Hi Julian - thanks for the bug report!
As the upstream maintainer of eCryptfs, I'd like to point out that this
is a well known problem with partial disk encryption technologies such
as eCryptfs. Information leaks are bound to happen when applications can
write to locations outside of the encrypted mount point ($HOME, in your
case).
The only solution to prevent unintentional information leaks to non-
encrypted locations in the filesystem is to use full disk encryption
solutions, such as LUKS/dm-crypt. For some users, partial encryption is
the best solution while other user may require full disk encryption so
Ubuntu offers both solutions.
I'm going to make this bug public so that the apport folks can have a
look and determine if there is an easy, apport-specific solution but I
expect them to mark this as Won't Fix.
** Changed in: apport (Ubuntu)
Importance: Undecided => Wishlist
** Changed in: apport (Ubuntu)
Status: New => Confirmed
** Information type changed from Private Security to Public Security
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1077074
Title:
/var/crash is unencrypted
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/apport/+bug/1077074/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
