https://bugzilla.novell.com/show_bug.cgi?id=849870
https://bugzilla.novell.com/show_bug.cgi?id=849870#c8
Neil Rickert changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |nrickert@ameritech.net
--- Comment #8 from Neil Rickert 2013-11-24 19:06:59 UTC ---
I see this as a systemd bug, with security implications.
I use "ecryptfs" to mount a private directory. When I logout, the private
directory remains mounted.
On a work computer, I have ecryptfs setup so that my home directory is
encrypted. I logged out before leaving work. From home, I checked. And the
encrypted home directory was still mounted. The whole point of an encrypted
home directory, is that it should only be visible when the user is logged in.
When I tried: ecryptfs-umount-private
the response was that the user is still logged in. Repeating that command a
second time did unmount.
The problem is not that there are processes running for the user. As best I
can tell, the systemd user process has current directory "/" so does not
require that the encrypted directory remain mounted. The problem is that
logout by the user did not close the pam session, so the umount normally done
at session end did not take place.
I'm guessing that this is also a problem for loop-mounted encrypted container
as an encrypted home directory.
--
Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.