the password entered during boot for an encrypted partition (e.g. /home) is shown in plain text after having entered it (behind usplash)
Bug #288408 reported by
kernelOfTruth
This bug report is a duplicate of:
Bug #55159: usplash prevents passwords from being not echoed on the console.
Edit
Remove
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Ubuntu |
Incomplete
|
Undecided
|
Unassigned |
Bug Description
when adding an encrypted partition (e.g. / especially /home to keep old encrypted data)
by using the following procedure:
http://
when booting up ubuntu and entering the password at the "prompt:
"Enter passphrase to unlock the disk /dev/sd* (home):"
the password is shown in plain text when it switches from usplash to console-view (showing the boot-up messages) which is a clear security hole
please fix this !
it also would be nice to add options to the alternate and liveCD installation media to add an existing (encrypted) /home partition to prevent this whole additional fuss
many thanks in advance :)
To post a comment you must log in.
sorry, I forgot to say:
the ubuntu-version is 8.10 development (I downloaded the alternative installation-disc amd64 today and updated everything with apt-get dist-upgrade)