[Bug 1374742] Re: opening privileged shell after entering wrong password for LUKS three times
To fix this bug use the attachment. If mainteiners want to fix this bug they should replace string "crypttries=3" to "crypttries=0" in /usr/share/initramfs-tools/scripts/local-top/cryptroot. But may be better to deny access to shell in panic() function in /usr/share/initramfs-tools/scripts/functions? ** Attachment added: "initramfs-patch.sh" https://bugs.launchpad.net/initramfs-tools/+bug/1374742/+attachment/4223928/+files/initramfs-patch.sh -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1374742 Title: opening privileged shell after entering wrong password for LUKS three times To manage notifications about this bug go to: https://bugs.launchpad.net/initramfs-tools/+bug/1374742/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1374742] Re: opening privileged shell after entering wrong password for LUKS three times
Access to keyboard on booting system is not physical access. System may have protected GRUB and firmware. Attacker may got priveleged shell without physical access and damage data, firmware, or add keyloger into /boot. ** Description changed: You should have root filesystem encrypted by LUKS. Start operational system and enter incorrect passphrase for root filesystem three times. Wait several seconds and you give busybox shell with superuser rights from initramdisk. - System should not open shell. It should ask for passphrase forever or show error, but don't open shell. + System should not open shell. It should ask for passphrase forever or show error, but don't open shell. OS: Ubuntu 12.04, Ubuntu 14.04. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1374742 Title: opening privileged shell after entering wrong password for LUKS three times To manage notifications about this bug go to: https://bugs.launchpad.net/initramfs-tools/+bug/1374742/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1374742] Re: opening privileged shell after entering wrong password for LUKS three times
There are any number of ways to get a privileged shell from a system when physically present at booting. The important part is that your data is still encrypted without the keys. Thanks ** Changed in: initramfs-tools (Ubuntu) Status: New => Invalid -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1374742 Title: opening privileged shell after entering wrong password for LUKS three times To manage notifications about this bug go to: https://bugs.launchpad.net/initramfs-tools/+bug/1374742/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1374742] Re: opening privileged shell after entering wrong password for LUKS three times
** Information type changed from Private Security to Public ** Information type changed from Public to Public Security -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1374742 Title: opening privileged shell after entering wrong password for LUKS three times To manage notifications about this bug go to: https://bugs.launchpad.net/initramfs-tools/+bug/1374742/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs