Is it good Idea to copy and reuse policy on other device? Is it good idea to copy and reuse a protector?

google / fscrypt

Go tool for managing Linux filesystem encryption

Apache License 2.0

905 stars 99 forks source link

Is it good Idea to copy and reuse policy on other device? Is it good idea to copy and reuse a protector? #397

Closed ardabro closed 11 months ago

ardabro commented 11 months ago

Typical scenario: home on ssd and additional huge hdd storage for big stuff - both unlocked at login. the login protector is common, right? but I'd consider just copying the policy and recovery protector to the second drive to reuse them - just for simplicity. Will it work? Is it a good idea?

ebiggers commented 11 months ago

I think that would work and still be secure, but it's not a recommended flow, and the automated tests for fscrypt do not test that scenario. I recommend just using fscrypt encrypt to set up each encrypted directory.

ardabro commented 11 months ago

Thanks, I took the risk ;)