Re: [dm-crypt] OT: Just for fun , outputing a sound as access granted or denied

[Aaron Lewis <aaron.lewis1989@gmail.com>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 08/30/2010 03:52 PM, Milan Broz wrote:
> On 08/30/2010 03:27 AM, Aaron Lewis wrote:
>> 	I did a small modification , make cryptsetup funny , these code is not
>> secure as i didn't verify changes on ogg123 & sound files.
> 
> This is some kind of "find 5 security problems" cartoon? :-)
> 
> Seriously, please do not post such things here, cryptsetup runs with
> root privileges and you introduced nice "backdoor" here...
> (This reminds me http://xkcd.com/327/ :-)

Sorry for it , just ignore it ;-)

> Anyway, there are also exit codes, so you can do this using simple shell
> script so it is also completely wrong approach, sorry.

Won't be the next time , i just got a copy of doom3 for linux , so came
up with an idea for the cool sound .. i know it's a big security problem
, i'm not gonna merge it into my system.

BTW: by default cryptsetup try 3 times before a user type in the right
code , is there any way to make it check only once ?
( if i'm not using a shell pipe in system() passing my password )

Thanks !

- -- 
Best Regards,
Aaron Lewis - PGP: 0x4A6D32A0
FingerPrint EA63 26B2 6C52 72EA A4A5 EB6B BDFE 35B0 4A6D 32A0
irc: A4R0NL3WI5 on freenode
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.16 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAkx7hYIACgkQvf41sEptMqBmWgCfQg9UpGKGdoaeBP3t4JUpoR9t
5fMAniLgOu4XmdBs0Z+S+rvqS5XIJHex
=rtg9
-----END PGP SIGNATURE-----