Vault Manager

Overview

vault-manager provides a simple interface for mounting and managing gocryptfs encrypted vaults.

Vault Locations

Vault Name Encrypted Path Mount Point

credentials

~/atelier/_vaults/credentials

~/mnt/credentials

work-sensitive

~/atelier/_vaults/work-sensitive

~/mnt/work-sensitive

network-configs

~/atelier/_vaults/network-configs

~/mnt/network-configs

personal

~/atelier/_vaults/personal

~/mnt/personal

Commands

Mount Vault

vault-manager mount <vault-name>

# Example
vault-manager mount credentials
# Enter password when prompted

Unmount Vault

vault-manager unmount <vault-name>

# Example
vault-manager unmount credentials

Check Status

vault-manager status

# Output:
# credentials: mounted
# work-sensitive: unmounted
# network-configs: unmounted
# personal: unmounted

Mount All

vault-manager mount-all
# Prompts for password for each vault

Unmount All

vault-manager unmount-all

gocryptfs Direct Commands

If vault-manager is not available:

# Initialize new vault
gocryptfs -init ~/atelier/_vaults/new-vault

# Mount vault
gocryptfs ~/atelier/_vaults/credentials ~/mnt/credentials

# Unmount vault
fusermount -u ~/mnt/credentials

# Check if mounted
mount | grep gocryptfs

Configuration

Vault Initialization

# Create new gocryptfs vault with recommended settings
gocryptfs -init -scryptn 17 ~/atelier/_vaults/new-vault

Options: * -scryptn 17: Higher scrypt work factor (default 16)

Idle Timeout (Optional)

# Auto-unmount after 15 minutes idle
gocryptfs -idle 15m ~/atelier/_vaults/credentials ~/mnt/credentials

Related Pages