search

rfjakob / gocryptfs

Encrypted overlay filesystem written in Go
https://nuetzlich.net/gocryptfs/
MIT License
3.51k stars 249 forks source link

force_owner not working in reverse mode #809

Closed m4rc0d1 closed 1 month ago

m4rc0d1 commented 10 months ago

For a rsync backup, I need to have the reverse-mounted encrypted directory owned by a specific non-privileged user in order to limit access of the backup user.

It seems that adding the -force_owner option while reverse-mounting the plain directory does not have an effect, i.e. all the files in the encrypted dir have the same ownership of the plain files. Is this the expected behavior? The documentation does not specify if the two options are compatible.

My current workaround is to remount the encrypted dir on another mountpoint using bindfs, but I would like to avoid stacking filesystems one over the other if possible.

rfjakob commented 1 month ago

Thanks for the report! Fixed now.