ecryptfs team mailing list archive

[Dustin Kirkland <dustin.kirkland@xxxxxxxxx>]

Thanks again for the analysis.

You are *absolutely* right--your home directory once mounted *must* be
perm'd at least 700.

The 500 you're seeing *should* be the unmounted home directory.

If there's non-deterministic behavior here, then, yeah, that's a nasty
race :-/

We're doing this in PAM, so I'd expect the mount to complete before
Kubuntu mounts.

I'm downloading the Kubuntu daily right now, and I'll test there.

:-Dustin

-- 
netboot newuser and ecryptfs fails to login
https://bugs.launchpad.net/bugs/317895
You received this bug notification because you are a member of eCryptfs,
which is subscribed to ecryptfs-utils in ubuntu.

Status in eCryptfs - Enterprise Cryptographic Filesystem: New
Status in “ecryptfs-utils” source package in Ubuntu: Triaged

Bug description:
Steps to reproduce:

1. take the netboot directory from the alternate CD and setup a tftp server with it
2. boot a system over the network using the attached preseed file
3. login with that user after installation is done

At login the user cannot mount it's ~/.Private directory over to ~/.

I fixed this by doing:

1. login as root
2. rm -fr ~user/.ecryptfs ~user/.Private
3. su - user
4. ecrypt-setup-private
5. changed .Private/Private.mnt to point to /home/user instead of /home/user/Private

There might not be a simple way to provide a password from a preseed file since the password is encrypted in this file.


Note:
- when using the preseed file provided, do not provide any manual input (except if something fails and you need to hit continue).