[ubuntu-uk] Encrypted Directories

Ian Pascoe softy.lofty.ilp at btinternet.com
Mon Oct 6 21:59:56 BST 2008


Thanks for the responses - I really was trying to find out if, for any
hardware or software reason, a usre could no longer access their encrypted
files, if a user with appropriate privilages could.  Not looking at this in
the negative, ie to stop it from happening, but from the positive knowing
that there was a fall back.



-----Original Message-----
From: ubuntu-uk-bounces at lists.ubuntu.com
[mailto:ubuntu-uk-bounces at lists.ubuntu.com]On Behalf Of Neil Greenwood
Sent: 05 October 2008 21:14
To: British Ubuntu Talk
Subject: Re: [ubuntu-uk] Encrypted Directories

2008/10/5 James Westby <jw+debian at jameswestby.net>:
> On Sun, 2008-10-05 at 19:41 +0100, Chris Coulson wrote:
>> The root user will still be able to read files if the user is logged
>> in,
>> because the private folder will be mounted.
> Hi Chris,
> That's very true. Thanks for pointing it out.
> Would an apparmor profile be able to prevent root from reading the
> un-encrypted files for those who want this?
> Though presumably that's not going to work as root could just modify
> the policy to give them access.

Hi James,

I know that one of the requirements for SELinux was to be able to make
certain files unreadable by root. Maybe this could be used?


ubuntu-uk at lists.ubuntu.com

More information about the ubuntu-uk mailing list