** Description changed: Binary package hint: plymouth Ubuntu Server 11.04 with Full Disk Encryption with LVM through installer. No graphical interface installed; only text-mode. Besides the echoing of the line "Unlocking the disk ...", which got fixed, the password length is visible (asterisks). This gets logged to tty7 and is readable by anybody getting physical access to the server. - I see this as a security vulnerability, because with the knowledge of - the password length bruteforcing is much more easier. + Update + After rebooting I left the server for a few minutes and the screen went to standby and when i waked it up the screen looked different. Before I only had "Unlocking the disk..." and the password prompt on my screen, but after standby there also was the Ubuntu logo which I assume is the plymouth splash screen. + + To make it short: tty7 got wiped after entering the password. Problem + solved - somewhat... + + Maybe there is a problem with my hardware configuration? + HP Microserver N36L + Athlon II-Neo 1.3 GHz + ATI Mobility Radeon HD 4200 + + /Update
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/783848 Title: disk encryption password length is logged to tty7 (Ubuntu Server) -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
