From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by finch.gentoo.org (Postfix) with ESMTPS id 170031382C5 for ; Fri, 12 Jun 2020 02:00:50 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 6CA91E095F; Fri, 12 Jun 2020 02:00:42 +0000 (UTC) Received: from mail-oo1-xc44.google.com (mail-oo1-xc44.google.com [IPv6:2607:f8b0:4864:20::c44]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id D187CE0943 for ; Fri, 12 Jun 2020 02:00:41 +0000 (UTC) Received: by mail-oo1-xc44.google.com with SMTP id x17so1644988oog.6 for ; Thu, 11 Jun 2020 19:00:41 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=subject:to:references:from:openpgp:autocrypt:message-id:date :user-agent:mime-version:in-reply-to; bh=INLlRz3YEV91WCOTOInCD9LqMIkyjPbRNDb2ZmwkZL0=; b=i/qoQlvSyBGyOKzhOiQ45jGpDVbi0FxUwOX0h3XwEfD5aE67TUoTw2Svoq0N/lifaS hEkgtMC42cYE81NroTAhrlBIzymYMEXsl7qSE2RQEuDNZCGPQGp6qSU8j5RqONNG6DJx /ujYiQ9j0GHHxdAVT++7exNgwld/F86czbh27pzxZN7DtywadLqJy7mNI09x4O8WzXHS 3CtdAudaeGXMaDiKAAd3ZCLer3QLLqfyUrEYCjSmtP4DsA8Kwc/yZm1FJ5ovAZEhEC90 DQLyqShxvl0VZfvA6xf4xUIeHWFzI5UHTTiZ8555qYAsONQtFaLFO8AiSG0Q84+zIKMk 1BaA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:references:from:openpgp:autocrypt :message-id:date:user-agent:mime-version:in-reply-to; bh=INLlRz3YEV91WCOTOInCD9LqMIkyjPbRNDb2ZmwkZL0=; b=rsnUNWN0BQ8Wd3JFKCAQ6MQ4xTY9LjDMRFm2XI0/bmYAdGQeo03kt+sUBsItTTrbZt gERfL4i5zDPyj0p6Dm4h/8KwYrw6ME2371CfYevMw0WhYAmJDLz2U+eST0xLbVxRsCt7 NkDEDxGqiAXAIQHAxmUNm+gH4ytbQce9lwSyPRc7rLdTSaeyyuPHDAe0M2JrhKATxZGt jbTUTMnNXt9xzHEow+WomKI5Sox+9+J+8yU+nzfv0Y9DnqJGgrl8JQ1qB4KG+mrZUQGB 5TYRSpdaizQfAB6qv0WRtCYZJo73edGnwcL3wcaTZRFq15n82coms1mfkZ727PDGttNp A7lw== X-Gm-Message-State: AOAM533YPlUtFkij4g3iOlHODwk/aU0gt+7xN8cB8oUA6B2biKwRQJvd nJYCnE/NJtEO3C+/lqdZI4JI1OwO X-Google-Smtp-Source: ABdhPJwebxYV3oMBl16KJk5+8oTEyRJLN278XmOYfxRKLMklm1wPtNjFsvwNjSVWWiNAEKo6ItPy6g== X-Received: by 2002:a4a:221a:: with SMTP id f26mr8993329ooa.69.1591927240861; Thu, 11 Jun 2020 19:00:40 -0700 (PDT) Received: from [192.168.0.100] (adsl-074-188-241-018.sip.asm.bellsouth.net. [74.188.241.18]) by smtp.gmail.com with ESMTPSA id e25sm1063854otj.73.2020.06.11.19.00.39 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Thu, 11 Jun 2020 19:00:40 -0700 (PDT) Subject: Re: [gentoo-user] Encrypting a hard drive's data. Best method. To: gentoo-user@lists.gentoo.org References: <3082a322-c6f8-31e7-fbc4-823963307b87@gmail.com> <98a5dbe1-5719-f80a-3552-6695fb8f80c1@gmail.com> <045bf641-5fd9-12cc-3723-10d43094f882@gmail.com> <15d45249-5f60-04d1-cfc9-356cefc82b14@gmail.com> From: Dale Openpgp: preference=signencrypt Autocrypt: addr=rdalek1967@gmail.com; prefer-encrypt=mutual; keydata= mQINBFxc7MgBEAC+zrgEdqJJiDe/UDAB+ScmferXWfJTVjbVT2T4DQ7jiLrgP9aNUo1HioNF mrU3JPOCR32gvZyTbY1+niO5+VSo/+pSqQ785h6ZDj1klMkrg6tEzGnf2MNBpBj4houZwxQ+ WDKKTg2M9F+lv8wTIdR/JQn+hSviktLMtrghQlyLhpapsLXWLA6gMFebpQYwxUwemvan8ddX lQvJe9FGyFYvBi0dp1gl10F2O+DVZJxvX8xkX+yImVlhVJiC31gXHRcj+Qlo7gprlU7TIieF Uow6/ZvYKJ26pztVdFCg5w0rMJkF/x8Zd4A6wnuptiAPmWaQ1+YKgYDonbDUgwqFSx5/lN5z DGZ4LlioxeUTTPVvZsqBIeDz6jNFA583OYbo1/S26dqrvTFf2DKlsvoDpVfAhNlwJPjoixs0 X3FNqPv+M10n4kq5Iz7Q9E3O4s/nfFIYGocEslVka7zZPkXSaHbsn+KJlY8XV6qxtCEdh0/V XX1+1aU2J74M0JikWhpwxTZ1dP5aOyWSPPEgFFIRW6xwwC02SoRH9a7mggfGYp/YjPlONNaT SCL8sgRfvmq3D0XTbLyTjSbExxkfKDmbePQagawDE3TlI/oivHf1JaAcbwMb3LZuU4TGcOIl 5D+x7q0MUIeCop0ZFOwAnqW3AVVNvsBkv2KN+IHJryWAf0/iMQARAQABtBtEYWxlIDxyZGFs ZWsxOTY3QGdtYWlsLmNvbT6JAk4EEwEIADgWIQTZ7suruPBaS60bCYXvEM/XWu+ZnAUCXFzs yAIbIwULCQgHAgYVCgkICwIEFgIDAQIeAQIXgAAKCRDvEM/XWu+ZnN+7D/4/1dNG4aCz0+v+ 0dcjV5tY1feYEWCdHKyDzxWBxlCpd/0NPRQeNY4VMjbCl/sq7GkXi/c2SbfWDQ5BQRkkExG1 pSwuXSIehGok/4fpTi3HDAguRvzdCqlKPt7me05FyiC/WnpY5GOlJ3ruGw2qABv/RmV2q5b/ tkq7h1y1f16DTNr3/nsj8HzHcrHdXdL4kaYChSOe/dbQR9Stqak7eMyR+iwvrJMNF/CGl70P 2x5ybsXMDzRVOqNcpa5ZdhEMTVh6+vC1SOmm1BFMF8XCqBEvBbcHWDQmGYTdNCsS/ADm8CBl gvjJgLdIsAzoMu4WHQDFnzXAoArqFWgAf53isOS4AWrv29tF9b8Aa1vb7h5JEa+ArcMsA6Gl X38+GY6WXXaxKI9n3PTCWu9tPGnRh7mABjnwEosDDqmzw8aTAYECb3avDuGY2rmcjgh4H6RE w08d63j1T4d5J9wlm4TGtW/VHgbUFkATEdH3Acl/EjFiyqTiX7p8kU6Reu5enIkogA93xoQh Rmy7ZiST/5LN+ZkaOdyjIw0L+5KalslN9SKt809YxgJ6kPo657LNTFPiFvFA46/SEWcBYrzq Xk0wEW0gBRWf+BqN0qRhU0/EQ+QfRdLLFg2xtUePwlheYLXxfyDLrdCCOLWYpkzbjCZHLS4u 69smbvR9S9KBDNzJybxEWrkCDQRcXOzIARAA5IGRWTqaM44IJgBYghZg2fGj0Am7KWPhE7V7 T/EEe7vVSUEFqHtlHzI4ZK6Q0AZ9uAEjE8IJIQ7KoTjzNqAtabP0vp3s0szgtJlsZ+8vGKlQ my7fvzSrdoQL0Xn7CEwJYFXJ1EMUcYIQeoHG1cUAaXx73k9BFbjwjnUeMrqlV/ZovQlg7duW nESfQ7HZu5NrtYyY3jPMUouxiO9WQPh+IHxZbt1absF2VcvRAymD32RxGvMPbw6ChMRD/p9O 4PH7M5rXaxr78NXQX9E48vrI00f1cYb9NSN1HnSV8cW3jKObVjdBk6jPQwrMvdpgdQhUB9aZ HS/9mC9mmAgiXKyCpzXe7FPB6QznSfn4GIaC/luy1e6SLUkJhRK/niB+gq+Mfxg2zXNuDUTI cMGmpDCp3kgUoorkaltk8RW09io95BkXrGhcDNuSGZfAParBc7RXyYpbIcax8St7tEAd2oFh 4seYOPUlzuhGrPpqR/91wrFc4E1260GKauSr4UhMJv6tygBwyC0mmBMKi+ZXw6ZdZxA5fg7y 35P3TILjznCXXTDgRHq9A3NknKRMcgFacX6eIhANkMFo6oJVjuEgy1dvu1wFfDq7c+i8GAHu L4pYzyXYu6PporlNNU0xSwdVgzM/uuK0lt+UxCimgC+YR3IezgDcbfudb7h9dGIwL+bbPL0A EQEAAYkCNgQYAQgAIBYhBNnuy6u48FpLrRsJhe8Qz9da75mcBQJcXOzIAhsMAAoJEO8Qz9da 75mcXZ4P/1YXgWDZek7mhzrf6uaQzMxa92P89HeWz4PlgB/32symeEFAV04WazzBZffI8AYY rGA1Xmu/2VaB9+FOODyKhUWBc2UL0NRWBk6POwboyTdKlclmpixaN9zLcBt0YLejoRfN1B/5 aQf9/lUDZMnAiCyz0FgeqEMUshldmwWC35RqnjrCbbuk2vIqSH6BLDIXU6jQrLHE1DF0ai41 wLtQFAFXPhn45n0ZwYhVs4Z32z4sjXrIvgBgCaXa4HM+L1Klne0KiNM8ReFTTpTE0SgyDOSZ O3MOa2n77i6JbVtsbiFYnNeP3J9S/l3jevGpZEtNQOKrIm1MW8jGuHWtsDeMkT/mCcSodlkt PxIo+mMK9GpGvG2hW80LiohqNfUbNwAmr3blOYY4URPXPRnEnPs4pmTmL5owjw2dkg145i9I D42Tq+XZ6YtWt3SGzGbAYow6XwTwZ5NFAzV9UQuCGrDw4KWan6O6Z+VIYWsn0UMZlu1Obxna aocofkaUCbISK26kImuD1aA8juSHC18Qv1xUage6/UakbSxyDtACqt6hOVFKX3IA59ApdNRT +2x3iCmlvF9MJsGgFq6IpqL+Fk7iWV8Kjbz0wQOId6N9+JdQh3LrLaS7a1PowUm1z9DK5/O0 Yg+gpDnEOOFI7WM5u7a7FSM2Z/LXGVwel/0eWvLk9tN6 Message-ID: Date: Thu, 11 Jun 2020 21:00:38 -0500 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Firefox/60.0 SeaMonkey/2.53.2 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org X-Auto-Response-Suppress: DR, RN, NRN, OOF, AutoReply MIME-Version: 1.0 In-Reply-To: Content-Type: multipart/alternative; boundary="------------F8DD7D66CAF35A07A215574D" X-Archives-Salt: adf8f2a1-6d32-4d63-bea2-fee5da8b1e08 X-Archives-Hash: c958c387b964006b9a96e06100219c69 This is a multi-part message in MIME format. --------------F8DD7D66CAF35A07A215574D Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Victor Ivanov wrote: > From what I gather, taking into account your other email as well, there > are two separate things going on which may or may not be related: > > 1) The (now open) filesystem isn't being mounted where it should as per > fstab > > 2) Even then, there appears to be a bogus 'private' parent directory: > /run/media/private// as opposed to /run/media// When I named it, I named it private.  It could be that is where it got that word from.  It could be DN picked it up, it could be other things picked it up as well.  Basically, that's the LVM name for the group thingy.  I named the partition privatepart.  I added part so I would know it is a partition.  Sometimes the names LVM uses can be confusing.  I try to avoid naming a LVM group and a partition with the same name.  If nothing else, I add 'part' for partitions or something that I can tell what they are more than what they are called.  Example, I have a internal backup drive that has a LVM group named backup.  The partition is also named backup.  Yea, now which is which?  If I ever redo that, I'll name the partition backuppart or something.  Then I know which is a LVM group and which is a partition. > On 11/06/2020 23:17, Dale wrote: >> This is my fstab entry: >> >> UUID="7f0cf585-57c8-4a50-808b-987fc13ceee0" >> /home/dale/Desktop/Videos/Private ext4 defaults,users 0 0 >> ... >> You notice anything off about that? I make a error somewhere? Miss a >> option maybe? > fstab doesn't like quotes. The correct syntax would be: > UUID=7f0cf585-57c8-4a50-808b-987fc13ceee0 > > Re (1) above, given that /etc/conf.d/dmcrypt is only used by the dmcrypt > service through OpenRC its contents are irrelevant when using KDE. So, > from the perspective of DN updating fstab with the correct syntax should > be a two birds, one stone solution to both (1) and (2). > > Unless your encrypted volume is always connected to the system and you > would like it to be automatically unlocked (via means of being asked to > enter your password), there is no need to enter anything into > /etc/conf.d/dmcrypt and you can leave the file blank/commented out. > > Re (2), frankly, I have no idea but I'm curious as to where that > "private" parent directory might come from. The only possible source for > this that I can guess is from your entry in /etc/conf.d/dmcrypt in the > value for "target": I copied that method from a wiki.  I also have this in fstab.  The first one has been there for several years.  It mounts when booting up. UUID="13d4bec9-1271-490c-b718-d8b1c68ae1e6"   /backup     ext4            defaults    0 2 UUID="7f0cf585-57c8-4a50-808b-987fc13ceee0" /home/dale/Desktop/Videos/Private  ext4 defaults,users 0 0 It has quote marks and it works fine.  Maybe that is a new thing??  That said, I'll remove them since on a Gentoo wiki, it doesn't show them.  I commented out the entries in dmcrypt.  I saved them in case I need to refer back later tho.  It took me a while to figure out what all I needed and what I didn't tho.  Poor google.  >> ## 3TB private drive external >> target='private' >> source=UUID='107be33c-b31c-44b8-b4e7-400ee19fb440' > While this should only affect the name of the block device created under > "/dev/mapper" it seems too much of a coincidence that the bogus parent > directory bears the same name. I've tried to reproduce your set-up but I > still don't get such a parent under /run/media. Perhaps you can try > changing the value to something else and see if it creates a directory > with the new name? If so, this would confirm the theory, but it still > shouldn't be doing that. At least it would be a starting point for > diagnosis, if it's worth going into that at all. > > Also, note that, as I mentioned, when mounting a crypto container > through KDE DN or Dolphin your dmcrypt config is irrelevant and > disregarded. You should hence expect upon opening the container to have > the filesystem's block device appear as "/dev/mapper/luks_abcd1234". > > - Victor > I been doing it manually.  I open the drive on the command line, make sure it is open and then mount it manually.  It uses fstab and mounts where I want it that way.  The DN tool just doesn't work.  Actually, trying to use it to handle encrypted drives sort of screwed up my normal drives and such.  Now it's mounting those things wrong.  I'm concerned it is going to break some thing such as my SDHC cards that I put in a card reader.  I started a new thread on that. How do you mount something within Dolphin?  I've looked through the menus and I can't find anything on mounting listed.  I haven't got my new glasses yet so maybe I'm not seeing it???  lol  Thanks.  I had to read this twice to make sure I got where you were going here.  I think I got it tho.  ;-) Dale :-)  :-)  --------------F8DD7D66CAF35A07A215574D Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: 8bit
Victor Ivanov wrote:
From what I gather, taking into account your other email as well, there
are two separate things going on which may or may not be related:

1) The (now open) filesystem isn't being mounted where it should as per
fstab

2) Even then, there appears to be a bogus 'private' parent directory:
/run/media/private/<uid>/<volume> as opposed to /run/media/<uid>/<volume>

When I named it, I named it private.  It could be that is where it got that word from.  It could be DN picked it up, it could be other things picked it up as well.  Basically, that's the LVM name for the group thingy.  I named the partition privatepart.  I added part so I would know it is a partition.  Sometimes the names LVM uses can be confusing.  I try to avoid naming a LVM group and a partition with the same name.  If nothing else, I add 'part' for partitions or something that I can tell what they are more than what they are called.  Example, I have a internal backup drive that has a LVM group named backup.  The partition is also named backup.  Yea, now which is which?  If I ever redo that, I'll name the partition backuppart or something.  Then I know which is a LVM group and which is a partition. 


On 11/06/2020 23:17, Dale wrote:

This is my fstab entry:

UUID="7f0cf585-57c8-4a50-808b-987fc13ceee0"
/home/dale/Desktop/Videos/Private  ext4 defaults,users 0 0
...
You notice anything off about that?  I make a error somewhere?  Miss a
option maybe?

fstab doesn't like quotes. The correct syntax would be:
UUID=7f0cf585-57c8-4a50-808b-987fc13ceee0

Re (1) above, given that /etc/conf.d/dmcrypt is only used by the dmcrypt
service through OpenRC its contents are irrelevant when using KDE. So,
from the perspective of DN updating fstab with the correct syntax should
be a two birds, one stone solution to both (1) and (2).

Unless your encrypted volume is always connected to the system and you
would like it to be automatically unlocked (via means of being asked to
enter your password), there is no need to enter anything into
/etc/conf.d/dmcrypt and you can leave the file blank/commented out.

Re (2), frankly, I have no idea but I'm curious as to where that
"private" parent directory might come from. The only possible source for
this that I can guess is from your entry in /etc/conf.d/dmcrypt in the
value for "target":

I copied that method from a wiki.  I also have this in fstab.  The first one has been there for several years.  It mounts when booting up.


UUID="13d4bec9-1271-490c-b718-d8b1c68ae1e6"   /backup     ext4            defaults    0 2
UUID="7f0cf585-57c8-4a50-808b-987fc13ceee0" /home/dale/Desktop/Videos/Private  ext4 defaults,users 0 0


It has quote marks and it works fine.  Maybe that is a new thing??  That said, I'll remove them since on a Gentoo wiki, it doesn't show them. 

I commented out the entries in dmcrypt.  I saved them in case I need to refer back later tho.  It took me a while to figure out what all I needed and what I didn't tho.  Poor google.  


      

        
## 3TB private drive external
target='private'
source=UUID='107be33c-b31c-44b8-b4e7-400ee19fb440'


      

      
While this should only affect the name of the block device created under
"/dev/mapper" it seems too much of a coincidence that the bogus parent
directory bears the same name. I've tried to reproduce your set-up but I
still don't get such a parent under /run/media. Perhaps you can try
changing the value to something else and see if it creates a directory
with the new name? If so, this would confirm the theory, but it still
shouldn't be doing that. At least it would be a starting point for
diagnosis, if it's worth going into that at all.

Also, note that, as I mentioned, when mounting a crypto container
through KDE DN or Dolphin your dmcrypt config is irrelevant and
disregarded. You should hence expect upon opening the container to have
the filesystem's block device appear as "/dev/mapper/luks_abcd1234".

- Victor



    

    

    

    I been doing it manually.  I open the drive on the command line,
    make sure it is open and then mount it manually.  It uses fstab and
    mounts where I want it that way.  The DN tool just doesn't work. 
    Actually, trying to use it to handle encrypted drives sort of
    screwed up my normal drives and such.  Now it's mounting those
    things wrong.  I'm concerned it is going to break some thing such as
    my SDHC cards that I put in a card reader.  I started a new thread
    on that. 

    

    How do you mount something within Dolphin?  I've looked through the
    menus and I can't find anything on mounting listed.  I haven't got
    my new glasses yet so maybe I'm not seeing it???  lol  

    

    Thanks.  I had to read this twice to make sure I got where you were
    going here.  I think I got it tho.  ;-)

    

    Dale

    

    :-)  :-)  

  


--------------F8DD7D66CAF35A07A215574D--