From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <aaron.lewis1989@gmail.com>
Received: from mail-pz0-f50.google.com (mail-pz0-f50.google.com
 [209.85.210.50]) by mail.saout.de (Postfix) with ESMTP
 for <dm-crypt@saout.de>; Mon, 30 Aug 2010 12:18:58 +0200 (CEST)
Received: by pzk28 with SMTP id 28so2736157pzk.37
 for <dm-crypt@saout.de>; Mon, 30 Aug 2010 03:18:57 -0700 (PDT)
Message-ID: <4C7B8582.4030706@gmail.com>
Date: Mon, 30 Aug 2010 18:18:42 +0800
From: Aaron Lewis <aaron.lewis1989@gmail.com>
MIME-Version: 1.0
References: <4C7B091A.3060906@gmail.com> <4C7B634A.60302@redhat.com>
In-Reply-To: <4C7B634A.60302@redhat.com>
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Subject: Re: [dm-crypt] OT: Just for fun ,
 outputing a sound as access granted or denied
List-Id: <dm-crypt.saout.de>
List-Unsubscribe: <http://www.saout.de/mailman/options/dm-crypt>,
 <mailto:dm-crypt-request@saout.de?subject=unsubscribe>
List-Archive: <http://www.saout.de/pipermail/dm-crypt>
List-Post: <mailto:dm-crypt@saout.de>
List-Help: <mailto:dm-crypt-request@saout.de?subject=help>
List-Subscribe: <http://www.saout.de/mailman/listinfo/dm-crypt>,
 <mailto:dm-crypt-request@saout.de?subject=subscribe>
To: Milan Broz <mbroz@redhat.com>
Cc: dm-crypt@saout.de

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 08/30/2010 03:52 PM, Milan Broz wrote:
> On 08/30/2010 03:27 AM, Aaron Lewis wrote:
>> 	I did a small modification , make cryptsetup funny , these code is not
>> secure as i didn't verify changes on ogg123 & sound files.
> 
> This is some kind of "find 5 security problems" cartoon? :-)
> 
> Seriously, please do not post such things here, cryptsetup runs with
> root privileges and you introduced nice "backdoor" here...
> (This reminds me http://xkcd.com/327/ :-)

Sorry for it , just ignore it ;-)

> Anyway, there are also exit codes, so you can do this using simple shell
> script so it is also completely wrong approach, sorry.

Won't be the next time , i just got a copy of doom3 for linux , so came
up with an idea for the cool sound .. i know it's a big security problem
, i'm not gonna merge it into my system.

BTW: by default cryptsetup try 3 times before a user type in the right
code , is there any way to make it check only once ?
( if i'm not using a shell pipe in system() passing my password )

Thanks !

- -- 
Best Regards,
Aaron Lewis - PGP: 0x4A6D32A0
FingerPrint EA63 26B2 6C52 72EA A4A5 EB6B BDFE 35B0 4A6D 32A0
irc: A4R0NL3WI5 on freenode
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.16 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAkx7hYIACgkQvf41sEptMqBmWgCfQg9UpGKGdoaeBP3t4JUpoR9t
5fMAniLgOu4XmdBs0Z+S+rvqS5XIJHex
=rtg9
-----END PGP SIGNATURE-----