[dm-crypt] LUKS and backdoors

Christoph Anton Mitterer calestyo at scientia.net
Sun Oct 20 02:49:59 CEST 2013



On Sat, 2013-10-19 at 20:38 -0400, .. ink .. wrote:
> can the same be done with LUKS? can a propriety,closed source
> application be able to create a LUKS header in a way that will allow
> it to secretly put the master key "between gaps" in a header in a way
> that will still make the header fully functional and cryptsetup will
> be able to open it without any complains?
Not heaving read the code.... so just blindly guessing.

Since there are the additional keyslots,... and especially the data
alignment padding probably yes,... unless there are checks whether these
are e.g. all 0x0.

Anyway... who should put they key in such a place? If you're already
that far, that some evil application is running with enough rights on
your system to do that,... you're screwed anyway, and nothing can help
you with that.



Cheers,
Chris.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 5165 bytes
Desc: not available
URL: <http://www.saout.de/pipermail/dm-crypt/attachments/20131020/531c47af/attachment.bin>


More information about the dm-crypt mailing list