Bug#839279: ITP: gocryptfs -- Encrypted overlay filesystem written in Go
Package: wnpp
Severity: wishlist
Owner: David Steele <steele@debian.org>
* Package name : gocryptfs
Version : 1.0
Upstream Author : Jakob Unterwurzacher <jakobunt@gmail.com>
* URL : https://nuetzlich.net/gocryptfs/
* License : Expat
Programming Lang: Go
Description : Encrypted overlay filesystem written in Go
gocryptfs is built on top the excellent go-fuse
(https://github.com/hanwen/go-fuse) FUSE library and its
LoopbackFileSystem API.
This project was inspired by EncFS and strives to fix its
security issues while providing good performance (benchmarks
(https://nuetzlich.net/gocryptfs/comparison/#performance)).
For details on the security of gocryptfs see the Security
(https://nuetzlich.net/gocryptfs/security/) design document.
gocryptfs is one of several packages that implement FUSE encrypted
mounts. EncFS is already in Debian. CryFS is currently in NEW.
Relative to those, gocryptfs is generally faster and more space-
efficient, and exposes features of the underlying file system
(hard links, sparse files, ...). It was created to fix security
deficiencies in EncFS, but it still exposes features of the
protected filesystem to a greater degree than CryFS.
Two additional packages need to be introduced to support installation,
golang-github-jacobsa-crypto, and golang-github-rfjakob-eme.
The sirikali gui currently in NEW supports gocryptfs (#838426).
The Debian Go Packaging Team is listed as the Maintainer. I intend to
provide ongoing support.
Reply to: