ecryptfs team mailing list archive

[lnx <nw@xxxxxxxxxxxxxx>]

 su - norbert

norbert@de70-laptop:~$ chmod 500 ~/Private
logout
root@de70-laptop:/home/norbert# ls -ld Private
dr-x------ 2 norbert norbert 4096 2008-10-30 07:30 Private
root@de70-laptop:/home/norbert# ls -l Private/
insgesamt 416
lrwxrwxrwx 1 norbert norbert     28 2008-10-15 23:19 THIS DIRECTORY HAS BEEN UNMOUNTED TO PROTECT YOUR DATA --  Run mount.ecryptfs_private to mount again -> /sbin/mount.ecryptfs_private
-rw------- 1 norbert norbert 421581 2008-10-15 22:15 x.png.nc

the file is produced by dmcrypt, so it is already encrypted. But this is so only by accident.
The file have have seen before and removed has been a simple ascii file that was readable by root.

-- 
~/Private: one file visible/readable when not mounted
https://bugs.launchpad.net/bugs/290983
You received this bug notification because you are a member of eCryptfs,
which is subscribed to ecryptfs-utils in ubuntu.

Status in “ecryptfs-utils” source package in Ubuntu: Incomplete

Bug description:
I am using the latest 8.10.
When the user with a private directory is not logged in, root can have a look in the Private directory and see exactly one file in clear:

lrwxrwxrwx 1 norbert norbert     28 2008-10-15 23:19 THIS DIRECTORY HAS BEEN UNMOUNTED TO PROTECT YOUR DATA --  Run mount.ecryptfs_private to mount again -> /sbin/mount.ecryptfs_private
-rw------- 1 norbert norbert 421581 2008-10-15 22:15 x.png.nc


Here the file x.png.nc is the one. 
This file can be extracted and viewed.

Regarding the nature of this directory, I regard this problem as security relevant.