[Bug 1842187] Re: for privacy and security reasons oem-config should allow to change security key for disk encryption by the end-user
Norbert
1842187 at bugs.launchpad.net
Wed Apr 1 19:38:08 UTC 2020
** Tags removed: disco
** Tags added: focal
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to ubiquity in Ubuntu.
https://bugs.launchpad.net/bugs/1842187
Title:
for privacy and security reasons oem-config should allow to change
security key for disk encryption by the end-user
Status in oem-config package in Ubuntu:
New
Status in ubiquity package in Ubuntu:
New
Bug description:
Steps to reproduce:
1. Install the Ubuntu in OEM mode with Encryption and LVM (*passphrase1* was entered, it is known by administrator or manufacturer)
2. Boot installed system with temporary OEM account
3. Click "Prepare for shipping to end user" icon on desktop
4a. Ship device to the end user forgetting to give him/her the *passphrase1*.
4b. Ship device to the end user with *passphrase1* (which really secret) written in somewhere
Expected results:
User is able to boot device without encryption and then set his/her own *passphrase* on first boot via OEM Config wizard
Actual results:
a. user can't decrypt drive if he/she do not know the *passphrase1*
b. user can decrypt the drive with known *passphrase1* but is concerned that someone else knows it.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/oem-config/+bug/1842187/+subscriptions
More information about the foundations-bugs
mailing list