[Pkg-cryptsetup-devel] Bug#379723: cryptsetup: luksDelKey is too
eager
Robert Bihlmeyer
r.bihlmeyer at internet-security.at
Tue Jul 25 08:44:56 UTC 2006
Package: cryptsetup
Version: 2:1.0.3-3
Severity: wishlist
It can be very easy to delete a vital key with "cryptsetup luksDelKey". I have
not checked whether it will delete the last key, but even if you have two, one
of them may be unusable (passphrase forgotten), you want to delete this one,
but actually delete the one where you know the passphrase ... ouch!
I would suggest a query for one of the *other* keys, so the above situation
can not happen.
TIA,
--
Robbe
More information about the Pkg-cryptsetup-devel
mailing list