[Bug 876626] Re: Unlocking the second crypto disk (/home) echos password on console

bwalex 876626 at bugs.launchpad.net
Wed Nov 2 20:34:37 UTC 2011 

This also affects the first prompt, and there are further issues - the
"press s to skip mounting or m for manual recovery" message appears on
top of the password prompt. You can get around it with pressing esc
several times, but you end up with the same issue of it echoing the
passphrase.

See http://leaf.dragonflybsd.org/~alexh/ubuntu_crypttab.jpg for the
echoing problem.

See http://leaf.dragonflybsd.org/~alexh/ubuntu_plymouth.jpg for the
second issue with the "s or m" message.

The priority of this should be the highest available, as it is a major
security flaw. A fix to this will stop all echoing, not just echo stars.

Cheers,
Alex

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to cryptsetup in Ubuntu.
https://bugs.launchpad.net/bugs/876626

Title:
  Unlocking the second crypto disk (/home) echos password on console

Status in “cryptsetup” package in Ubuntu:
  Confirmed

Bug description:
  Boot

  1.) Enter crypto phrase for /
  2.) ... init things...
  3.) Enter crypto phrase for /home

  On 3rd the password is echoed as such, only after pressing enter it prints the passwords again with stars.
  Enter passphrase: ABCDEF ENTER
  Enter passphrase: *******
  --- 
  ApportVersion: 1.23-0ubuntu3
  Architecture: i386
  DistroRelease: Ubuntu 11.10
  Package: cryptsetup 2:1.1.3-4ubuntu2
  PackageArchitecture: i386
  ProcEnviron:
   SHELL=/bin/bash
   PATH=(custom, no user)
   LANG=en_US.UTF-8
   LANGUAGE=en_US:en
  ProcVersionSignature: Ubuntu 3.0.0-12.20-generic 3.0.4
  Tags:  oneiric
  Uname: Linux 3.0.0-12-generic i686
  UpgradeStatus: Upgraded to oneiric on 2011-10-15 (5 days ago)
  UserGroups: adm admin cdrom dialout lpadmin plugdev sambashare usrp
  crypttab:
   vg_xiaoyu-root_crypt UUID=8ef6fb8f-ada6-464c-8ba3-d3ceed02ccdd none luks
   vg_xiaoyu-home_crypt UUID=e0aa6c3d-21b1-4ae9-a0db-17b81f13a2cf none luks
   vg_xiaoyu-swap_crypt /dev/mapper/vg_xiaoyu-swap /dev/urandom cipher=aes-cbc-essiv:sha256,size=256,swap

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/cryptsetup/+bug/876626/+subscriptions

More information about the foundations-bugs mailing list