[Bug 55159] Re: usplash prevents passwords from being not echoed on the console
Luke
lukekuhn at hotmail.com
Mon Apr 13 18:00:24 UTC 2009
Make sure Kees Cook and/or Reinhard Tartler get this latest update:
NEW VERSION OF cryptdisks.functions gives full interactive prompting
just like askpass does, but without echoing the password to the console.
I have tested this with and without usplash, with different settings of
"tries=" in /etc/crypttab, and can confirm it works in Jaunty on Intel
atom and Athlon 64 single core.
In the new version when using a LUKS partition, a do-while loop
repeats as many times as "tries=" calls for , calling cryptsetup with
tries=1. If the right passphrase is entered, cryptsetup returns 0, a
prompt tells the user the encrypted device has been set up, and the loop
breaks. With a bad passphrase, the user is prompted again and the loop
repeats until either the right passphrase is entered or the limit in
"tries=" has been reached.
No change in behavior on console, no change from my last upgrade in
behavior with a non-LUKS mapping. There is no way to have a bad
passphrase re-call cryptsetup on a regular mapping within this script.
This would require having cryptsetup and mount in the same script, for a
substantial change in /etc/rcS.d . The workaround, of course, is to use
LUKS in the first place, and it's far more secure by default.
** Attachment added: "NEW version of cryptdisks.functions :Fullly interactive yet secure"
http://launchpadlibrarian.net/25351102/cryptdisks.functions
--
usplash prevents passwords from being not echoed on the console
https://bugs.launchpad.net/bugs/55159
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bugs at lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
More information about the universe-bugs
mailing list