Ubuntu
ecryptfs-utils package

ecryptfs-mount-private.desktop not executable - Untrusted application launcher

Bug #586281 reported by Lourens Veen
34
This bug affects 6 people
Affects Status Importance Assigned to Milestone
ecryptfs-utils (Ubuntu)
Fix Released
Low
Dustin Kirkland 
Ubuntu ubuntu-11.10-beta-2
Oneiric
Fix Released
Low
Dustin Kirkland 
Ubuntu ubuntu-11.10-beta-2

Bug Description

Binary package hint: ecryptfs-utils

After upgrading to Ubuntu 10.04 LTS from 9.10, when clicking Access-Your-Private-Data.desktop in my ~/Private, I get an error message:

---
Untrusted Application Launcher

The application launcher "Access-Your-Private-Data.desktop" has not been marked as trusted. If you do not know the source of this file, launching it may be unsafe.
---

In Ubuntu 9.10 (where I first set this up), clicking would let me enter my passphrase and unlock the directory, which is what I would expect to happen here.

The /usr/share/ecryptfs-utils/ecryptfs-mount-private.desktop file, which Access-Your-Private-Data.desktop is a symlink to, has 0644 permissions, e.g. it is not executable (in package version 83-0ubuntu3). This causes Nautilus to give that message, see bug #153438. Indeed, if I manually change the permissions (sudo chmod 755 /usr/share/ecryptfs-utils/ecryptfs-mount-private.desktop), everything works as expected.

Suggested solution: change the permissions of /usr/share/ecryptfs-utils/ecryptfs-mount-private.desktop and /usr/share/ecryptfs-utils/ecryptfs-setup-private.desktop to 0755 instead of 0644.

ProblemType: Bug
DistroRelease: Ubuntu 10.04
Package: ecryptfs-utils 83-0ubuntu3
ProcVersionSignature: Ubuntu 2.6.32-22.33-generic 2.6.32.11+drm33.2
Uname: Linux 2.6.32-22-generic x86_64
Architecture: amd64
Date: Thu May 27 11:52:44 2010
EcryptfsInUse: Yes
ProcEnviron:
 LANGUAGE=en_GB:en
 LANG=en_GB.utf8
 SHELL=/bin/bash
SourcePackage: ecryptfs-utils

Revision history for this message
Lourens Veen (lourens) wrote :
Revision history for this message
stop (whoopwhoop) wrote :

As a side note: I removed wrapped-passphrase, wrapped-passphrase.recorded and auto-mount from ~/.exryptfs/.
I don't know if this caused the problem or if it is even sane to do this; my goal was to ensure that the folder was not mounted automatically and that the pass phrase would be unretrievable...

Revision history for this message
stop (whoopwhoop) wrote :

Nope, it has nothing to do with it....
So basically the fix of bug #153438 caused this?

Revision history for this message
TomasHnyk (sup) wrote :

I do not know the proper solution, but as long as the readme suggest running that file and the file cannot be run, this is a bug. I am running ubuntu 10.10 and just installed ecryptfs-utils and only run ecryptfs-setup-private. (also, I use autologin)

Changed in ecryptfs-utils (Ubuntu):
status: New → Confirmed
Revision history for this message
Dustin Kirkland  (kirkland) wrote :

Sebastien/Didier,

Is there something simple I could do in eCryptfs to solve this bug? Something to make this little .desktop pointer registered and trusted?

Thanks,
Dustin

Changed in ecryptfs-utils (Ubuntu):
importance: Undecided → Low
status: Confirmed → Incomplete
Revision history for this message
Sebastien Bacher (seb128) wrote :

did you try changing the permissions as suggested in the bug description? that should work.

Revision history for this message
TomasHnyk (sup) wrote :

Still present on Natty, this should not expire.

TomasHnyk (sup)
Changed in ecryptfs-utils (Ubuntu):
status: Incomplete → Confirmed
Dustin Kirkland  (kirkland)
Changed in ecryptfs-utils (Ubuntu):
status: Confirmed → In Progress
Dustin Kirkland  (kirkland)
Changed in ecryptfs-utils (Ubuntu Oneiric):
assignee: nobody → Dustin Kirkland (kirkland)
milestone: none → ubuntu-11.10-beta-2
Dustin Kirkland  (kirkland)
Changed in ecryptfs-utils (Ubuntu Oneiric):
status: In Progress → Fix Committed
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package ecryptfs-utils - 92-0ubuntu1

---------------
ecryptfs-utils (92-0ubuntu1) oneiric; urgency=low

  * src/libecryptfs/key_management.c: LP: #725862
    - fix nasty bug affecting users who do *not* encrypt filenames;
      the first login works, but on logout, only one key gets
      cleaned out; subsequent logins do not insert the necessary key
      due to an early "goto out"; this fix needs to be SRU'd
  * debian/rules: LP: #586281
    - fix perms on desktop mount file
  * src/pam_ecryptfs/pam_ecryptfs.c: LP: #838471
    - rework syslogging to be less noisy and note pam_ecryptfs
 -- Dustin Kirkland <email address hidden> Thu, 01 Sep 2011 16:25:03 -0500

Changed in ecryptfs-utils (Ubuntu Oneiric):
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.