Re: Mounting an encrypted volume presents the volume to all users on a machine

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



nodata wrote:
> Hi,
> 
> I'm concerned about the default behaviour of mounting encrypted volumes.
> 
> The default behaviour is that a user must know and supply a passphrase 
> in order to mount an encrypted volume. This is good: know the 
> passphrase, you get to mount the volume.
> 
> What I am concerned about is that the volume is mounted for _every_ user 
> on the system to see.
> 
> I've filed a bug about this, and it got closed:
>   https://bugzilla.redhat.com/show_bug.cgi?id=646085
> 
> I'm quite in favour of secure by default. In the worst case, the 
> mountpoint would have permissions set to read access to all if you tick 
> a box.
> 
> Thoughts?
> 

If you want something closer to per-file encryption, try out ecryptfs.

http://ecryptfs.sourceforge.net/ecryptfs-faq.html#compare

-Eric
-- 
devel mailing list
devel@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/devel


[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Index of Archives]     [Fedora Announce]     [Fedora Kernel]     [Fedora Testing]     [Fedora Formulas]     [Fedora PHP Devel]     [Kernel Development]     [Fedora Legacy]     [Fedora Maintainers]     [Fedora Desktop]     [PAM]     [Red Hat Development]     [Gimp]     [Yosemite News]
  Powered by Linux