Documentation/filesystems/ecryptfs

Chinese translated version of Documentation/filesystems/ecryptfs

If you have any comment or update to the content, please contact the
original document maintainer directly.  However, if you have a problem
communicating in English you can also ask the Chinese maintainer for
help.  Contact the Chinese maintainer if this translation is outdated
or if there is a problem with the translation.

Chinese maintainer: 朱司仪  331954465@qq.com
---------------------------------------------------------------------
Documentation/filesystems/ecryptfs的中文翻译

如果想评论或更新本文的内容，请直接联系原文档的维护者。如果你使用英文
交流有困难的话，也可以向中文版维护者求助。如果本翻译更新不及时或者翻
译存在问题，请联系中文版维护者。

中文版维护者： 朱司仪  331954465@qq.com
中文版翻译者： 朱司仪  331954465@qq.com
中文版校译者： 朱司仪  331954465@qq.com

以下为正文
---------------------------------------------------------------------
                      =============
                      Documentation/filesystems/ecryptfs
                      =============

eCryptfs: A stacked cryptographic filesystem for Linux

eCryptfs: Linux的堆叠的加密文件系统

eCryptfs is free software. Please see the file COPYING for details.
For documentation, please see the files in the doc/ subdirectory.  For
building and installation instructions please see the INSTALL file.

ecryptfs的是免费软件。请参阅文件复制细节。
关于文档，请参阅doc /子目录下的文件。
为构建和安装说明，请参阅INSTALL文件

Maintainer: Phillip Hellewell
Lead developer: Michael A. Halcrow <mhalcrow@us.ibm.com>
Developers: Michael C. Thompson
            Kent Yoder
Web Site: http://ecryptfs.sf.net

维护者：Phillip Hellewell
主要开发者：Michael A. Halcrow <mhalcrow@us.ibm.com>
开发者：Michael C. Thompson
        Kent Yoder
网站：http://ecryptfs.sf.net

This software is currently undergoing development. Make sure to
maintain a backup copy of any data you write into eCryptfs.

这个软件是目前正在进行开发。请务必
保持ecryptfs的写入任何数据的备份副本。

eCryptfs requires the userspace tools downloadable from the
SourceForge site:

ecryptfs的需要下载的用户工具
SourceForge的网站：

http://sourceforge.net/projects/ecryptfs/

Userspace requirements include:
 - David Howells' userspace keyring headers and libraries (version
   1.0 or higher), obtainable from
   http://people.redhat.com/~dhowells/keyutils/
 - Libgcrypt

 用户空间的要求包括：
 David Howells'的用户空间的头文件和库（版本
   1.0或更高版本），来自
   http://people.redhat.com/~dhowells/keyutils/
 -Libgcrypt

 
NOTES

In the beta/experimental releases of eCryptfs, when you upgrade
eCryptfs, you should copy the files to an unencrypted location and
then copy the files back into the new eCryptfs mount to migrate the
files.

在测试/实验ecryptfs的版本，当您升级
ecryptfs时，你应该将这些文件复制到未加密的位置，
然后将文件复制到新ecryptfs的安装迁移
文件。

MOUNT-WIDE PASSPHRASE

装载WIDE PASSPHRASE

Create a new directory into which eCryptfs will write its encrypted
files (i.e., /root/crypt).  Then, create the mount point directory
(i.e., /mnt/crypt).  Now it's time to mount eCryptfs:

mount -t ecryptfs /root/crypt /mnt/crypt

You should be prompted for a passphrase and a salt (the salt may be
blank).

创建一个新的目录ecryptfs的会写到其加密
文件（即/root/crypt）。然后，创建挂载点目录
（即， /mnt/crypt）。然后开始安装ecryptfs：
mount -t ecryptfs /root/crypt /mnt/crypt
你应该被提示输入密码和salt（salt可空白）。

 

Try writing a new file:

echo "Hello, World" > /mnt/crypt/hello.txt

尝试写一个新的文件：
echo "Hello, World" > /mnt/crypt/hello.txt

The operation will complete.  Notice that there is a new file in
/root/crypt that is at least 12288 bytes in size (depending on your
host page size).  This is the encrypted underlying file for what you
just wrote.  To test reading, from start to finish, you need to clear
the user session keyring:
keyctl clear @u
Then umount /mnt/crypt and mount again per the instructions given
above.
cat /mnt/crypt/hello.txt

该操作将完成。请注意，有一个新的文件装入/root/crypt
空间需要至少12288字节大小（取决于您的主办页面大小）。
这是你加密的底层文件刚写的。为了测试阅读，从开始到结束，
你需要清除用户会话点：
keyctl clear @u
然后umount /mnt/crypt再次安装，每所给予的指示
cat /mnt/crypt/hello.txt

 

NOTES

eCryptfs version 0.1 should only be mounted on (1) empty directories
or (2) directories containing files only created by eCryptfs. If you
mount a directory that has pre-existing files not created by eCryptfs,
then behavior is undefined. Do not run eCryptfs in higher verbosity
levels unless you are doing so for the sole purpose of debugging or
development, since secret values will be written out to the system log
in that case.

（1）空目录ecryptfs的0.1版本应该只安装在
或（2）ecryptfs的创建只包含文件的目录。如果您
安装了一个目录有预先存在的文件不是由ecryptfs的，
然后行为是不确定的。不要运行ecryptfs的更高的冗长
水平，除非你这样做的唯一目的是调试或
发展，因为隐秘的值将被写入到系统日志
在这种情况下。

Mike Halcrow
mhalcrow@us.ibm.com