## Attack Against Encrypted Linux Disks

From: andrew cooke <andrew@...>

Date: Mon, 23 Dec 2013 19:15:05 -0300

Nice attack against the default (CBC) mode used in LUKS (what Linux uses to
encrypt disks).

As a consequence, your disk contents can be altered, even though they are
encrypted.  For example, executables can be altered to inject malicious code.

This is real, serious risk.  Important work.

http://www.jakoblell.com/blog/2013/12/22/practical-malleability-attack-against-cbc-encrypted-luks-partitions/

Andrew

### 8 Years...

From: andrew cooke <andrew@...>

Date: Mon, 23 Dec 2013 19:32:02 -0300

There's an immensely frustrating comment as the fist reply to that post.  It
says that the attack was known since 2005 and then goes on to say Ubuntu
avoids th eproblem from 2013 onwards.

The smug impolication is that there is nothing to worry about.  But then you
wonder why, if it was such a well known problem, the fix was not implemented
for 8 years.  I wouldn't be so smug if I'd let this exists for 8 years before
fixing it...

Andrew