| Server IP : 61.19.30.66 / Your IP : 216.73.216.15 Web Server : Apache/2.2.22 (Ubuntu) System : Linux klw 3.11.0-15-generic #25~precise1-Ubuntu SMP Thu Jan 30 17:39:31 UTC 2014 x86_64 User : www-data ( 33) PHP Version : 5.3.10-1ubuntu3.48 Disable Function : pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority, MySQL : ON | cURL : OFF | WGET : ON | Perl : ON | Python : ON | Sudo : ON | Pkexec : OFF Directory : /usr/bin/ |
Upload File : |
#!/bin/sh -e # This script mounts a user's confidential private folder # # Original by Michael Halcrow, IBM # Extracted to a stand-alone script by Dustin Kirkland <kirkland@ubuntu.com> # # This script: # * interactively prompts for a user's wrapping passphrase (defaults to their # login passphrase) # * checks it for validity # * unwraps a users mount passphrase with their supplied wrapping passphrase # * inserts the mount passphrase into the keyring # * and mounts a user's encrypted private folder PRIVATE_DIR="Private" WRAPPING_PASS="LOGIN" PW_ATTEMPTS=3 TEXTDOMAIN="ecryptfs-utils" MESSAGE=`gettext "Enter your login passphrase:"` if [ -f $HOME/.ecryptfs/wrapping-independent ]; then # use a wrapping passphrase different from the login passphrase WRAPPING_PASS="INDEPENDENT" MESSAGE=`gettext "Enter your wrapping passphrase:"` fi WRAPPED_PASSPHRASE_FILE="$HOME/.ecryptfs/wrapped-passphrase" MOUNT_PASSPHRASE_SIG_FILE="$HOME/.ecryptfs/$PRIVATE_DIR.sig" # First, silently try to perform the mount, which would succeed if the appropriate # key is available in the keyring if /sbin/mount.ecryptfs_private >/dev/null 2>&1; then exit 0 fi # Otherwise, interactively prompt for the user's password if [ -f "$WRAPPED_PASSPHRASE_FILE" -a -f "$MOUNT_PASSPHRASE_SIG_FILE" ]; then tries=0 stty_orig=`stty -g` while [ $tries -lt $PW_ATTEMPTS ]; do echo -n "$MESSAGE" stty -echo LOGINPASS=`head -n1` stty $stty_orig echo if [ $(wc -l < "$MOUNT_PASSPHRASE_SIG_FILE") = "1" ]; then # No filename encryption; only insert fek if printf "%s\0" "$LOGINPASS" | ecryptfs-unwrap-passphrase "$WRAPPED_PASSPHRASE_FILE" - | ecryptfs-add-passphrase -; then break else echo `gettext "ERROR:"` `gettext "Your passphrase is incorrect"` tries=$(($tries + 1)) continue fi else if printf "%s\0" "$LOGINPASS" | ecryptfs-insert-wrapped-passphrase-into-keyring "$WRAPPED_PASSPHRASE_FILE" - ; then break else echo `gettext "ERROR:"` `gettext "Your passphrase is incorrect"` tries=$(($tries + 1)) continue fi fi done if [ $tries -ge $PW_ATTEMPTS ]; then echo `gettext "ERROR:"` `gettext "Too many incorrect password attempts, exiting"` exit 1 fi /sbin/mount.ecryptfs_private else echo `gettext "ERROR:"` `gettext "Encrypted private directory is not setup properly"` exit 1 fi if grep -qs "$HOME/.Private $PWD ecryptfs " /proc/mounts 2>/dev/null; then echo echo `gettext "INFO:"` `gettext "Your private directory has been mounted."` echo `gettext "INFO:"` `gettext "To see this change in your current shell:"` echo " cd $PWD" echo fi exit 0