this post was submitted on 16 Jan 2025
173 points (98.3% liked)

Linux

56539 readers
693 users here now

From Wikipedia, the free encyclopedia

Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).

Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word "Linux" in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.

Rules

Related Communities

Community icon by Alpár-Etele Méder, licensed under CC BY 3.0

founded 6 years ago
MODERATORS
AgreeableLandscape@lemmy.ml
nooter692@lemmy.ml
MarcellusDrum@lemmy.ml
cypherpunks@lemmy.ml
cyclohexane@lemmy.ml
d3Xt3r@lemmy.nz
173
Do you encrypt your drives and why or why not? (lemmy.ml)
submitted 6 months ago by monovergent@lemmy.ml to c/linux@lemmy.ml
235 comments fedilink hide all child comments
 

I was recently intrigued to learn that only half of the respondents to a survey said that they used disk encryption. Android, iOS, macOS, and Windows have been increasingly using encryption by default. On the other hand, while most Linux installers I've encountered include the option to encrypt, it is not selected by default.

Whether it's a test bench, beater laptop, NAS, or daily driver, I encrypt for peace of mind. Whatever I end up doing on my machines, I can be pretty confident my data won't end up in the wrong hands if the drive is stolen or lost and can be erased by simply overwriting the LUKS header. Recovering from an unbootable state or copying files out from an encrypted boot drive only takes a couple more commands compared to an unencrypted setup.

But that's just me and I'm curious to hear what other reasons to encrypt or not to encrypt are out there.

(page 4) 50 comments
sorted by: hot top controversial new old
[–] CsXGF8uzUAOh6fqV@lemmy.world 2 points 6 months ago* (last edited 6 months ago) (2 children)

I don't, I didn't do it back then and I ended up using this system for much longer than I thought I would(4+ years). I want to do it next time but I don't feel like reinstalling just for that.

load more comments (2 replies)
[–] ocean@lemmy.selfhostcat.com 2 points 6 months ago (4 children)

I encrypt my laptop and desktops and I think it’s worth it. I regret encrypting my servers because they need passwords to turn on. I couldn’t figure out how to handle it when away.

[–] BCsven@lemmy.ca 1 points 6 months ago (4 children)

Cryptab should help.

load more comments (3 replies)
load more comments (3 replies)
[–] thebardingreen@lemmy.starlightkel.xyz 2 points 6 months ago

I encrypt everything, with unique complex passwords, that I have a safe mnemonic system for remembering and retrieving.

[–] potentiallynotfelix@lemmy.fish 2 points 6 months ago

Mostly I don't, but I want to start to. I only have one laptop encrypted and of course I keep my phones encrypted.

[–] gandalf_der_12te@discuss.tchncs.de 1 points 6 months ago (2 children)

Only encrypt the home partition, for the root partition it just unnecessarily slows down the system.

Also, I think, there could be different approaches instead of encryption. AFAIK, android doesn't use encryption underneath, but uses a semi-closed bootloader (which means, if you install a different OS, all user data gets wiped). I'm currently investigating the feasibility of such an approach in the long term.

load more comments (2 replies)
[–] Xiisadaddy@lemmygrad.ml 1 points 6 months ago

Depends. On external drives yes. On internal boot drive no. I had performance issues and thermal issues with it so stopped on boot drives.

[–] Sam_Bass@lemmy.ml 1 points 6 months ago (4 children)

No need as none of them are networked

load more comments (4 replies)
[–] 9488fcea02a9@sh.itjust.works 1 points 6 months ago

All my important files are on a NAS, so if someone steals my laptop, there's nothing of value there without being able to log in and mount the remote file systems

[–] LiamMayfair@lemmy.sdf.org 1 points 6 months ago (1 children)

Yes. Encrypting your entire hard drive has basically been a tickbox in the Fedora installer for a long time now. No reason why I wouldn't do it. It's, easy, doesn't give me any problems and improves my devices security with defence-in-depth. No brainer.

load more comments (1 replies)
[–] SitD@lemy.lol 1 points 6 months ago (5 children)

are you guys using the bios ssd encryption option or a software solution?

[–] netvor@lemmy.world 2 points 6 months ago

LUKS (I was assuming that's kind of implied, I don't think I ever thought of another way..)

load more comments (4 replies)
[–] Feathercrown@lemmy.world 1 points 6 months ago

I have no significant private data on my disks. They can be wiped whether encrypted or not if they're stolen. And I like that in theory if my pc explodes I can recover the data with only the drive.

[–] netvor@lemmy.world 1 points 6 months ago

I do, laptops and workstations.

It's just too easy not to, and there's almost no downsides to it. (I only need to reboot, once a month or two.)

Well, unless you consider the possibility of forgetting the password a downside, so for that reason I keep the password in a password manager.

In case my laptop was stolen, there would quite a couple fewer things to worry about. Especially things like client's data which could be under NDA's, etc...

[–] Cysioland@lemmygrad.ml 1 points 6 months ago

I encrypt my workstations and backups thereof on external devices. To protect against theft or a lazy state-level adversary

load more comments
view more: ‹ prev next ›