I have an encrypted loop back file that auto-mounts upon log in, requesting first the account password via getty, then the disk password in .bashrc
Interesting thing to note kids:
Never use mass transit without pulling out your "Sunday go to meetin'" laptop. You know the one I mean.
The one that, first thing you do, is to DOD wipe the drive (Thanks DBAN!), then load the OS (Linux, of course.)
If you mount a drive over a directory that already has files in it, you can't see the files in the original directory.
So, in my encrypted directory, I have many many files of Porn that I bought the files. Carefully recorded in an invoice.txt file in the directory
along with the bank account .pdf showing the credit card transaction, banal stuff like my tax returns, the in box for the email address I hand out when I -know- they are going to spam me, browser history when I don't care when someone sees what I'm browsing, megabytes of files created by /dev/urandom and dd. That sort of thing. If I'm asked about the "gibberish" /dev/urandom files, I tell 'em the truth. They are there to confuse people that somehow get access to my system. They are completely worthless, and in fact, can be deleted. Here, let me delete them for you just to prove the point. Oh, you don't want me to? OK. But really, it's just
gibberish. Nothing to see. Honest Injun!
On the base directory, I used to have my "real" files. Now I do something far sexier than that dodge. I used to just not give the loop back encrypted drive
a password, it would fail to mount, and I'd have my real files.
The key takeaway here is "Give 'em something to titillate them while at the same time hiding your real private files. Sensitive files belong in a encrypted cloud drop box outside of ANZAC treaty partners. Remember to delete history on that kiddos. Not ALL history, just that which shows you accessed a drop box."
I have to wonder though. Why am I more afraid of my own government than I am of "terrorists"?
I don't want to hurt anyone, and I don't have a "statement" to make that requires more than a few harsh words to select people behaving badly.
The below has been my tag line almost since I opened a Slashdot account. Sad to say, it's more true now than it ever was before.