How do I encrypt my solus installation, I am dual booting with windows 10

al_l_en

I would like to encrypt my solus installation only. Since the installer only supports full disk encryption, is there any other way I can pull this off.

Justin

Not without manually encrypting post installation and that is not simple as far as I am aware.

downhill

Do you really need to encrypt your entire Solus installation? I've never understood the need to encrypt an entire installation or drive, except for government/corporate environments. Use Veracrypt, in the repos, to create an encrypted file or partition and store your private/sensitive stuff there.

kyrios

downhill Full disk encryption is usually a little faster and more secure. There might be confidential data in the cache, temp files, etc... It's much easier to reset some password if they are on an unencrypted partition and some malicious software may eventually be installed (like a keylogger for example) on an unencrypted partition.
Of course some of these imply to have a physical or a shell access to the machine.

The thing with security is that there is not one magical formula that will work for everyone. You have to know what you want to protect and against who to define a strategy, then you have to make a balance between security and usability.

al_l_en

Ok, so there is no workaround other than using full disk encryption, is encryption hard to support on dual boot

kyrios

al_l_en The easiest is to try with zulucrypt or veracrypt

al_l_en

Thank you I am going to try out zulucrypt, does automatically work when I login

davide-trellis

I hit this thread searching on ecryptfs http://ecryptfs.org/ . I prefer that on usb drives because I think it's lighter on the wear levels. For may main drive, I just encrypted the whole thing on install. I just needed ecryptfs for usb drives. Veracrypt would work too of course. I was successfully able to get that working (I came from an ubuntu flavor where there were PPA's).

So, the ecryptfs kernel module was already there, I just needed ecryptfs-utils, maybe someone will package that sometime but for now I just compiled and installed it:

downloaded source from https://launchpad.net/ecryptfs/+download
install make
install gcc
install g++
install glibc-devel
install linux-headers
install binutils
installed keyutils-devel
installed libnss-devel
after that, I simply ran configure -prefix=/usr && make && make install

Hope that's helpful.