ecryptfs team mailing list archive

Thread
Date

[Bug 305882] Re: ecryptfs private wrapped passphrase with wrong password during password change

To: ecryptfs@xxxxxxxxxxxxxxxxxxx
From: Dustin Kirkland <dustin.kirkland@xxxxxxxxx>
Date: Mon, 05 Jan 2009 23:32:45 -0000
Reply-to: Bug 305882 <305882@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Subscribing Steve Langasek...

Steve,

This is yet another case of badness regarding PAM's architecture.  I can
confirm this problem, and it's a nasty one.

The ecryptfs PAM module thinks that the password change succeeded, and
so we go ahead and rewrap the passphrase, but this isn't so.

We need to get this fixed...

:-Dustin

** Tags added: pet-bug

** Also affects: pam (Ubuntu)
   Importance: Undecided
       Status: New

-- 
ecryptfs private wrapped passphrase with wrong password during password change
https://bugs.launchpad.net/bugs/305882
You received this bug notification because you are a member of eCryptfs,
which is subscribed to ecryptfs-utils in ubuntu.

Status in “ecryptfs-utils” source package in Ubuntu: Confirmed
Status in “pam” source package in Ubuntu: New

Bug description:
Binary package hint: ecryptfs-utils

To reproduce:

1. On command line, attempt to change your password to a weak password (like "yes").
2. Actually change your password to a strong password.

I found that ecryptfs wrapped the passphrase in the weak password instead of the final password I chose.

Description:	Ubuntu 8.10
Release:	8.10

ecryptfs-utils:
  Installed: 53-1ubuntu12
  Candidate: 53-1ubuntu12
  Version table:
 *** 53-1ubuntu12 0
        500 http://mirrors.us.kernel.org intrepid-updates/main Packages
        100 /var/lib/dpkg/status
     53-1ubuntu11 0
        500 http://mirrors.us.kernel.org intrepid/main Packages

References

[Bug 305882] [NEW] ecryptfs private wrapped passphrase with wrong password during password change
From: jpritikin73, 2008-12-07