LinuxQuestions.org
Go Job Hunting at the LQ Job Marketplace
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - General
User Name
Password
Linux - General This Linux forum is for general Linux questions and discussion.
If it is Linux Related and doesn't seem to fit in any other forum then this is the place.

Notices

Reply
 
Search this Thread
Old 07-04-2005, 10:12 AM   #1
nv22nv
LQ Newbie
 
Registered: Jul 2005
Posts: 9

Rep: Reputation: 0
Question Several problems after implementing encrypted home directories


Hello,

I'm running on Suse 9.3 and having several problems since I implemented encrypted home directories on my system which are mounted on login using pam_mount. Root doesn't have an encrypted home directory and doesn't seem to be affected by the problems at all.
  • When I'm logged in as an ordinary user and try to use the su command, I get a glibc error. In my pam_mount.conf, I'm having debug set to 1. Here's what happens:
    Code:
    su
    Password:
    pam_mount: reading options_allow...
    pam_mount: reading options_deny...
    pam_mount: reading options_allow...
    pam_mount: reading options_require...
    pam_mount: ignoring volume record (not for me)
    pam_mount: back from global readconfig
    pam_mount: per-user configurations not allowed by pam_mount.conf
    pam_mount: no volumes to mount
    pam_mount: real and effective user ID are 1000 and 0.
    *** glibc detected *** double free or corruption (fasttop): 0x08058218 ***
    pam_mount: received order to close things
    pam_mount: real and effective user ID are 0 and 0.
    pam_mount: volcount is zero
    pam_mount: pam_mount execution complete
    *** glibc detected *** double free or corruption (fasttop): 0x08058218 ***
    Abgebrochen [Cancelled]
  • The same problems prevents me from using kdesu. It tells me I entered the wrong password (and I entered it correctly for sure). I can still use sudo, however, or login as root without any problems.
  • After I logged in as a user who has an encrypted root directory, I don't get to the graphical login anymore if I logout. Instead, I'm pointed to a non-graphical login which gives me the following problem:
  • The non-graphical login (the one which is not just plain ASCII but has some graphics in the background) doesn't display properly. I'm seeing strange flashing boxes on the screen that are about the size a character would usually have. I'm still able to switch to a plain text login using Ctrl+Alt+F*.
  • The arts sound server has crashed each time I don't use my computer for several hours.
  • I'm not having any problems with the encrypted home directoy itself.
I'm having a hard time figuring out how these things can be connected to each other, but I assume they are since they only apply to users who are having encrypted home directories and I didn't experience them before. I don't even know what kind of info you need to see where the problem might be located or if it could be a better idea to start over again with a fresh installation.

Here's my fstab entry for the encrypted home directory (my username is just user and my home directory is /home/user):
Code:
/dev/hda5            /home/user           reiserfs   user,exec,noauto,acl,user_xattr,loop=/dev/loop0,encryption=twofish256 0 0
And here my pam_mount.conf (I deleted most lines starting with #)
Code:
debug 1
mkmountpoint 1
# Loopback device to use to run fsck on loopback filesystems.
fsckloop /dev/loop7

 options_allow	nosuid,nodev
 options_deny	suid,dev
 options_allow	*


options_require	nosuid,nodev

# Commands to mount/unmount volumes. They can take parameters, as shown.
#
# If you change the -p0 argument for lclmount, you'll need to modify the
# source in mount.c (it sends the password to the stdin file descriptor
# of the child process -- look for STDIN_FILENO).

lsof /usr/bin/lsof
fsck /sbin/fsck
losetup /sbin/losetup
unlosetup /sbin/losetup -d
smbmount /bin/mount -t smbfs
ncpmount /bin/mount -t ncpfs
# Linux supports lazy unmounting (-l).  May be dangerous for encrypted volumes.
# May also break loopback mounts because loopback devices are not freed.
umount   /bin/umount
# On OpenBSD try "/usr/local/bin/mount_ehd" (included in pam_mount package).
lclmount /bin/mount -p0
nfsmount /bin/mount
# --bind may be a Linuxism.  FIXME: find BSD equivalent.
mntagain /bin/mount --bind
mntcheck /bin/mount # For BSD's (don't have /etc/mtab)

# Volumes that will be mounted when user triggers pam_mount module
# (usually at login).
#
# Format:
# volume <user> [smb|ncp|nfs|local] <server> <volume> <mount point> <mount options> <fs key cipher> <fs key path>
#
# General examples:
# volume user smb krueger public /home/user/krueger - - -
# volume user ncp krueger public /home/user/krueger - - -

volume user local - /dev/hda5 - - - -
I'd by grateful for any help I can get. Thanks in advance.
 
Old 07-27-2005, 11:05 AM   #2
XaViaR
Member
 
Registered: Dec 2004
Distribution: RHEL, CentOS, SuSE
Posts: 170

Rep: Reputation: 30
I have the same problem. Have you figured it out yet??
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Apache Root/Home Directory and setting up FTP for home directories? Mankind75 Linux - Newbie 6 07-23-2006 02:37 PM
protecting home directories munkie_poo Linux - Security 3 07-04-2005 04:55 AM
encrypted home directories TomaCzar Slackware 1 05-19-2005 07:00 AM
encrypted home on Slamd64 Phathead Slackware 1 04-29-2005 07:11 AM
browseable home directories kenji1903 Linux - Networking 18 07-30-2004 04:10 AM


All times are GMT -5. The time now is 03:18 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration