Recently, we had an outage which prevented our monolith server from coming back up. Realizing we were around a month away from having to do a fresh install anyway (due to Changelog 71 ), we decided to install a new Ubuntu Server 22.04, and mount the old drive to the new server, allowing us to copy the data across once setup.
Unfortunately, when we mounted the old drive, we noticed all the /opt/data
folders where encrypted as shown below in Listing 1.
Is there anyway to decrypt these drives easily onto another mount point? How would we go about decrypting the data?
root@ip-172-31-26-146:/mnt/previous/opt/data# ls -l
total 1173296
-rwxrwx--- 1 root root 12288 Jul 3 2021 ECRYPTFS_FNEK_ENCRYPTED.FWbjk.JOrFq1fUZihm2kxwz1yOIL6yxXr5xO7HHU5sGVWryVJ7zzf0iCp---
drwxr-xr-x 3 lxd root 4096 Jun 4 09:20 ECRYPTFS_FNEK_ENCRYPTED.FWbjk.JOrFq1fUZihm2kxwz1yOIL6yxXr5xO9SZi3Z2tlfXaXSB2uqJ-4---
drwxr-xr-x 3 998 999 4096 Jul 3 2021 ECRYPTFS_FNEK_ENCRYPTED.FWbjk.JOrFq1fUZihm2kxwz1yOIL6yxXr5xOHpYnSFYy4R19RfAFET.uSU--
drwx------ 6 ec2-instance-connect netdev 4096 May 23 06:11 ECRYPTFS_FNEK_ENCRYPTED.FWbjk.JOrFq1fUZihm2kxwz1yOIL6yxXr5xOJw6bOqzY1olHbkpEme7icE--
drwx-----x 5 root root 4096 Jul 3 2021 ECRYPTFS_FNEK_ENCRYPTED.FWbjk.JOrFq1fUZihm2kxwz1yOIL6yxXr5xOKnrZVjktv2oT7CR0abubh---
drwx------ 7 1003 1004 4096 Jul 3 2021 ECRYPTFS_FNEK_ENCRYPTED.FWbjk.JOrFq1fUZihm2kxwz1yOIL6yxXr5xOPz0U.peKKrAxzRyIGBc7VE--
-rw-r--r-- 1 root root 2768896 May 6 23:56 ECRYPTFS_FNEK_ENCRYPTED.FWbjk.JOrFq1fUZihm2kxwz1yOIL6yxXr5xOQ95NDHMe8Ov5UUgcrCZMhk--
drwxr-xr-x 11 1001 3002 4096 Apr 29 13:33 ECRYPTFS_FNEK_ENCRYPTED.FWbjk.JOrFq1fUZihm2kxwz1yOIL6yxXr5xORryTjDJAh9--kFzRYrxivE--
drwxrwxr-x 3 nobody 1500 124723200 Jun 4 06:00 ECRYPTFS_FNEK_ENCRYPTED.FWbjk.JOrFq1fUZihm2kxwz1yOIL6yxXr5xOhzjuXhWo55sHZelE8sMjQU--
-rw-r--r-- 1 root root 1073750016 Jul 3 2021 ECRYPTFS_FNEK_ENCRYPTED.FXbjk.JOrFq1fUZihm2kxwz1yOIL6yxXr5xOFdTdE2q5Hxj9afOD4YGOKkOQcRxC2720caFsFyCKDkk-
drwxr-xr-x 4 1004 1006 4096 Jul 3 2021 ECRYPTFS_FNEK_ENCRYPTED.FXbjk.JOrFq1fUZihm2kxwz1yOIL6yxXr5xOjvFB1YA7P.EOZUBP7HT-dmkOMPVL7RsZuzJDqD30nKk-
Listing 1. /opt/data
is encrypted