When SSHing to a server with encrypted home directories doesn't automatically mount the encrypted directory
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
ecryptfs-utils (Ubuntu) |
New
|
Undecided
|
Unassigned |
Bug Description
Binary package hint: ecryptfs-utils
As per http://
This behaviour *typically* occur after a reboot of the server, and will usually persist until the next time I SSH to the server without using the private key, but is not every time.
ProblemType: Bug
DistroRelease: Ubuntu 10.04
Package: ecryptfs-utils 83-0ubuntu3
ProcVersionSign
Uname: Linux 2.6.32-25-generic i686
NonfreeKernelMo
Architecture: i386
Date: Wed Oct 6 14:32:53 2010
EcryptfsInUse: Yes
InstallationMedia: Ubuntu 9.10 "Karmic Koala" - Release i386 (20091028.5)
ProcEnviron:
LANG=en_GB.UTF-8
SHELL=/bin/bash
SourcePackage: ecryptfs-utils
Maybe this could be reworded as a wishlist bug for a feature to keep some carefully selected subset of files synchronized both in ecrypts and unencrypted forms? Or should some union-mount like feature be needed to store such exceptional files only in unencrypted form?
Workaround:
In order for the keys to be used, authorized-keys should also exist in unencrypted form (this approach implies exposing some known-plaintext, consequences of which should be analyzed further).
In order to achieve this, you can use the following commands when logged in:
sudo mount -o bind /home /mnt /home}/ .ssh /.ssh/authorize d_keys /mnt${HOME# /home}/ .ssh/
mkdir -m 700 /mnt${HOME#
cp -ia ${HOME}
sudo umount /mnt