ecryptfs team mailing list archive

[Jamie Strandboge <jamie@xxxxxxxxxx>]

Thank you for using Ubuntu and taking the time to report a bug. The only
way to protect your data from a live cd or other means is to encrypt it.
Ubuntu users have various options for encrypting their data, including
Encrypted LVM via the alternate installer CD and Ecryptfs
(https://wiki.ubuntu.com/EncryptedPrivateDirectory). Integrated ecryptfs
has been greatly improved in the upcoming 8.10 release, though good
support is also included in earlier releases, such as Ubuntu 8.04.

There are plans to investigate using Ecryptfs in the default install in
upcoming releases.

** Changed in: ecryptfs-utils (Ubuntu)
Sourcepackagename: None => ecryptfs-utils
   Importance: Undecided => Wishlist

-- 
anyone with a livecd can acces data on ubuntu
https://bugs.launchpad.net/bugs/277894
You received this bug notification because you are a member of eCryptfs,
which is subscribed to ecryptfs-utils in ubuntu.

Status in “ecryptfs-utils” source package in Ubuntu: New

Bug description:
all of my personal files i store in ubuntu can be accessed by anyone with a livecd without knowing my password. mac actually locks your personal data by default so if you put a livecd in and try to access them it will prompt you for the password. ubuntu does not have this. this renders all of my personal files insecure. this seems pretty serious to me.

try using a livecd to read data from your home folder on a mac and see what happens. this is what should happen in ubuntu.

once again, seeing as this applies to everyone on a default setup and how it allows anyone to see all of the files on the computer without a password, including extremely private and critical ones, and seeing as how you can eveen delete these files too, it seems pretty serious to me.