** Description changed: - I am relatively new GNU/Linux user and currently use Xubuntu 14.04 LTS. - I have my main user and I also enabled root account (but not used it and - root password is setup). - - I am interested in ecryptfs and read lots of articles including these: - - http://www.linux-mag.com/id/7568/ - Is my encrypted home folder open to other users when I am logged in? > http://askubuntu.com/questions/82538/is-my-encrypted-home-folder-open-to-other-users-when-i-am-logged-in - - Why encrypted $HOME files showing to root, how to make it hidden - again? > http://askubuntu.com/questions/59381/why-encrypted-home-files- - showing-to-root-how-to-make-it-hidden-again - - I decided to perform several tests on VM (VirtualBox). I guess what I - found must be some bug - security related as this could expose encrypted - data to the root user. Tested: - Ubuntu GNOME 15.04 - desktop i386 - Ubuntu MATE 15.04 - desktop i386 - Lubuntu 15.04 - desktop i386 - Xubuntu 14 LTS - 14.04.2 - desktop amd64 + (ok) Xubuntu 14 LTS - 14.04.2 - desktop amd64 + (bug) Ubuntu GNOME 15.04 - desktop i386 + (bug) Ubuntu MATE 15.04 - desktop i386 + (bug) Lubuntu 15.04 - desktop i386 + (bug) Xubuntu 16.04 (fully upgraded on 2016-04-03T10:56:53+02:00) - amd64 + How do I test: - Installation - default with option to encrypt Home folder during installation - I enable root account and create password (http://askubuntu.com/questions/44418/how-to-enable-root-login) + Installation - default with option to encrypt Home folder during + installation - What happens on all of them: I shutdown the machine. Start it. + I shutdown the machine. Start it. If I first login with root, root cannot see my user's HOME folder/files/ they are encrypted. - * However, what happens on Ubuntu 15 and Lubuntu 15: + + * However, what happens on Ubuntu 15.04 and 16.04 (bug): If I login to my user, check files, then log off fully, eventually - login with root, root can see my user's files. This should be fine if - understand correctly the articles above? Or no? If the user's account is - logged off, should root still be able to read the files of other users? + login with root, root can see my user's files because + /home/_user_/.Private is still mounted. - * What happens on Xubuntu 14 LTS: + + * What happens on Xubuntu 14.04 (expected behaviour): If I login to my user, then I log off, eventually login with root, - root CANNOT read my user's home dir/files. No matter how I tries it, if - root first, or user first, If the user is logged off, root cannot read - the files of my user? + root CANNOT read my user's home dir/files. - So, what is really the expected behavior? Is this a bug in v15 ? I can replicate this very easily and with no problem. I really appreciate everyone's opinion and expert words. Thank you!
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1470030 Title: encrypted home is not being unmounted upon logout To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1470030/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
