I wanted a way to encrypt my user folder e.g. (/User/sid/*) and have Mac OS X auto mount it based off my login credentials. Since that folder also contains profile info, I suspect it would need to be decrypted, mounted right at login time itself.
My guess is truecrypt would work but
- No idea about autologin
- Truecrypt may require the entire 50GB allocated at the start and may kill timemachine by backing up all 50GB each time I change even a single byte inside the encrypted volume.
Honestly, I wish Apple has left in FileVault 1 and 2 and allowed users to pick their choice.
Background:
I know Lion has FileVault2 but that encrypts the entire system. I've got the macbook setup to dual boot into Windows 7 (which is whole disk encrypted with Truecrypt). Since I had to do that, I had to revert from a GPT style to a MBR style for the hard drive and FileVault2 cannot work on MBR systems. Had to say that because someone would throw a fit and say "turn on FileVault2".
Best Answer
Sigh! Didn't really answer the exact question but solves my deeper issue of "run lion, run windows, keep both secure". Here is what I ended up doing,
I get the same end result of having everything on the laptop encrypted but had to compromise on running Windows 7 a bit slower as a virtual machine instead of a physical machine.
Migrating Windows 7 physical -> Virtual machine:
http://www.todo-backup.com/backup-resource/universal-restore/restore-system-to-dissimilar-hardware.htm
It took time, but it was mostly unattended so wasn't that unproductive.
Also, I noticed that Windows 7 32 bit was running a lot faster (50% faster compiles in visual studio 2010) than Windows 7 64 bit. My laptop is a core2duo and a total of 4GB memory - I suspect memory is the bottleneck as the Win7 32bit machine requires a little less memory than it's 64bit counterpart.