This is for anyone here who has used the eCryptfs OpenSSL key module to encrypt your files on any Debian-derived distributions. This is due to a distribution-specific bug in the OpenSSL package:
http://www.securityfocus.com/brief/739 Update your OpenSSL package and migrate your files to a newly generated keypair. You can do this easily by creating to eCryptfs mounts against two lower directories; one mount under your old key and another mount under your new key. Copy the files from the mount point done with your old key to the mount point done with your new key. Unmount, remount, and verify that you can still access your files with your new key. Make backups of your data, then delete all copies of your files in the lower filesystem location containing the files encrypted under your old key. You may need to scrub your media too to get rid of the old encrypted data. Remember to also take care of any backups of files encrypted with your old key; such files should all now be considered to be in the clear for all intents and purposes. Mike
pgptBYZVhV5cW.pgp
Description: PGP signature
------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2008. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________ eCryptfs-users mailing list eCryptfs-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/ecryptfs-users
