** Changed in: ecryptfs
Status: Confirmed => Won't Fix
** Changed in: ecryptfs-utils (Ubuntu)
Status: Confirmed => Won't Fix
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/255799
Title:
Here is how to avoid having to "fail fingerprint for 5 times" at the
display manager login screen.
sudo cp /etc/pam.d/common-auth /etc/pam.d/common-auth-nofinger
Edit /etc/pam.d/common-auth-nofinger to remove the line "auth
[success=3 default=ignore] pam_fprintd.so"; save and quit.
Edit /etc/pam
It would be nice to temporary fix user experience and provide a way to
type password at first login instead of current "fail fingerprint for 5
times and fallback to password".
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bug
** Changed in: ecryptfs
Status: Triaged => Confirmed
** Changed in: ecryptfs-utils (Ubuntu)
Status: Triaged => Confirmed
--
add support for fingerprint readers in pam_ecryptfs
https://bugs.launchpad.net/bugs/255799
You received this bug notification because you are a member of Ubun
Linking this bug upstream, in case anyone there has an inkling to try
and add this feature.
:-Dusti
** Also affects: ecryptfs
Importance: Undecided
Status: New
** Changed in: ecryptfs
Importance: Undecided => Wishlist
** Changed in: ecryptfs
Status: New => Triaged
--
add s
Thanks to all for the latest feedback.
At this point, I'm marking this bug 'Triaged', which should be a marked
upgrade from 'Won't fix' ;-)
For the reasons that I've previously mentioned (I don't have a
fingerprint reader, and wouldn't use one even if I did), I personally
won't be implementing th
Hello Roger - Dustin and I have talked about this feature request in the
past. The bug was marked wishlist because we don't feel that it is in
the best interest of the core eCryptfs developers to implement. If
someone submitted a high quality patch that added the ability to use
fingerprint reader
I am not personally a fan of fingerprint readers on their own because
often they can be subverted (see Dustin's comment) and because I
generally don't like amputation-ware (I like all my parts where they are
now, thanks). That said, someone else may have a really good reader and
want to use it, and
It isn't really your place to decide what is acceptable security for
users :-) The touchstrip used in my laptop is certainly way better than
the finger sized static readers like those from Microsoft. Fingerprint
authentication is also better than weak passwords, eg people using one
of the twenty
Hi, thanks so much for the bug report.
I've been thinking about this quite a bit lately. I'm going to have to
mark this "won't fix" for now.
The prevailing opinion from security professionals is that fingerprints
are perhaps a good replacement for usernames. However, they're really
not a good r
Hello Mike,
ThinkFinger and pam-bioapi are indeed ways to get fingerprint support. However,
I think we need a more general approach.
If we put the initial wrapping of the mount password in the pam_ecryptfs
module, then it will have access to the pam authentication token, whatever that
may be (p
Hi Dustin! I have been following your work with the encrypted ~/Private
and really appreciate it. I have also been following fingerprint support
in Ubuntu. Have you looked at ThinkFinger / pam-bioapi
(https://wiki.ubuntu.com/ThinkFinger)? Unless I misunderstand, this may
allow this behavior.
--
a
12 matches
Mail list logo
