[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: gnome keyring always needs to be unlocked

From: "Jon Nettleton" <jon nettleton gmail com>
To: "Development discussions related to Fedora" <fedora-devel-list redhat com>
Subject: Re: gnome keyring always needs to be unlocked
Date: Thu, 18 Oct 2007 07:36:15 -0400

On 10/18/07, Kevin Kofler <kevin kofler chello at> wrote:
> IMHO gnome-keyring should simply allow passwordless keyrings like KWallet does,
> that would solve this problem in a much simpler way for most use cases, and
> standard *nix permissions will keep the data just as secure as with pam_keyring
> automatically unlocking the keyring for the user owning it anyway.
>

That is absolutely 100% not true.  If someone steals your laptop and
you have a passwordless keyring like in KWallet, your passwords are
pretty much stolen.  Boot off a bootable cd mount the filesystem,
done.

With pam_gnome_keyring those passwords are still encrypted on disk and
without the key, the thief gets nothing.

Jon

Follow-Ups:
- Re: gnome keyring always needs to be unlocked
  - From: Kevin Kofler

References:
- gnome keyring always needs to be unlocked
  - From: Louis E Garcia II
- Re: gnome keyring always needs to be unlocked
  - From: Kevin Kofler

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]