LinuxQuestions.org
Help answer threads with 0 replies.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Slackware
Reload this Page Issue locking the encrypted root partition on shutdown or reboot.
User Name
Password
Slackware This Forum is for the discussion of Slackware Linux.

Notices


Reply
  Search this Thread
Old 01-27-2017, 09:20 AM   #1
Didier Spaier
LQ Addict
 
Registered: Nov 2008
Location: Paris, France
Distribution: Slint64-15.0
Posts: 11,058

Rep: Reputation: Disabled
Issue locking the encrypted root partition on shutdown or reboot.

To check what I wrote in this article (in French but will soon be translated in English) I made an installation in a VirtualBox VM.

What worries me is that at shutdown or reboot I see this message repeated several times when trying to remount the root file system read-only:
Code:
device-mapper: remove ioctl on root failed: Device or resources busy
followed by
Code:
Device root is still in use
as shown in the attached pic.

My questions are:
  • May I assume that despite the last message the root LUKS volume has been safely enough locked, or could a smart attacker overcome the locking?
  • If there is a risk, what can I suggest to users to mitigate it?
Attached Thumbnails
Click image for larger version Name: Try_to_lock_root.png Views: 32 Size: 19.2 KB ID: 24059  
Last edited by Didier Spaier; 01-27-2017 at 01:01 PM. Reason: Typo fixd.
 
Old 01-27-2017, 05:57 PM   #2
philanc
Member
 
Registered: Jan 2011
Posts: 308

Rep: Reputation: 273Reputation: 273Reputation: 273
Quote:
Originally Posted by Didier Spaier View Post
What worries me is that at shutdown or reboot I see this message repeated several times when trying to remount the root file system read-only [...]

May I assume that despite the last message the root LUKS volume has been safely enough locked, or could a smart attacker overcome the locking?
I would not worry about data confidentiality. The hard disk is never "locked" or "unlocked" - It is encrypted all the time. Pages are decrypted on the fly, in RAM, when read from the disk.

If you remove the power line (or kill the VM) at any time during operation, The data on the disk is never left "decrypted" (assuming you use no swap or an encrypted swap).

On the other hand, there might be a problem of data integrity/corruption (although with a journaling file system, I wouldn't worry much).

HTH

Phil
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Users other than root can not shutdown or reboot from xfce chenderson Slackware 3 05-22-2011 09:07 AM
Root Authentication required for reboot (and shutdown?) Guitarist88 Linux - General 2 02-28-2007 11:04 PM
Root Authorization Required to Reboot and Shutdown rioch Linux - Desktop 2 09-14-2006 09:43 AM
Issue with shutdown/reboot: SuSE 9.3 darkmatter333 SUSE / openSUSE 1 04-28-2005 02:10 AM
Baffling reboot/shutdown issue... tisource Linux - General 12 03-31-2003 03:08 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Slackware

All times are GMT -5. The time now is 10:31 PM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration