* debian/initramfs/cryptroot-script: Do not mention the name of the
encrypted device. It is just technobabble anyway (sda4_crypt), and there
is just one root partition ever, so it is not needed to tell apart
different partitions. From a security POV, someone who can change your
initramfs to boot a different root partition can just as well change the
strings, too. (LP: #201413)
This bug was fixed in the package cryptsetup - 2:1.0.5-2ubuntu10
---------------
cryptsetup (2:1.0.5-2ubuntu10) hardy; urgency=low
* debian/ initramfs/ cryptroot- script: Do not mention the name of the
encrypted device. It is just technobabble anyway (sda4_crypt), and there
is just one root partition ever, so it is not needed to tell apart
different partitions. From a security POV, someone who can change your
initramfs to boot a different root partition can just as well change the
strings, too. (LP: #201413)
-- Martin Pitt <email address hidden> Wed, 02 Apr 2008 15:51:53 +0200