-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 08/30/2010 03:52 PM, Milan Broz wrote: > On 08/30/2010 03:27 AM, Aaron Lewis wrote: >> I did a small modification , make cryptsetup funny , these code is not >> secure as i didn't verify changes on ogg123 & sound files. > > This is some kind of "find 5 security problems" cartoon? :-) > > Seriously, please do not post such things here, cryptsetup runs with > root privileges and you introduced nice "backdoor" here... > (This reminds me http://xkcd.com/327/ :-) Sorry for it , just ignore it ;-) > Anyway, there are also exit codes, so you can do this using simple shell > script so it is also completely wrong approach, sorry. Won't be the next time , i just got a copy of doom3 for linux , so came up with an idea for the cool sound .. i know it's a big security problem , i'm not gonna merge it into my system. BTW: by default cryptsetup try 3 times before a user type in the right code , is there any way to make it check only once ? ( if i'm not using a shell pipe in system() passing my password ) Thanks ! - -- Best Regards, Aaron Lewis - PGP: 0x4A6D32A0 FingerPrint EA63 26B2 6C52 72EA A4A5 EB6B BDFE 35B0 4A6D 32A0 irc: A4R0NL3WI5 on freenode -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.16 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAkx7hYIACgkQvf41sEptMqBmWgCfQg9UpGKGdoaeBP3t4JUpoR9t 5fMAniLgOu4XmdBs0Z+S+rvqS5XIJHex =rtg9 -----END PGP SIGNATURE----- _______________________________________________ dm-crypt mailing list dm-crypt@xxxxxxxx http://www.saout.de/mailman/listinfo/dm-crypt
