ecryptfs team mailing list archive

Thread
Date

[Bug 696276] Re: root user can mount a user encrypted directory

To: ecryptfs@xxxxxxxxxxxxxxxxxxx
From: Dustin Kirkland <dustin.kirkland@xxxxxxxxx>
Date: Thu, 01 Sep 2011 20:32:05 -0000
Reply-to: Bug 696276 <696276@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Thanks for the report.

eCryptfs is not designed to protect a user from a root user once
running.  It certainly will protect you from attacks from a malicious
user rebooting your system into a Live ISO environment.  But it's not
meant to protect you from your own root user.  Sorry.

** Changed in: ecryptfs
       Status: New => Won't Fix

-- 
You received this bug notification because you are a member of eCryptfs,
which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/696276

Title:
  root user can mount a user encrypted directory

Status in eCryptfs - Enterprise Cryptographic Filesystem:
  Won't Fix

Bug description:
  I could do that adding a SSH key to the user's authorized_keys file
  and login with that key. I am surprise about I could decrypt the
  user's home directory!

  Doesn't  eCryptfs prevent the root user to mount a user's home
  directory?

  Thanks!

To manage notifications about this bug go to:
https://bugs.launchpad.net/ecryptfs/+bug/696276/+subscriptions

References

[Bug 696276] [NEW] root user can mount a user encrypted directory
From: Guilherme Gondim (semente), 2011-01-01