Ubuntu
cryptsetup package

Cryptsetup password exposure

Bug #368162 reported by Elton Algera on 2009-04-27

This bug report is a duplicate of: Bug #55159: usplash prevents passwords from being not echoed on the console. Edit Remove

256

Affects		Status	Importance	Assigned to	Milestone
	cryptsetup (Ubuntu)	New	Undecided	Unassigned

Bug Description

Binary package hint: cryptsetup

After installing cryptsetup and configuring /etc/crypttab, encrypted partitions can be automatically mounted at boot. This works, but on vt8 the password is shown in plain text. I can reproduce this on two machines.

ProblemType: Bug
Architecture: i386
DistroRelease: Ubuntu 9.04
ExecutablePath: /usr/bin/yelp
NonfreeKernelModules: nvidia
Package: yelp 2.25.1-0ubuntu5
ProcEnviron:
LANG=en_US.UTF-8
SHELL=/bin/bash
SourcePackage: yelp
Uname: Linux 2.6.28-11-generic i686

Tags:

Revision history for this message

Elton Algera (elton-doopydoop) wrote on 2009-04-27:

Dependencies.txt Edit (4.7 KiB, text/plain; charset="utf-8")
ProcMaps.txt Edit (37.4 KiB, text/plain; charset="utf-8")
ProcStatus.txt Edit (773 bytes, text/plain; charset="utf-8")

Revision history for this message

Elton Algera (elton-doopydoop) wrote on 2009-04-27:

IMG_6563.JPG Edit (1.8 MiB, image/jpeg)

Revision history for this message

Elton Algera (elton-doopydoop) wrote on 2009-04-27:

cryptsetup.JPG Edit (456.3 KiB, image/jpeg)

On the vt8 image you see the password that has been entered into the ubuntu splash screen.

Marc Deslauriers (mdeslaur) on 2009-04-28

visibility:

private → public

Report a bug

This report contains Public Security information

Everyone can see this security related information.

Duplicate of bug #55159 Remove

You are

Subscribing...

Edit bug mail

Other bug subscribers

Bug attachments

Add attachment

Remote bug watches

Bug watches keep track of this bug in other bug trackers.

Ubuntucryptsetup package

Cryptsetup password exposure

Bug Description

Other bug subscribers

Bug attachments

Remote bug watches

Ubuntu
cryptsetup package