touch-packages team mailing list archive

Thread
Date

[Bug 1374742] Re: opening privileged shell after entering wrong password for LUKS three times

To: touch-packages@xxxxxxxxxxxxxxxxxxx
From: hon <1374742@xxxxxxxxxxxxxxxxxx>
Date: Fri, 03 Oct 2014 20:12:43 -0000
Reply-to: Bug 1374742 <1374742@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

To fix this bug use the attachment.
If mainteiners want to fix this bug they should replace string "crypttries=3" to "crypttries=0" in /usr/share/initramfs-tools/scripts/local-top/cryptroot. But may be better to deny access to shell in panic() function in /usr/share/initramfs-tools/scripts/functions?

** Attachment added: "initramfs-patch.sh"
   https://bugs.launchpad.net/initramfs-tools/+bug/1374742/+attachment/4223928/+files/initramfs-patch.sh

-- 
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to initramfs-tools in Ubuntu.
https://bugs.launchpad.net/bugs/1374742

Title:
  opening privileged shell after entering wrong password for LUKS three
  times

Status in tools for generating an initramfs:
  New
Status in “initramfs-tools” package in Ubuntu:
  Invalid

Bug description:
  You should have root filesystem encrypted by LUKS. Start operational system and enter incorrect passphrase for root filesystem three times. Wait several seconds and you give busybox shell with superuser rights from initramdisk.
  System should not open shell. It should ask for passphrase forever or show error, but don't open shell. OS: Ubuntu 12.04, Ubuntu 14.04.

To manage notifications about this bug go to:
https://bugs.launchpad.net/initramfs-tools/+bug/1374742/+subscriptions