Шифрование домашней директории с помощью encfs

emerge layman
layman -L
layman -a kaa
emerge sys-auth/pam_encfs
mkdir /home/encrypted
 

/etc/security/pam_encfs.conf

drop_permissions
#encfs_default --idle=1
fuse_default nonempty
 -     /home/encrypted    -    -    allow_other
 
encfs  /home/encrypted/user /home/user
 

/etc/pam.d/system-auth

auth        required    pam_env.so
auth        required    pam_unix.so try_first_pass likeauth nullok
auth        optional    pam_permit.so
auth        required    pam_encfs.so

account        required    pam_unix.so
account        optional    pam_permit.so

password    required    pam_cracklib.so difok=2 minlen=8 dcredit=2 ocredit=2 retry=3
password    required    pam_unix.so try_first_pass use_authtok nullok sha512 shadow
password    optional    pam_permit.so

session        required    pam_encfs.so
session        required    pam_limits.so
session        required    pam_env.so
session        required    pam_unix.so
session        optional    pam_permit.so