Michael Halcrow wrote: > On Thu, Jun 05, 2008 at 12:45:55PM +0200, Dietmar Lippold wrote: > > Why is the file /tmp/test/Test readable although root gave the wrong > > passphrase? > > If you run ``keyctl show'', you will see that the key you used in the > previous mount is still available in your keyring. eCryptfs is using > that key to access the file.
Thank you for the answer. Would it be reasonable that eCryptfs would not ask (double) for a passphrase if a legitimate key is in the keyring (so that eCryptfs will not use the enquired passphrase even it is wrong)? Would it be possible to revoke the key for a eCryptfs directory when the directory is unmounted? If yes, would it be reasonable that eCryptfs would have a configuration option for that? Would it be reasonable that there would be a configuration option to set a general lifetime for a key which is created from a passphrase given to eCryptfs? Dietmar ------------------------------------------------------------------------- Check out the new SourceForge.net Marketplace. It's the best place to buy or sell services for just about anything Open Source. http://sourceforge.net/services/buy/index.php _______________________________________________ eCryptfs-users mailing list eCryptfs-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/ecryptfs-users
