*** This bug is a security vulnerability ***
You have been subscribed to a public security bug by Marc Deslauriers
(mdeslaur):
Binary package hint: ubiquity
When encrypted home functionality was introduced in Ubiquity in the
jaunty cycle, it was decided to wait until encrypted swap was also
available before enabling it as encrypted home without encrypting the
swap space is not secure. From the 1.11.10 changelog:
* Disable the encrypted home option. This cannot be considered secure
without encrypted swap. The option can still be enabled by preseeding
it.
During the karmic cycle, encrypted swap was added to the installer, and
was enabled in the beta builds. Web pages were created that explained
the lack of hibernation support when encrypted swap was used:
http://blog.dustinkirkland.com/2009/06/migrating-to-encrypted-home-directory.html
https://help.ubuntu.com/community/EncryptedHome
Somewhere before Karmic was released, Ubiquity stopped setting up
encrypted swap. As a result, Karmic, Lucid and Maverick have all shipped
with the encrypted home option enabled, but with clear text swap space.
This needs to be addressed as encrypted home alone isn't considered
safe.
** Affects: ubiquity (Ubuntu)
Importance: Undecided
Status: New
--
Ubiquity encrypted home doesn't setup encrypted swap
https://bugs.edge.launchpad.net/bugs/673028
You received this bug notification because you are a member of Ubuntu Bugs,
which is a direct subscriber.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
