Will changing password re-encrypt my home directory?

password encryption ecryptfs

Solution 1:

There is no need to re-encrypt your home directory, and no further steps need to be taken.

Your home directory is not directly encrypted with your password. Instead, the passphrase used to encrypt the home directory is itself encrypted with your password.

When you change your password, the home directory passphrase is re-encrypted with your new password, so you should have continued access to your files with the new password.

This is handled via PAM (Pluggable Authentication Modules), so should work with any password change tool. The exception is administrative password changes where the original password is not provided. This is expected behaviour though: if the administrator could decrypt your files without knowing your password then there would be no actual protection.

In the case you perform an administrative password change, after mounting your home directory with

ecryptfs-mount-private

and your old password, issue

ecryptfs-rewrap-passphrase ~/.ecryptfs/wrapped-passphrase

to change the unwrapping password to match your new one. This way your home directory will be auto-mounted at login, just as it used to.

Related

Where can I find more Unity themes?
bash: how to pass command line arguments containing special characters
Merge two audio channels (stereo) into one (mono) on GSM6.10 using FFMPEG
Deleting large amount of files in Windows is slow
Use "cd -" without any output
Notepad++ - Continue Search from top
how to kill process in Mac OS X and not have it restart on its own
How do I add a number at the end of every line in Notepad++?
How to set password on already existing winrar archive and encrypt it also?
save in insert mode (VIM)
How to get the full path of a file in bash?
How to map the Caps Lock key to Escape key in Arch Linux