[pkg-cryptsetup-devel] Bug#502772: Bug#502772: gnome autologin user should depend on boot passsword

Josh Triplett josh at joshtriplett.org
Wed Mar 16 12:51:46 UTC 2011


On Wed, Mar 16, 2011 at 10:32:47AM +0100, Harald Jenny wrote:
> On Tue, Mar 15, 2011 at 10:31:33AM -0700, Josh Triplett wrote:
> > Package: cryptsetup
> > Version: 2:1.0.6+20090405.svn49-1
> > Followup-For: Bug #502772
> > 
> > reopen 502772
> > retitle 502772 Associate usernames with passphrases; provide username associated with passphrase used
> > thanks
> > 
> > This bug report seems to have gotten closed based on an incorrect
> > interpretation of the original report.  Reopening, retitling, and
> > re-requesting.
> > 
> > The report makes the reasonable request that since an encrypted
> > filesystem can have multiple passphrases associated with it, those
> > passphrases could have associated usernames.  Cryptsetup could then use
> > the passphrase provided to look up the associated username, and provide
> > that username to later phases of the boot process somehow, such as to
> > GDM to allow it to select that username for autologin.  Thus, the user
> > would enter their passphrase to decrypt the disk, and not need to
> > subsequently log in with a username and password.
> > 
> > That seems like a reasonable request, and it should not impact system
> > security in any way.
> > 
> > - Josh Triplett
> 
> you may also want to check libpam-mount if this suits your needs (although it
> requires some config on the machine).

That only applies in the case of an encrypted user home directory, not
an encrypted root partition.

- Josh Triplett





More information about the pkg-cryptsetup-devel mailing list