Fix This Broken Stacked Encrypted Linux Filesystem

15 minutes
  • 4 Learning Objectives

About this Hands-on Lab

In this activity you will resolve an issue that prevents the creation of an encrypted filesystem using eCryptfs.

You are working as a Systems Administrator and have been tasked with creating an encrypted filesystem using eCryptFS.

However, when you attempt to mount the filesystem you receive the following error:
“`
…unknown filesystem type ‘ecryptfs’.
“`

Resolve this error and mount the filesystem.

Learning Objectives

Successfully complete this lab by achieving the following learning objectives:

Identify the Issue and Resolve It

Is the kernel module installed? Check with this:

lsmod | grep ecryptfs

If not, load it:

modprobe ecryptfs
Create the Cipher Directory and Mount Point

Create the cipher directory to hold encrypted data:

mkdir secret-enc

Create the mount point to access unencrypted data:

mkdir secret
Add Your Passphrase to the Kernel Keyring
ecryptfs-add-passphrase
export KSIG=
Mount the Encrypted Filesystem

Substitute the key signature from the ecryptfs-add-passphrase command:

echo $KSIG
sudo mount -i -t ecryptfs secret-enc/ secret/ -o ecryptfs_sig=$KSIG,ecryptfs_fnek_sig=$KSIG,ecryptfs_cipher=aes,ecryptfs_key_bytes=32,ecryptfs_unlink_sigs

Additional Resources

You are working as a Systems Administrator and have been tasked with creating an encrypted filesystem using eCryptfs.

However, when you attempt to mount the filesystem you receive the following error:

...unknown filesystem type 'ecryptfs'.

You will need to log into the remote system running SUSE Linux Enterprise Server 15 and complete the following tasks in order to resolve the error and create the encrypted filesystem:

  1. Identify the issue and resolve it.
  2. Create the cipher directory and mount point.
  3. Add your passphrase to the kernel keyring.
  4. Mount the encrypted filesystem.

What are Hands-on Labs

Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.

Sign In
Welcome Back!

Psst…this one if you’ve been moved to ACG!

Get Started
Who’s going to be learning?