxjournal.com/article/9400" target="_top">Linux Journal</a> article covering <span class="emphasis"><em>eCryptfs</em></span>.
202
<li class="listitem">
204
Also, for more <span class="application"><strong>ecryptfs</strong></span> options see the
205
<a class="ulink" href="http://manpages.ubuntu.com/manpages/maverick/en/man7/ecryptfs.7.html" target="_top">ecryptfs man page</a>.
208
<li class="listitem">
210
The <a class="ulink" href="https://help.ubuntu.com/community/eCryptfs" target="_top">eCryptfs Ubuntu Wiki</a> page also has more details.
217
<div xmlns="http://www.w3.org/1999/xhtml" class="navfooter">
219
<table width="100%" summary="Navigation footer">
221
<td width="40%" align="left"><a accesskey="p" href="certificates-and-security.html"><img src="../../libs/navig/prev.png" alt="Indietro" /></a> </td>
222
<td width="20%" align="center">
223
<a accesskey="u" href="security.html">
224
<img src="../../libs/navig/up.png" alt="Risali" />
227
<td width="40%" align="right"> <a accesskey="n" href="monitoring.html"><img src="../../libs/navig/next.png" alt="Avanti" /></a></td>
230
<td width="40%" align="left" valign="top">Certificati </td>
231
<td width="20%" align="center">
232
<a accesskey="h" href="index.html">
233
<img src="../../libs/navig/home.png" alt="Partenza" />
236
<td width="40%" align="right" valign="top"> Capitolo 9. Monitoraggio</td>
242
<div id="page-border-bottom-repeat">
245
Ubuntu e Canonical sono marchi registrati da Canonical Ltd.
249
<div id="page-border-right-top"></div>
250
<div id="page-border-right-bottom"></div>
252
<div id="page-border-left-top"></div>
253
<div id="page-border-left-bottom"></div>
added
removed
www/10.10/ubuntu/serverguide/it/ecryptfs.html
