ClamTK and Encrypted Home Directory
up vote
1
down vote
favorite
I recently encrypted my home directory and since then I have realized Clam AV is not really scanning the file in my home directory. It is scanning the encrypted files. I am running the scan with the user who's home is encrypted (using ecryptfs-migrate-home).
How can I recursively scan my encrypted home directory now using ClamTK or freshclam?
ecryptfs clamav clamtk
asked Jan 28 at 4:13
Yazad Khambata
1063
add a comment |
up vote
1
down vote
favorite
I recently encrypted my home directory and since then I have realized Clam AV is not really scanning the file in my home directory. It is scanning the encrypted files. I am running the scan with the user who's home is encrypted (using ecryptfs-migrate-home).
How can I recursively scan my encrypted home directory now using ClamTK or freshclam?
ecryptfs clamav clamtk
asked Jan 28 at 4:13
Yazad Khambata
1063
You can't scan encrypted files, you have to decrypt them, then scan them
– Panther
Jan 28 at 4:37
Agreed, but for all use other than the virus scan the contents of the home directory are automatically decrypted without me having to explicitly take any action to decrypt. Why won’t that be the case while virus scanning?
– Yazad Khambata
Jan 28 at 4:41
You are asking why clamav or any virus scanner does not have decryption as a feature ? Really ? It would be poor encryption if clamav could decrypt the data.
– Panther
Jan 28 at 14:54
No, the decryption is at the point when the user who’s home is encrypted logs in. The user doesn’t need to decrypt individual files to use. I am expecting the same from the antivirus for reading files during the scan.
– Yazad Khambata
Jan 28 at 14:59
user logs in -> files are decrypted. Then step run clamav. Exclude the encrypted files if you wish (.Private I think)
– Panther
Jan 28 at 15:49
add a comment |
up vote
1
down vote
favorite
up vote
1
down vote
favorite
I recently encrypted my home directory and since then I have realized Clam AV is not really scanning the file in my home directory. It is scanning the encrypted files. I am running the scan with the user who's home is encrypted (using ecryptfs-migrate-home).
How can I recursively scan my encrypted home directory now using ClamTK or freshclam?
ecryptfs clamav clamtk
asked Jan 28 at 4:13
Yazad Khambata
1063
I recently encrypted my home directory and since then I have realized Clam AV is not really scanning the file in my home directory. It is scanning the encrypted files. I am running the scan with the user who's home is encrypted (using ecryptfs-migrate-home).
How can I recursively scan my encrypted home directory now using ClamTK or freshclam?
ecryptfs clamav clamtk
ecryptfs clamav clamtk
asked Jan 28 at 4:13
Yazad Khambata
1063
asked Jan 28 at 4:13
Yazad Khambata
1063
asked Jan 28 at 4:13
Yazad Khambata
1063
asked Jan 28 at 4:13
Yazad Khambata
1063
asked Jan 28 at 4:13
Yazad Khambata
1063
1063
You can't scan encrypted files, you have to decrypt them, then scan them
– Panther
Jan 28 at 4:37
Agreed, but for all use other than the virus scan the contents of the home directory are automatically decrypted without me having to explicitly take any action to decrypt. Why won’t that be the case while virus scanning?
– Yazad Khambata
Jan 28 at 4:41
You are asking why clamav or any virus scanner does not have decryption as a feature ? Really ? It would be poor encryption if clamav could decrypt the data.
– Panther
Jan 28 at 14:54
No, the decryption is at the point when the user who’s home is encrypted logs in. The user doesn’t need to decrypt individual files to use. I am expecting the same from the antivirus for reading files during the scan.
– Yazad Khambata
Jan 28 at 14:59
user logs in -> files are decrypted. Then step run clamav. Exclude the encrypted files if you wish (.Private I think)
– Panther
Jan 28 at 15:49
add a comment |
You can't scan encrypted files, you have to decrypt them, then scan them
– Panther
Jan 28 at 4:37
Agreed, but for all use other than the virus scan the contents of the home directory are automatically decrypted without me having to explicitly take any action to decrypt. Why won’t that be the case while virus scanning?
– Yazad Khambata
Jan 28 at 4:41
You are asking why clamav or any virus scanner does not have decryption as a feature ? Really ? It would be poor encryption if clamav could decrypt the data.
– Panther
Jan 28 at 14:54
No, the decryption is at the point when the user who’s home is encrypted logs in. The user doesn’t need to decrypt individual files to use. I am expecting the same from the antivirus for reading files during the scan.
– Yazad Khambata
Jan 28 at 14:59
user logs in -> files are decrypted. Then step run clamav. Exclude the encrypted files if you wish (.Private I think)
– Panther
Jan 28 at 15:49
You can't scan encrypted files, you have to decrypt them, then scan them
– Panther
Jan 28 at 4:37
You can't scan encrypted files, you have to decrypt them, then scan them
– Panther
Jan 28 at 4:37
Agreed, but for all use other than the virus scan the contents of the home directory are automatically decrypted without me having to explicitly take any action to decrypt. Why won’t that be the case while virus scanning?
– Yazad Khambata
Jan 28 at 4:41
Agreed, but for all use other than the virus scan the contents of the home directory are automatically decrypted without me having to explicitly take any action to decrypt. Why won’t that be the case while virus scanning?
– Yazad Khambata
Jan 28 at 4:41
You are asking why clamav or any virus scanner does not have decryption as a feature ? Really ? It would be poor encryption if clamav could decrypt the data.
– Panther
Jan 28 at 14:54
You are asking why clamav or any virus scanner does not have decryption as a feature ? Really ? It would be poor encryption if clamav could decrypt the data.
– Panther
Jan 28 at 14:54
No, the decryption is at the point when the user who’s home is encrypted logs in. The user doesn’t need to decrypt individual files to use. I am expecting the same from the antivirus for reading files during the scan.
– Yazad Khambata
Jan 28 at 14:59
No, the decryption is at the point when the user who’s home is encrypted logs in. The user doesn’t need to decrypt individual files to use. I am expecting the same from the antivirus for reading files during the scan.
– Yazad Khambata
Jan 28 at 14:59
user logs in -> files are decrypted. Then step run clamav. Exclude the encrypted files if you wish (.Private I think)
– Panther
Jan 28 at 15:49
user logs in -> files are decrypted. Then step run clamav. Exclude the encrypted files if you wish (.Private I think)
– Panther
Jan 28 at 15:49
add a comment |
1 Answer
1
active
oldest
votes
up vote
0
down vote
The point is that when setup as a cron job to run at 2AM, as daily scans should be, the application needs the smarts to decrypt a home folder. Many users now encrypt the home folder or the whole disk. From the login, scanning just ~/.mozilla, ~/.thunderbird, and ~/Downloads (4.1GB) took significant time, maybe an hour, running about 50% CPU on a dual core machine and Ubuntu 18.04. That is not an efficient use of resources when you are logged in trying to get other tasks accomplished.
answered Nov 28 at 5:34
Catwhisperer
10115
add a comment |
1 Answer
1
active
oldest
votes
1 Answer
1
active
oldest
votes
active
oldest
votes
active
oldest
votes
up vote
0
down vote
The point is that when setup as a cron job to run at 2AM, as daily scans should be, the application needs the smarts to decrypt a home folder. Many users now encrypt the home folder or the whole disk. From the login, scanning just ~/.mozilla, ~/.thunderbird, and ~/Downloads (4.1GB) took significant time, maybe an hour, running about 50% CPU on a dual core machine and Ubuntu 18.04. That is not an efficient use of resources when you are logged in trying to get other tasks accomplished.
answered Nov 28 at 5:34
Catwhisperer
10115
add a comment |
up vote
0
down vote
The point is that when setup as a cron job to run at 2AM, as daily scans should be, the application needs the smarts to decrypt a home folder. Many users now encrypt the home folder or the whole disk. From the login, scanning just ~/.mozilla, ~/.thunderbird, and ~/Downloads (4.1GB) took significant time, maybe an hour, running about 50% CPU on a dual core machine and Ubuntu 18.04. That is not an efficient use of resources when you are logged in trying to get other tasks accomplished.
answered Nov 28 at 5:34
Catwhisperer
10115
add a comment |
up vote
0
down vote
up vote
0
down vote
The point is that when setup as a cron job to run at 2AM, as daily scans should be, the application needs the smarts to decrypt a home folder. Many users now encrypt the home folder or the whole disk. From the login, scanning just ~/.mozilla, ~/.thunderbird, and ~/Downloads (4.1GB) took significant time, maybe an hour, running about 50% CPU on a dual core machine and Ubuntu 18.04. That is not an efficient use of resources when you are logged in trying to get other tasks accomplished.
answered Nov 28 at 5:34
Catwhisperer
10115
The point is that when setup as a cron job to run at 2AM, as daily scans should be, the application needs the smarts to decrypt a home folder. Many users now encrypt the home folder or the whole disk. From the login, scanning just ~/.mozilla, ~/.thunderbird, and ~/Downloads (4.1GB) took significant time, maybe an hour, running about 50% CPU on a dual core machine and Ubuntu 18.04. That is not an efficient use of resources when you are logged in trying to get other tasks accomplished.
answered Nov 28 at 5:34
Catwhisperer
10115
answered Nov 28 at 5:34
Catwhisperer
10115
answered Nov 28 at 5:34
Catwhisperer
10115
answered Nov 28 at 5:34
Catwhisperer
10115
10115
add a comment |
add a comment |
Thanks for contributing an answer to Ask Ubuntu!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Some of your past answers have not been well-received, and you're in danger of being blocked from answering.
Please pay close attention to the following guidance:
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2faskubuntu.com%2fquestions%2f1000577%2fclamtk-and-encrypted-home-directory%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
You can't scan encrypted files, you have to decrypt them, then scan them
– Panther
Jan 28 at 4:37
Agreed, but for all use other than the virus scan the contents of the home directory are automatically decrypted without me having to explicitly take any action to decrypt. Why won’t that be the case while virus scanning?
– Yazad Khambata
Jan 28 at 4:41
You are asking why clamav or any virus scanner does not have decryption as a feature ? Really ? It would be poor encryption if clamav could decrypt the data.
– Panther
Jan 28 at 14:54
No, the decryption is at the point when the user who’s home is encrypted logs in. The user doesn’t need to decrypt individual files to use. I am expecting the same from the antivirus for reading files during the scan.
– Yazad Khambata
Jan 28 at 14:59
user logs in -> files are decrypted. Then step run clamav. Exclude the encrypted files if you wish (.Private I think)
– Panther
Jan 28 at 15:49