Comment 2 for bug 483933

I disagree with you about the security risk. In my opinion the only thing a person should need to recover his own data is a reasonable secure password, and one that the user can choose by himself. To make the recovery process cumbersome for average user it is not a gain in security, because average malicious attacker actually _has_ the knowledge to recover the passphrase starting from the user's password and then to mount the disk. Thus the user password strength is the only point on which we should concentrate on in order to increase security. In my opinion the way ecryptfs is implemented in KK is only an hassle for the average user without being a benefit in security improvement