Originally Posted by
Paddy Landau
So, ext4 running on ecryptfs, fscrypt or LUKS won't count! Given the EU's GDPR and other reasons, this essentially means that Dropbox has given up on Linux.
LUKS operates at the block level so it seems to work fine. My Dropbox folder is on ecryptfs on Ubuntu 16.04. I get the warning when I run "dropbox start". So, I did a quick test:
Code:
mkdir ~/Dropbox_Image
cd ~/Dropbox_Image/
dd if=/dev/urandom of=./Encrypted_Dropbox_Image.img bs=1M count=2500
2500+0 records in
2500+0 records out
2621440000 bytes (2.6 GB, 2.4 GiB) copied, 241.55 s, 10.9 MB/s
sudo losetup /dev/loop0 ./Encrypted_Dropbox_Image.img
sudo cryptsetup --cipher aes-xts-plain64 --key-size 512 --hash sha256 --iter-time 5000 --verify-passphrase luksFormat /dev/loop0
WARNING!
========
This will overwrite data on /dev/loop0 irrevocably.
Are you sure? (Type uppercase yes): YES
Enter passphrase:
Verify passphrase:
sudo cryptsetup luksOpen /dev/loop0 dropbox_encrypted_image
sudo mkfs.ext4 -j /dev/mapper/dropbox_encrypted_image
mke2fs 1.42.13 (17-May-2015)
Creating filesystem with 639488 4k blocks and 160000 inodes
Filesystem UUID: 45b4f779-5a44-43a0-b104-49b673cb7bef
Superblock backups stored on blocks:
32768, 98304, 163840, 229376, 294912
Allocating group tables: done
Writing inode tables: done
Creating journal (16384 blocks): done
Writing superblocks and filesystem accounting information: done
mkdir ~/Dropbox_New_FS_tmp
sudo mount /dev/mapper/dropbox_encrypted_image ~/Dropbox_New_FS_tmp/
sudo chown -R username:usergroup ~/Dropbox_New_FS_tmp/
rsync -av ~/Dropbox/ /~/Dropbox_New_FS_tmp/
dropbox stop
mv ~/Dropbox ~/Dropbox.SAVE
mkdir ~/Dropbox
sudo umount ~/Dropbox_New_FS_tmp/
sudo mount /dev/mapper/dropbox_encrypted_image ~/Dropbox
mount | grep Dropbox
/dev/mapper/dropbox_encrypted_image on /home/username/Dropbox type ext4 (rw,relatime,data=ordered)
dropbox start
Now I don't get the warning.
I made a test file in the LUKS mounted tree and it appeared in the Dropbox app on my phone.
Note 1: To be clear, in this test, files are plaintext on Dropbox's servers, but encrypted on my local SSD - as they were before. Transparent encryption such that files are encrypted on Dropbox's servers is a different animal (but not hard as far as I can tell).
Note 2: I used a loopback file. You can also use a VM disk image or second physical drive.
Note 3: I have the Dropbox free plan, so a little over 2GB is fine for the file. Adjust your loopback file size accordingly.
Note 4: Change username to your username and usergroup to your user's personal group (usually these have the same name).
Bookmarks