To add to @Fall66's good comment above , I'd like to share with you a discussion I had with another fellow user (@Tim) about eCryptFS:
There I explained why full-disk encryption can often be better than plain home directory encryption. In short, some applications "leak" data into unencrypted temporary storage areas, be it swap space or the /tmp
directory, so the encryption may be useless for some files if you don't know what you're doing. (In other words, Ubuntu used to ship eCryptFS home directory encryption with flaws out-of-the-box.)
Furthermore, since I made that comment I have successfully conducted plain-text attacks against the entire encrypted home directory using nothing more than a 16 KB ODF document stored in the /tmp
folder. In other words, I totally circumvented the very encryption that we all thought protected us. So yes, eCryptFS available via the installer was very nice to have, but it really was a false sense of security anyway, at least to a certain extent.
Just thought I'd let you know about that.