How to use an encrypted home directory with sddm

Thx again for reading and answering this post if you can.

I’d like to use an encrypted home directory on my laptop, using either luks or dm-crypt, but such an option doesn’t seem to exist on Yast2. I googled this topic but found nothing very clear.

Does it exist a procedure to do so ?

Thx for reading.

The opensuse installer will allow you to encrypt drives during the installation.

He does not ask for an encrypted “drive” (a file system), but for the home directory of a particular user.

You can setup encrypted “/home” during install.

If you just want the user home directory to be encrypted for a particular user (or several users), I think Yast provides for that when creating the user but not for an existing user.

My recommendation would be to use an “ecryptfs” home directory. Or maybe an “ecryptfs” private directory is sufficient. This is not too hard to setup with the “ecryptfs” tools, and it works pretty well.

It was removed from YaST entirely, it does not offer encrypting user home anymore.

Thanks. I haven’t been checking.

In anycase, an “ecryptfs” encrypted home directory is still possible, but Yast doesn’t set it up for you.

No, I wish a crypted directory which is mounted at login, but will try encryptfs.

Then install “ecryptfs-utils”.

After installing, as root run the command:

pam-config -a --ecryptfs

to configure the pam support.

Then use:

ls /usr/bin/ecryptfs*

to list the tools available. I think “ecryptfs-migrate-home” will do what you want.

Why that ? It seems to me that it is an important feature for your security. Gnome provides it.

+1
i also think this feature is necessary

This thread might help : https://forums.opensuse.org/showthread.php/522916-Setting-an-existing-user-to-have-an-encrypted-home-directory-using-encfs/page2