user-setup password wrapping for encrypted home
Bug #314482 reported by
Dustin Kirkland
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| user-setup (Ubuntu) |
Fix Released
|
Medium
|
Dustin Kirkland | ||
Bug Description
Binary package hint: user-setup
The code for bootstrapping an encrypted home directory in adduser works well in interactive mode--which calls out to passwd to set the password, and the pam_ecryptfs module handles the initial wrapping of the password.
However, user-setup has a builtin setpasswd() function that uses chpasswd to set the user's password. As best as i can tell, this isn't walking the pam stack in the manner I expect.
I will be attaching a patch that extends the functionality of setpasswd() to call ecryptfs-
:-Dustin
Related branches
| Changed in user-setup: | |
| assignee: | nobody → kirkland |
| importance: | Undecided → Medium |
| status: | New → In Progress |
Revision history for this message
| Dustin Kirkland (kirkland) wrote | #1 |
Revision history for this message
| Launchpad Janitor (janitor) wrote | #2 |
| Changed in user-setup: | |
| status: | In Progress → Fix Released |
To post a comment you must log in.
I'm attaching a patch.
I was able to scp this version of user-setup-apply into today's Jaunty server amd64 iso and create a user with an encrypted home directory successfully, complete the installation, reboot, and login to my encrypted home directory.
I'm requesting review and sponsorship.
:-Dustin