[Bug 1003398] [NEW] [regression] kwallet asking for initial password
Harald Sitter
apachelogger at ubuntu.com
Wed May 23 12:41:45 UTC 2012
Public bug reported:
Years ago we had kwallet default to use a passwordless wallet. At some
point around KDE 4 this stopped working. Someone should make it work
again.
Rationale:
* The initial password dialog is confusing for people who are not acquainted with the concept of password wallets
* As KWallet still is not tied to PAM it will often ask for the password right after login (Akonadi triggering it or NetworkManager) which is redundant and annoying
* Primary concern is having a centralized storage that *encrypts* the data, having it password protected is bonus security
Amendment:
While at it, making sure that the wallet is *only* readable by the owner/user would be healthy as otherwise the encryption would make little sense. If it is only readable by the owner only a trusted person (root) or someone with physical access to the user's unlocked session can get hold of the content (mind that due to the 10 minute password timeout and the rate at which kwallet is used nowadays, physical access to the users session would probably also threaten the password security as all they'd need to do is open the walletmanager).
In the long run having a wallet with password would of course be
desirable, though that is an upstream that needs to be addressed
upstream mostly, to allow it not being interruptive.
** Affects: kubuntu-default-settings (Ubuntu)
Importance: Wishlist
Status: Triaged
--
You received this bug notification because you are a member of Kubuntu
Bugs, which is subscribed to kubuntu-default-settings in Ubuntu.
https://bugs.launchpad.net/bugs/1003398
Title:
[regression] kwallet asking for initial password
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/kubuntu-default-settings/+bug/1003398/+subscriptions
More information about the kubuntu-bugs
mailing list