Ubuntu

Have to log out of a virtual terminal twice if Private not set to automount

Reported by narnie on 2010-02-24
16
This bug affects 3 people
Affects Status Importance Assigned to Milestone
ecryptfs-utils (Ubuntu)
Medium
Unassigned

Bug Description

Binary package hint: ecryptfs-utils

Hello,

I am having a problem with my Private folder setup using ecrypts.

I don't like the automounting behaviour of ecrypts. I prefer to manually mount it when I need it.

To do so, I have renamed this file:

~/.ecryptfs/auto-mount

to

~/.ecryptfs/NO_auto-mount

After doing this, if I'm in a virtual terminal (eg, CTRL-ALT 1) and log in, when I log out by typing exit, it starts another bash which will then logs out when I type exit the second time. When I rename the file back to the original name (auto-mount), then I only have to type exit to logout once. If I move the file out of the dir entirely, I still have to exit by type exit followed by typing exit in the new bash (well, now that I think about it, I haven't "proven" it is the same bash by looking up the PID).

This behaviour occurs EVERY time and thus is very reproducible.

It does NOT matter whether Private is actually mounted as decrypted or not.

Also, it does NOT behave this way in xterm nor gnome-terminal window consoles.

I would love a fix for this is it is annoying to have to exit twice unless I want my ecrypt available to any root-privileged user to see that happens to be logged on and wants to go snooping on my /home dir. It is for this reason I mark it as a security vulnerability. I realize that having it automounted is the default (which I personally feel is a security vulnerability in the first place but I understand the reasoning in trying to make it easier for the masses - but hence raises the question why an easy way to prevent automounting of ecryptfs in the first place is not "built-in")

With thanks,
Narnie

narnie (signupnarnie) on 2010-02-24
tags: added: terminal virtual
visibility: private → public
Jamie Strandboge (jdstrand) wrote :

Thanks for taking the time to report this bug and helping to make Ubuntu better. We appreciate the difficulties you are facing, but this appears to be a "regular" (non-security) bug. I have unmarked it as a security issue since this bug does not show evidence of allowing attackers to cross privilege boundaries nor directly cause loss of data/privacy. Please feel free to report any other bugs you may find.

security vulnerability: yes → no
Dustin Kirkland  (kirkland) wrote :

Thanks for reporting this.

I can confirm this behavior, on Natty and ecryptfs-utils-86. I don't see the problem yet.

Changed in ecryptfs-utils (Ubuntu):
status: New → Confirmed
importance: Undecided → Medium
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers