[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: automatic unlocking of keyring

From: Jon Nettleton <jon nettleton gmail com>
To: fedora-desktop-list redhat com
Subject: Re: automatic unlocking of keyring
Date: Fri, 30 Nov 2007 19:51:31 -0500

On Sat, 2007-12-01 at 00:33 +0000, Bastien Nocera wrote:
> On Fri, 2007-11-30 at 16:43 -0500, Matthias Clasen wrote:
> > On Fri, 2007-11-30 at 16:25 -0500, David Zeuthen wrote:
> <snip>
> > >  1. Logging in via fingerprint auth; doesn't work.. but that's expected
> > 
> > That'll work once you engrave your password on your fingertip, I guess.
> 
> Or have the password updated in the fingerprint blob...
> 
That is how it was addressed when I first took over pam_keyring.
Pam_bio_api (relying on unix permissions for secrecy) had an embedded
pass-phrase in the BIR.  This allowed their pam-module to authenticate
on finger-print scan then populate the AUTHTOKEN of the pam stack with
the passphrase and pass it along to other pam modules.  Could be
implemented better, but has the correct idea.

Jon

References:
- Re: automatic unlocking of keyring
  - From: Bastien Nocera

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]