Thunar can open LUKS device in spite of "Forget Password immediately"
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
thunar (Ubuntu) |
New
|
Undecided
|
Unassigned |
Bug Description
Xubuntu 18.04.3
When opening a LUKS device in Thunar, it asks for the password. When I select the option "Forget password immediately", I would expect Thunar to ask me again, once I've closed and re-opened Thunar.
Where is the difference to "Remember password until you logout"?
How can I achieve the behavior that it "only works once"?
Thank you very much in advance,
^Rooker
btw: Could this actually be a security related issue? Since someone could access the LUKS data while the user is still logged in or so?
ProblemType: Bug
DistroRelease: Ubuntu 18.04
Package: thunar 1.6.15-
ProcVersionSign
Uname: Linux 5.3.0-46-generic x86_64
NonfreeKernelMo
ApportVersion: 2.20.9-0ubuntu7.14
Architecture: amd64
CurrentDesktop: XFCE
Date: Sat May 16 22:35:34 2020
ExecutablePath: /usr/bin/thunar
InstallationDate: Installed on 2020-04-24 (22 days ago)
InstallationMedia: Xubuntu 18.04.4 LTS "Bionic Beaver" - Release amd64 (20200203.1)
SourcePackage: thunar
UpgradeStatus: No upgrade log present (probably fresh install)
Once a LUKS device is unlocked it is accessible without the password - so I think what is happening is that you are unlocking the device via Thunar and then it remains unlocked, so even though Thunar has forgotten the password, it does not need it to access the device anymore. You need to relock the LUKS device then to prevent further access. This seems more like a UX issue where it is not clear what the expectation may be for the user rather than a security issue.