Comment 16 for bug 307019
Revision history for this message
| Kees Cook (kees) wrote Re: [Bug 307019] Re: ecryptfs Private directory not mounted after changing password in users-admin | #16 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
73416ba
(Get the code!)
On Fri, Aug 28, 2009 at 01:33:11PM -0000, James Westby wrote:
> I'm pretty certain that If we just pass the new password to pam then it
> can do the rest. I belive that using "sudo passwd <user>" doesn't break
> eCryptfs.
Unfortunately, AFAIK, that does break it -- it must be the user themselves
calling "passwd" since then PAM will prompt for the old password to
pass through the PAM stack. eCryptfs (and potentially other things)
use it to decrypt the mount passphrase, and then re-encrypt it with the
new PAM password.