ecryptfs-users team mailing list archive

Thread
Date

ecryptfs with krb5 authentication and /etc/passwd authorization

To: ecryptfs-users@xxxxxxxxxxxxxxxxxxx
From: Robert Freeman-Day <presgas@xxxxxxxxx>
Date: Mon, 01 Jun 2009 16:32:04 -0400
User-agent: Thunderbird 2.0.0.21 (X11/20090409)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I am still wrapping my head around ecryptfs so am not quite sure if it
is possible, but did see a bug that may be potentially related
(https://bugs.launchpad.net/ecryptfs/+bug/293433), so I thought I would
give it a shot asking here.

I have a test Ubuntu 9.04 machine that is set up so that authentication
is over Kerberos while authorization is over the local /etc/passwd
files.  Once I install krb5-config krb5-user and libpam-krb5 the
/etc/pam.d/* files are all set up appropriately for this and works with
a non-encrypted home directory.  A completely local user (no krb5
authentication) can have an encrypted home directory on this machine.

When I create a user with "adduser --disabled-password --encrypt-home
user" I get the proper dialogue with the passphrase to write down.
Logging on only gives me the unmounted home with the .Private directory
and the soft-linked README.txt and Access-Your-Private-Data.desktop
files.  Mounting manually will not work.  Is there something I am
missing when creating users?

Thank you,
- -- Robert
________

Robert Freeman-Day

https://launchpad.net/~presgas
GPG Public Key:
http://keyserver.ubuntu.com:11371/pks/lookup?op=get&search=0xBA9DF9ED3E4C7D36
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAkokOsQACgkQup357T5MfTY4LwCfawUvL6xGo6xRDeBuBnlkWhiI
UNQAnR+e8eIvkNrbBv/8fEHiBMZF39Z4
=zJNn
-----END PGP SIGNATURE-----

Follow ups

Re: ecryptfs with krb5 authentication and /etc/passwd authorization
From: Dustin Kirkland, 2009-07-23