Comment 10 for bug 302870

Martin Pitt (pitti) wrote :

Thanks, Dustin.

At the moment it looks like adduser doesn't have a very good failure case handling. What happens if ecryptfs-setup-private doesn't exist (it's only recommended, and this is a good thing)? Or if it fails? IMHO it should make adduser fail gracefully with a proper error message, instead of silently working without an encrypted home dir.

A kind of Christmas wishlist thing is adding an option for this into adduser.conf, so that sysadmins can set it as default and thus every program calling adduser would create an encrypted home directory. What do you think about that? (Not a blocker for upload, of course)