Bug#390616: linux-image-2.6.18: Enable ATA-Security for Sid kernels

To: 390616@bugs.debian.org
Subject: Bug#390616: linux-image-2.6.18: Enable ATA-Security for Sid kernels
From: thomas schorpp <t.schorpp@gmx.de>
Date: Fri, 06 Oct 2006 13:48:45 +0200
Message-id: <[🔎] 4526429D.10902@gmx.de>
Reply-to: t.schorpp@gmx.de, 390616@bugs.debian.org
In-reply-to: <[🔎] 20061005175604.GY4868@baikonur.stro.at>
References: <[🔎] 20061002074824.8EE0687F37@tom1.schorpp.dyndns.dk> <[🔎] 20061005135929.GC29970@nancy> <[🔎] 45253712.4040605@gmx.de> <[🔎] 20061005175604.GY4868@baikonur.stro.at>

maximilian attems wrote:

On Thu, Oct 05, 2006 at 06:47:14PM +0200, thomas schorpp wrote:

maximilian attems wrote:

severity 390616 wishlist
tags 390616 wontfix
stop


no reason



the reason was given below.

i hardly believe that claim without massive testing,


see my early postings on the ide-dev list archive.

i will compile a vanilla kernel and prove it working fine instantly.



that is _not_ massive testing.
massive testing would be to have an debian-installer rc,
with the specific option turned on. for that it is to late
as the next d-i won't use 2.6.18.

<snipp>

why should he? this option was interesting to a few security people only,but it could be interesting to p2p file-sharerers which are threatend bypolice practice of erasing all discs they find without any court ruling.



no we won't enable a risky option shortly before a release,
that is only intersting for a small fraction of users and
may potentialy harm a _lot_ of stable boxes.

so be patient and get your banana postetch.


ok

FYI:

tom1:/home/schorpp# hdlock

/dev/hdc:
Issuing SECURITY_SET_PASS command, password="xxxxxx", user=master, mode=max

/dev/hdc:
Issuing SECURITY_SET_PASS command, password="xxxxxxxx", user=user, mode=max
tom1:/home/schorpp#
tom1:/home/schorpp# hdparm -I /dev/hdc

/dev/hdc:

ATA device, with non-removable media
       Model Number:       ST3120026A
       Serial Number:      3JT4RYCB
       Firmware Revision:  8.01
Standards:
       Used: ATA/ATAPI-6 T13 1410D revision 2
       Supported: 6 5 4

Commands/features:
       Enabled Supported:
          *    SMART feature set
          *    Security Mode feature set

Security:
       Master password revision code = 65297
               supported
               enabled
       not     locked
       not     frozen
       not     expired: security count
       not     supported: enhanced erase
       Security level maximum

tom1:/home/schorpp# hdunlock

/dev/hdc:
Issuing SECURITY_UNLOCK command, password="xxxxxxxx", user=user

/dev/hdc:
Issuing SECURITY_DISABLE command, password="xxxxxxxx", user=user
tom1:/home/schorpp#

Commands/features:
       Enabled Supported:
          *    SMART feature set
               Security Mode feature set

Security:
       Master password revision code = 65297
               supported
       not     enabled
       not     locked
       not     frozen
       not     expired: security count

y
tom

Reply to:

References:
- Bug#390616: linux-image-2.6.18: Enable ATA-Security for Sid kernels
  - From: schorpp <t.schorpp@gmx.de>
- Bug#390616: linux-image-2.6.18: Enable ATA-Security for Sid kernels
  - From: maximilian attems <maks@sternwelten.at>
- Bug#390616: linux-image-2.6.18: Enable ATA-Security for Sid kernels
  - From: thomas schorpp <t.schorpp@gmx.de>
- Bug#390616: linux-image-2.6.18: Enable ATA-Security for Sid kernels
  - From: maximilian attems <maks@sternwelten.at>

Prev by Date: Bug#391384: linux-image-2.6.18-1-686: Compaq Proliant DL380 fails to boot
Next by Date: Re: RFC: Final version of kernel team's firmware GR proposal, coined to be consensual to all those of good faith involved in the current discussion.
Previous by thread: testing kernels (was Re: Bug#390616: linux-image-2.6.18: Enable ATA-Security for Sid kernels)
Next by thread: whiteheat
Index(es):
- Date
- Thread