Couple things to update here ...
With encrypted home directories now available in Jaunty, it's possible
to keep all data, meta data, and cached data in your home directory
encrypted.
For Karmic, I hope that /tmp becomes a tmpfs, entirely in RAM. Couple
that with encrypted swap, and it should be possible to prevent tmp data
from ever leaking to disk.
/var/tmp is a little bit trickier. For /var/tmp, there are relatively
few applications that write data there. I'd like to take those on a
case-by-case basis, and try to ensure that the data that gets written to
/var/tmp is not leaked sensitive data.
Otherwise, these applications (thumbnailers and such), should be running
as your non-privileged $USER and shouldn't really have write access to
locations outside of $HOME, /tmp, /var/tmp, right? In which case, I
think we should be able to cover those 3 cases...
:-Dustin
** Changed in: ecryptfs-utils (Ubuntu)
Status: Confirmed => Triaged
--
Protect data in an encrypted Private from being inadvertently copied elsewhere
(eg, thumbnailers)
https://bugs.launchpad.net/bugs/277655
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
