Show HN: gocryptfs, an aspiring successor to EncFS, now in v1.0
Author of gocryptfs and co-maintainer of EncFS here.
gocryptfs is a FUSE overlay filesystem for Linux like EncFS. But it is written from scratch in Go, uses modern crypto and fixes the security issues of EncFS while providing equivalent speed.
Some of the key differences to EncFS are:
* Just one security level roughly equivalent to EncFS "paranoia" mode, at the speed of "default" mode.
* A design so simple it fits on one page ( this one: https://nuetzlich.net/gocryptfs/security/ )
* Explicit filesystem creation using "gocryptfs -init". No configuration prompts.
* Long file names up to 256 bytes (with zero performance impact <= 176 bytes)
* Stress-tested using fuse-xfstests
* No reverse mode (yet?). Sorry.
I'm quite happy with how the project turned out and have released v1.0 a few days ago. If you are using EncFS, you should probably switch.
* Website: https://nuetzlich.net/gocryptfs/
* Github: https://github.com/rfjakob/gocryptfs
* Binaries: https://github.com/rfjakob/gocryptfs/releases/tag/v1.0
* Comparison to other projects: https://nuetzlich.net/gocryptfs/comparison/
PS: If you are on OSX, check out this ticket: https://github.com/rfjakob/gocryptfs/issues/15 (TLDR: seems to mostly work)
PPS: If you are on Windows: cppcryptfs is a C++ re-implementation for Windows: https://github.com/bailey27/cppcryptfs . The author is very active and would sure love to see testers.
PPPS: If you are wondering, the other "aspiring successors" are CryFS and securefs. Both are in the comparison table and both are worth looking at. The big difference is that they implement their own directory databases stored in files while gocryptfs relies on the underlying FS as much as possible.
No comments yet.