Page 1 of 2 12 LastLast
Results 1 to 10 of 11

Thread: Looking for Linux directory encryption tool that can use a hardware key

  1. #1
    Join Date
    Feb 2010
    Location
    Kerala, India
    Beans
    475

    Looking for Linux directory encryption tool that can use a hardware key

    I'm using Ubuntu 24.10 on an AMD laptop.

    I want a Linux directory or vault encryption app that can use a USB hardware key like a FIDO2 key or Yubikey. Hardware key to unlock the directory or vault.

    Anyone know of such an app? I prefer a GUI app.

    Currently I’m using Cryptomator but it only uses passwords.
    MSI Bravo 15 AMD Ryzen 7 4800H 15.6" 40GB A4DDR-212IN, 2TB nvme (Ubuntu 24.04 LTS Gnome and 24.10 Gnome)

    Here, There and Everywhere.

  2. #2
    Join Date
    Oct 2005
    Location
    Lab, Slovakia
    Beans
    10,818

    Re: Looking for Linux directory encryption tool that can use a hardware key

    LUKS can do it. Start by trying to read the cryptseup man page and google LUKS cryptsetup guides - there are many.

  3. #3
    Join Date
    Feb 2010
    Location
    Kerala, India
    Beans
    475

    Re: Looking for Linux directory encryption tool that can use a hardware key

    Quote Originally Posted by HermanAB View Post
    LUKS can do it. Start by trying to read the cryptseup man page and google LUKS cryptsetup guides - there are many.
    I looked thru that man page and some setup guides. Unfortunately, I'm a tech noob and they made zero sense to me. Way way above my head. I would have no idea where to begin. The only commands I know are apt update and apt upgrade.

    Have any suggestions for a tech noob like me?
    Last edited by Advait; 3 Weeks Ago at 04:05 PM.
    MSI Bravo 15 AMD Ryzen 7 4800H 15.6" 40GB A4DDR-212IN, 2TB nvme (Ubuntu 24.04 LTS Gnome and 24.10 Gnome)

    Here, There and Everywhere.

  4. #4
    Join Date
    Mar 2011
    Location
    U.K.
    Beans
    Hidden!
    Distro
    Ubuntu 22.04 Jammy Jellyfish

    Re: Looking for Linux directory encryption tool that can use a hardware key

    I offer a suggestion that you create (as a start) a free Proton Mail account.

    Not only does this offer secure communications with other Proton users but you can leverage Proton Drive to upload desktop folders/files into your Proton Drive to be shared with designated users selectively. All encrypted end to end in zerotrust framework.

    Your orginal folders/files can be on your desktop. I use a removable external caddy with an SSD for this purpose. So you retain a physical backup of online encrypted vault. Of course accessing encrypted vault requires Internet access. There are multiple other features in Proton such as Pass, VPN.

  5. #5
    Join Date
    Feb 2010
    Location
    Kerala, India
    Beans
    475

    Re: Looking for Linux directory encryption tool that can use a hardware key

    Quote Originally Posted by dragonfly41 View Post
    I offer a suggestion that you create (as a start) a free Proton Mail account.
    Yep, been using Proton Mail for a few years; it's great.
    MSI Bravo 15 AMD Ryzen 7 4800H 15.6" 40GB A4DDR-212IN, 2TB nvme (Ubuntu 24.04 LTS Gnome and 24.10 Gnome)

    Here, There and Everywhere.

  6. #6
    Join Date
    Mar 2011
    Location
    U.K.
    Beans
    Hidden!
    Distro
    Ubuntu 22.04 Jammy Jellyfish

    Re: Looking for Linux directory encryption tool that can use a hardware key

    Bravo. And yet you write ..
    Have any suggestions for a tech noob like me?
    But have you looked at, indeed leveraged, Proton Drive? Or Proton VPN?
    Last edited by dragonfly41; 3 Weeks Ago at 12:48 PM.

  7. #7
    Join Date
    Oct 2005
    Location
    Lab, Slovakia
    Beans
    10,818

    Re: Looking for Linux directory encryption tool that can use a hardware key

    Setting up an encrypted directory is not simple and there is no way to make it simple, so you have to experiment till you understand it and get it to work.

    It would probably only take about three commands, but for me to explain it to you, I would have to do it myself first and I feel too old and and sick to read up and test it at this moment

  8. #8
    Join Date
    Feb 2010
    Location
    Kerala, India
    Beans
    475

    Re: Looking for Linux directory encryption tool that can use a hardware key

    I'm now researching Veracrypt and Proton Drive. I'll report back soon.
    MSI Bravo 15 AMD Ryzen 7 4800H 15.6" 40GB A4DDR-212IN, 2TB nvme (Ubuntu 24.04 LTS Gnome and 24.10 Gnome)

    Here, There and Everywhere.

  9. #9
    Join Date
    Mar 2011
    Location
    U.K.
    Beans
    Hidden!
    Distro
    Ubuntu 22.04 Jammy Jellyfish

    Re: Looking for Linux directory encryption tool that can use a hardware key

    Add Tresorit to your research. I am researching hybrid Proton Drive and Tresorit.

    P.S. Consider using Obsidian as front end desktop vault to sync with Proton Drive and/or Tresorit. Think of a pipeline. Keep Obsidian vault (clear text such as Markdown and other assets, images) in removable SSD device in caddy to lock away.
    Last edited by dragonfly41; 2 Weeks Ago at 12:48 PM. Reason: Added comment re pipeline

  10. #10
    Join Date
    Mar 2010
    Location
    Been there, meh.
    Beans
    Hidden!
    Distro
    Ubuntu

    Re: Looking for Linux directory encryption tool that can use a hardware key

    LUKS on an external USB storage device that automatically unlocks when
    connected to a specific system:

    * Creating Part1: Https://youtu.be/vk9Z2_rEUak (nerds should find this very funny)
    * Accessing Part2: Https://youtu.be/ELEVo6SbYl0 seems to be it.
    * Text version: Https://baldnerd.com/add-a-drive-to-...and-encrypt-it

Page 1 of 2 12 LastLast

Tags for this Thread

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •