1. Forum
  2. Usenet
  3. LINUX.DEBIAN.USER

  • Security Flaw:

    From Richard Bostrom@21:1/5 to All on Wed Jul 10 09:00:01 2024
    This is a multi-part message in MIME format.

    SSBjYW5ub3QgdXBkYXRlIG15IHBhc3NwaHJhc2UgaW4gY3J5cHR0YWIgYWx0aG91Z2ggdGhlIHBh c3NwaHJhc2UgaXMgdXBkYXRlZCBpbiB0aGUgT1MgSSBjYW5ub3QgZW50ZXIgbXkgT1Mgd2l0aG91 dCB1c2luZyB0aGUgbGF0ZXN0IHBhc3NwaHJhc2UuCgpZb3VycyBzaW5jZXJlbHkKUmljaGFyZGgg Qm9zdHJvbQ==

    PGRpdiBzdHlsZT0iZm9udC1mYW1pbHk6IEFyaWFsLCBzYW5zLXNlcmlmOyBmb250LXNpemU6IDE0 cHg7Ij48c3Bhbj5JIGNhbm5vdCB1cGRhdGUgbXkgcGFzc3BocmFzZSBpbiBjcnlwdHRhYiBhbHRo b3VnaCB0aGUgcGFzc3BocmFzZSBpcyB1cGRhdGVkIGluIHRoZSBPUyBJIGNhbm5vdCBlbnRlciBt eSBPUyB3aXRob3V0IHVzaW5nIHRoZSBsYXRlc3QgcGFzc3BocmFzZS48L3NwYW4+PGJyPjxzcGFu Pjwvc3Bhbj48YnI+PC9kaXY+PGRpdiBzdHlsZT0iZm9udC1mYW1pbHk6IEFyaWFsLCBzYW5zLXNl cmlmOyBmb250LXNpemU6IDE0cHg7Ij48YnI+PC9kaXY+DQo8ZGl2IGNsYXNzPSJwcm90b25tYWls X3NpZ25hdHVyZV9ibG9jayIgc3R5bGU9ImZvbnQtZmFtaWx5OiBBcmlhbCwgc2Fucy1zZXJpZjsg Zm9udC1zaXplOiAxNHB4OyI+DQogICAgPGRpdiBjbGFzcz0icHJvdG9ubWFpbF9zaWduYXR1cmVf YmxvY2stdXNlciI+DQogICAgICAgIDxkaXY+PHNwYW4gc3R5bGU9ImZvbnQtZmFtaWx5OkFyaWFs LCBzYW5zLXNlcmlmIj48L3NwYW4+PC9kaXY+PGRpdiBzdHlsZT0iZm9udC1mYW1pbHk6IEFyaWFs LCBzYW5zLXNlcmlmOyBmb250LXNpemU6IDE0cHg7IGNvbG9yOiByZ2IoMCwgMCwgMCk7IGJhY2tn cm91bmQtY29sb3I6IHJnYigyNTUsIDI1NSwgMjU1KTsiPjxzcGFuPllvdXJzIHNpbmNlcmVseTwv c3Bhbj48ZGl2PjxzcGFuPlJpY2hhcmRoIEJvc3Ryb208L3NwYW4+PC9kaXY+PGRpdj48c3Bhbj48 YnI+PC9zcGFuPjwvZGl2Pjxicj48ZGl2PjxzcGFuPjxicj48L3NwYW4+PC9kaXY+PGRpdj48YnI+ PC9kaXY+PGRpdj48c3Bhbj48L3NwYW4+PHNwYW4+PC9zcGFuPjwvZGl2PjwvZGl2Pjxicj4NCiAg ICA8L2Rpdj4NCiAgICA8L2Rpdj4NCg==

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Ceppo@21:1/5 to Richard Bostrom on Wed Jul 10 11:10:01 2024
    Hello!
    Reading some man pages, if you used the default encryption tool when installing Debian you should be able to change the passphrase just with this:

    cryptsetup luksChangeKey <your device>

    If this isn't your case, we probably need some more details to be able to help you.

    On Wed, Jul 10, 2024 at 06:34:59AM GMT, Richard Bostrom wrote:
    I cannot update my passphrase in crypttab

    What did you try and what was the outcome?

    although the passphrase is updated in the OS

    How did you "update the passphrase in the OS"?

    I cannot enter my OS without using the latest passphrase.

    What happens when you enter the old passphrase? And what when you enter the new one?


    P.S.: you should always choose a meaningful subject for your emails. "Security Flaw" really looks spam and is easily discarded by spam filters, and even if the message were delivered most people would probably throw it away without even opening it. In your case there isn't a security flaw at all, so it is also misleading. I'm just recommending to take care of your requests, people are willing to help but don't have enough time to manually check every suspicious message that reaches their inbox :).


    --
    Ceppo

    -----BEGIN PGP SIGNATURE-----

    iQIzBAABCgAdFiEEdITIc+KDsfJi9wdlzV8M+/K0eFUFAmaOT60ACgkQzV8M+/K0 eFXCMQ/+N1qObSXYqvWgwMWRo2Bh1/FHSbYDW/daxVMI2AP1LHN41ZeZCTrfUkCl u9YIfAJ5MUpmr5cDh7r34VzCEZRT4q8hoMmpN6c4D9ip0aCgIY1ONPUOholmllOL 7cG2qncnqYneKyM9bkT3FRLvO+NWoh83vj7hKz0O62TryBbp2RrnPw7RJQOXu+9b jXhVJ+ryrSBg7EFEmDtWoq9uBCz5hv6wNI5IbTB1aUKXAtyZt88GlZtq0PW4SAnF 7VA1ms+0E0DCshn8mLPwdLO5cyT8oo+UUbxJfFXqQR5xFoqlcC1rGq3ZmVIiasz0 BuZYtsPTZrXgJtDSk/HYHM64xgGKRELTajCBpTKiKpxsRFpGjI8m+2jutYr8a0iV 27hzfuBRw9C+CbSRho4gCAl7zXRCH+aP6HWdBlajOvpIZ5MHhtFUmM6d7PtEykEj 7hDMbZidGDYvwqmmttTgCHp5r9c/Y6aeruf5k7vovby2/0qREXytst39NP9D1GuB 019nzD2ztmdmLytZjIeg2B1TV4WW3m3JkGpxi58LXIOZLKl6UbfGC7eHRWC7cAKh Oat1FTtfjZNAm4Dx9i+ZrW1YlkvHBeF4SzUPLnsFO4Ivzymn/xfLVZVKVJPBpJVS gwIlFtfaOyLl8kzbBcPcFP//MfRkVYTPFuf+WAQ6aOrv2KxMxgk=
    =zQo/
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Ceppo@21:1/5 to Ceppo on Wed Jul 10 11:20:02 2024
    On Wed, Jul 10, 2024 at 09:09:06AM GMT, Ceppo wrote:
    If this isn't your case, we probably need some more details to be able to help you.

    And I forgot the most important question: how did you encrypt your disk?


    --
    Ceppo

    -----BEGIN PGP SIGNATURE-----

    iQIzBAABCgAdFiEEdITIc+KDsfJi9wdlzV8M+/K0eFUFAmaOUMgACgkQzV8M+/K0 eFVDABAAi63P577/sxzdpCejwTHu9yKqPB93eAX4O05yJC4XyNE2x313lQCji5ZO nqAiyeQhRCcl+vzFHDhR+Vn2HZtxFSPfPJgcTZKStyPEPzsgxlMS/62zyFyJ5u8U OPRJC3xCjWtSsqKCPE6vIXyF2xHOZARtuJJsb7oVdH5UwC9Ixubw3POmPDC8gVM2 hvQaoMIV1KsnnmtjLNTKhw71TJhTIEaA2xU1WGiaen99IBYMgTe/TQeSEP2UZ+EU leB0VWqtoJDGiMvVa/7LT9oOhKZmkIPaBN9u5pbr7Fnq6qvMBAwxU7YNRN/zqDpZ OmkRlOY/bNHOOi73hwvnASlmI8xuwa4a/ib5tUnAxBb1vokMOnjdv9Y6rgVm6h5D h6fLcHz7iOPzfKEcOOidqTcDN7IvQcJRILUbFxX3ONpqsOGhChrz67hHWVxqsfNN sJw1J5/qRWiqU4qcJE54pBSJG/NH8MYBUOzTA1oJy5T6ShegBYl7OXupn2s5Oe2W fmaEdibMYeHeCNQUpUdPAG0LJ6NVaXWZtrC2xyh6vY5HSTtaouwOlW/5NBQBDEwg 70qTOmpLtZkPpDxmbjQNrXjpAmv2RmNETU5C/EO7LlzDmNM7HU8tDWAkzs4kGDFt smWJwPK85bHePsVHVmvA1+dQq1pQHAd5chBrZt61uzQU4wOk4Aw=
    =xN+H
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From David Christensen@21:1/5 to Richard Bostrom on Thu Jul 11 01:20:01 2024
    On 7/9/24 23:34, Richard Bostrom wrote:
    I cannot update my passphrase in crypttab although the passphrase is updated in the OS I cannot enter my OS without using the latest passphrase.

    Yours sincerely
    Richardh Bostrom


    Passphrases in crypttab(5) are for disks, disk partitions, virtual
    devices, etc., and are unrelated to user passwords. Changing one does
    not affect the other, and vice versa.


    If you are using LUKS to encrypt a partition, LUKS supports more than
    one passphrase. See cryptsetup(8). To change the passphrase, I would
    add the new passphrase, reboot, and enter the new passphrase to verify.
    When you are confident the new passphrase works, delete the old passphrase.


    David

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)