Wow, that's new to me. Thanks.
Anyway, I still think that this "password rescue" should not be allowed by
default.
I know operating systems can do very little to prevent physical problems like
side-channel attacks,
but this is not the case, and this does not mean that the OS should not make it
harder the attacks even
if someone have physical access. There's systems, from what I remember (HP
servers, I think), that
allow remote control based on firmware. One could use this escape "feature" to
get your root,
without physical access. Same for hosts services.
Also, the page 14.21 from faq say "I forgot my passphrase! Sorry. This is real
encryption, there's
not a back door or magic unlocking tool." why exactly the root should be
different? If one lost his
passphrase, it's his fault. I thought the philosophy was "secure by default",
even if this make the
"computer difficult to manage properly".
