I'm running an unencrypted Ubuntu machine and decided to encrypt my home folder. However, when I tried to install Docker Desktop afterwards, it completely messed up my OS. Conversely, if I attempt to encrypt the system after installing Docker, the encryption fails due to the large size of the docker.raw image. I'm using encryptfs for the encryption. Does anyone know how I can work around this issue? I'm imaging this machine and would prefer not to go through a lengthy OS setup process for encryption.
4 Answers
If you need encryption without the hassle of DIY methods, consider enabling whole disk encryption at setup instead of just encrypting /home. This way, you're kept safe from unencrypted areas like /tmp and swap, which can expose sensitive data. And about Docker, definitely check out Docker Engine instead of Desktop—it should integrate better with your system.
Automating the installation process might save you a lot of time compared to imaging. Also, while setting up only the home directory can work, it leaves other parts of your system, like /tmp and /var/tmp, vulnerable. Full disk encryption is the way to go if you want to prevent any leaks.
What exact steps have you taken? It's more likely that the issue isn't breaking your OS entirely but affecting your shell since a lot of configs are stored in your home directory. You might be able to just log in as a different user after unlocking your home directory.
You might want to skip Docker Desktop entirely, especially on Linux. It's better to go with the regular Docker CE/CLI version. The Desktop variant creates a VM, which probably doesn't jive well with your encryption setup.
Totally get that! But honestly, Docker Desktop should have a native option that doesn't complicate things.
I get that, but I need it to be user-friendly for non-tech folks, which is why I considered Docker Desktop.