gocryptfs
TLDR
Create encrypted directory
$ gocryptfs -init [cipher-dir]
Mount encrypted directory$ gocryptfs [cipher-dir] [mount-point]
Unmount$ fusermount -u [mount-point]
Change password$ gocryptfs -passwd [cipher-dir]
Show info$ gocryptfs -info [cipher-dir]
SYNOPSIS
gocryptfs [options] cipherdir [mountpoint]
DESCRIPTION
gocryptfs is an encrypted overlay filesystem. It encrypts files individually using AES-256-GCM, storing ciphertext in a directory while presenting plaintext through a FUSE mount.
The tool provides file-level encryption, enabling cloud backup of encrypted data. File names are encrypted; metadata leakage is minimized.
gocryptfs provides transparent file encryption.
PARAMETERS
CIPHERDIR
Encrypted directory.MOUNTPOINT
Where to mount.-init
Initialize new volume.-passwd
Change password.-info
Show volume info.-fg
Run in foreground.-allow_other
Allow other users.--help
Display help information.
CAVEATS
FUSE required. File sizes visible. Password recovery impossible without master key backup.
HISTORY
gocryptfs was created as a modern, audited alternative to EncFS, using authenticated encryption and written in Go.
SEE ALSO
encfs(1), cryptsetup(1), veracrypt(1)
