2
3
I have a standard setup created by ecryptfs-setup-private
. I've tried to figure out if the (unwrapped) wrapped passphrase [UWP] is the only thing I have to worry about (except the encrypted files themselves).
My understanding is that any key used by eCryptfs, fnek or fekek, is derived from the UWP by salting and hashing it. Does that mean there is some hardcoded salt somewhere in eCryptfs' code or that the UWP is not the only thing to remember if I want to decrypt my data on another computer?