We do encryption in Dropbox Mac (compatible with Linux)

Over the last month there have been several publications on Habré about the security of information storage on Dropbox . And, apparently, the information is really not safe to store there.
It can be accessed by at least Dropbox employees, and at most I don’t even want to think about who. I actively use the storage to synchronize my home laptop with a work computer. On Dropbox, I have an Adium data folder (I don’t want someone to read May Histori), 1Password (well, I hope, thank God everything is encrypted), project and document folders (not the most important ones of course, but I really don’t want what would the documents, and even more projects fell into the wrong hands). I must say that I take the security of my information quite seriously - the system disk is fully encrypted, for important files the TrueCrypt container, the keys are stored on the keyboard, and so on. And this insecurity of Dropbox has always strained me and after the last publications I began to look for a solution how to encrypt information in the repository. It is clear that solutions like TrueCrypt are not very suitable for these purposes - it is impossible to overwrite the entire container with each change, but manually or after unmounting - the container is very inconveniently synchronized with the Dropbox server only during unmounting (and not through Finder, but through TrueCrypt it is necessary to unmount), By the way, I checked - the entire container is not poured onto the server with each change, but, apparently, the changed blocks are synchronized.
A little googling I found a solution based on EncFS , the files in this file system are encrypted each separately, which is what we need. Solutions for Ubuntu and Mac OS Leopad are described, although, judging by the reviews, you can put it on Snow Leopad
So let's start ...

Install MacFUSE 2.0 . FUSE is a module for Unix-like OS kernels. It allows users without privileges to create their own file systems without having to rewrite kernel code. This is achieved by running the file system code in user space, while the FUSE module only provides a “bridge” for the actual kernel interfaces. FUSE was officially included (merged) in the main Linux code tree) in version 2.6.14. MacFUSE is a port for Mac, download it here http://code.google.com/p/macfuse/downloads/list and install:


')

Install MacFusion . MacFusion is a graphical user interface for MacFUSE, which is built on the basis of plug-ins. Included are plugins for mounting via FTP and SSH. Download the latest version of MacFusion and install it (copy Macfusion.app to the / Applications folder).

Installing EncFS is a FUSE-based cryptographic file system that transparently encrypts files using an arbitrary directory as a place to store encrypted files (we will put this directory in Dropbox).
When mounting EncFS, the source directory is specified (the source directory with encrypted files) and the mount point. After mounting, each file in the mount point directory corresponds to a specific file from the encrypted directory. Thus, in the mount point directory, the source directory files are presented in unencrypted form. Files are encrypted using a key, which in turn is stored in the same directory as the encrypted files, in an encrypted form. The password entered by the user from the keyboard serves to decrypt this key. Download port for Mac OS X here and install:




Now the fun part. We need to install the MacFusion plugin for EncFS and there is such a plugin, you can download it here , but it doesn't work on a 64x-bit system - the author for some reason compiled it only for i386. But there is a way out. So in order.

For owners of 32x-bit and 64x-bit systems - download EncFS Plugin.dmg and install:




for 64-bit systems:
we download the sources compiled for x64
for example in the terminal

cd ~ wget http://upload24.net/EncFS.mfplugin_x64.tar.gz 

remove installed 32x-bit plugin

 sudo rm -r -f /Library/Application\ Support/Macfusion/PlugIns/EncFS.mfplugin/ 

and unzip 64x-bit in its place

 sudo tar -xzf EncFS.mfplugin_x64.tar.gz -C /Library/Application\ Support/Macfusion/PlugIns/ 

Now everything you need is installed - we configure

we create storage of EncFS

 mkdir /Users/drew/Dropbox/.sec mkdir /Users/drew/secDropbox encfs /Users/drew/Dropbox/.sec /Users/drew/secDropbox 

run MacFusion




and add storage






then unmount the created repository through the Finder




and mount via MacFusion




Well, that's all, check the work ... Copy a few folders and files in / Users / drew / secDropbox




this is how the container looks




Naturally, not only the names are encrypted, but the files inside.

PS on the second and subsequent computers that are synchronized with via Dropbox there is no need to create a storage, i.e. we exclude

 mkdir /Users/drew/Dropbox/.sec encfs /Users/drew/Dropbox/.sec /Users/drew/secDropbox 

Sources:
1. Dropbox Encryption w / EncFS on MacOS X
2. How to install EncFS for Macfuse on Mac OS X
3. A plugin for Macfusion 2
4. wikipedia

Additional links:
porting EncFS under Windows