ecryptfs team mailing list archive

Thread
Date

[Bug 696276] [NEW] root user can mount a user encrypted directory

To: ecryptfs@xxxxxxxxxxxxxxxxxxx
From: "Guilherme Gondim \(semente\)" <semente@xxxxxxxxxxxx>
Date: Sat, 01 Jan 2011 17:01:03 -0000
Reply-to: Bug 696276 <696276@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

*** This bug is a security vulnerability ***

Private security bug reported:

I could do that adding a SSH key to the user's authorized_keys file and
login with that key. I am surprise about I could decrypt the user's home
directory!

Doesn't  eCryptfs prevent the root user to mount a user's home
directory?

Thanks!

** Affects: ecryptfs
     Importance: Undecided
         Status: New

-- 
You received this bug notification because you are a member of eCryptfs,
which is a direct subscriber.
https://bugs.launchpad.net/bugs/696276

Title:
  root user can mount a user encrypted directory

Status in eCryptfs - Enterprise Cryptographic Filesystem:
  New

Bug description:
  I could do that adding a SSH key to the user's authorized_keys file and login with that key. I am surprise about I could decrypt the user's home directory!

Doesn't  eCryptfs prevent the root user to mount a user's home directory?

Thanks!

Follow ups

[Bug 696276] Re: root user can mount a user encrypted directory
From: Dustin Kirkland, 2011-09-01
[Bug 696276] Re: root user can mount a user encrypted directory
From: Guilherme Gondim (semente), 2011-01-28
[Bug 696276] Re: root user can mount a user encrypted directory
From: Tyler Hicks, 2011-01-28
[Bug 696276] [NEW] root user can mount a user encrypted directory
From: Guilherme Gondim (semente), 2011-01-01

References

[Bug 696276] [NEW] root user can mount a user encrypted directory
From: Guilherme Gondim (semente), 2011-01-01