1

I've installed Ubuntu and enabled the home folder encryption, I was working on it and everything was right, but I've changed my password recently and forgot the old one, so I got the home folder unmounted. I know it's complicated till I can find where I stored my passphrase to mount the home folder again.

So my question now is that I want to add a new user that has the same privileges as my own that can have access to everything and change everything and install all the updates. I have the new password to create a user but I'm not sure how to make it as a master administrator. and can I do that on user management GUI without terminal like we usually add users ?

Kaylee
  • 63

1 Answers1

2

I am afraid the encryption will complicate matters here. Encryption involves that the password is also involved in creating the encryption keys. That means that that specific password, and only that, is required to decrypt the partition. Resetting the login password will not change that.

So if you have lost the password, consider the encrypted partition lost.

That with respect to problem X, decrypting the partition after the password is lost.

With respect to the problem you ask about (Problem Y, creating a new user with root privileges hoping that will allow to decrypt the partition): you only can use the user management GUI if you can log in to an account that has sudo privileges. Else, you need to use terminal tools from a command line where you can access root privileges. That can be a user account with root privileges, or a recovery prompt with root privileges.

Sorry for the harsh post, but the important take home message is that you have to be very careful with passwords when working with encryption. What you are now experiencing, is one of the factors why encryption indeed is pretty safe.

vanadium
  • 88,010
  • Thank you for your answer @Vanadium . well I understand that we should be careful dealing with encryption so I still have the 32 characters passphrase used for encryption . I stored it in another computer but can't remember exactly where cause that was in 2017. when I installed Ubuntu 16.04 . but the problem is that Passphrase is like never used , we can decrypt the home folder using the login password and since I changed it , I can't decrypt it now. what's strange is I can log in through the graphical interface but can't change anything , and I did created a user that is administrator – Kaylee Apr 28 '23 at 01:20
  • so the user I just added is administrator and has sudo privileges but I still feel I can't have a full control of everything since I don't see the softwares I've installed but though I can see an antivirus ... isn't that strange ? also why we can't decrypt using the passphrase that was generated during the encryption ? why we only can decrypt with the password. anyway, for now I only want to make sure if that administrator that I just added is limited as it seems to me or has the same privileges as my old one ? and if not how to get all the privileges ? – Kaylee Apr 28 '23 at 01:34
  • So your encrypted home has been created in Ubuntu 16.04? That is important information, because that way of only encrypting folders is not anymore shipped with Ubuntu. Ubuntu now only provides partition level encryption, so it could have been you had a separate home partition that was encrypted. – vanadium Apr 28 '23 at 07:16
  • Yes I checked that box enabling the encryption during the installation of Ubuntu 16.04. and later upgraded to the next LTS ... so now I'm using Ubuntu 22.4 . it's actually better and safer to encrypt the whole partition. so is that means the user I just added has as much privileges as my last one ? – Kaylee Apr 28 '23 at 09:40
  • Any user with root permissions has the same priviledges, i.e., change any system component. An encrypted volume, though, requires a unique password, so even the most skilled administrator will not gain access without the password. That is the message I was trying to convey in my answer. – vanadium Apr 28 '23 at 12:31
  • Thank you for trying to help. Sorry I didn't give any feedbacks, I actually understand that any user with root permissions has the same privileges but in my case was something messed up, cause the user I added wasn't able to make any changes, and after an upgrade I lost the grub wasn't able to boot anyway I think the problem is complicated so I took out that drive and stored it for a later fix when I'll have time, and installed Ubuntu on a new drive. – Kaylee May 16 '23 at 11:35
  • If this answer resolved your question, then please show your appreciation by "accepting" it: click the checkmark next to the question, even if the anwer may not have been quite what you hoped. – vanadium May 16 '23 at 12:05