Bug#532088: libpam-gnome-keyring: Dont be selfish unlock gnome-keyring for other auth methods.
Josselin Mouette
joss at debian.org
Sun Jun 7 09:21:12 UTC 2009
Le dimanche 07 juin 2009 à 10:58 +0200, Mateusz Kaduk a écrit :
> I have read how gnome-keyring works before. Maybe its wrong design ?
> I think it shouldn't use login password to unlock keyring but custom
> generated key, which could be stored that way so only
> pam-gnome-keyring module can access it. Then if previous module
> succeeded just unlock database with that key.
Where in the world would you store that key?
> That would solve conflict with all authentication modules and the
> future one that are going to be implemented in PAM platform. Also
> gnome-keyring password don't have to be the same as login.
WTF?
> All mentioned authentication modules do the same job and have the same
> problem when used with pam-gnome-keyring. Its not stupid to suggest
> other solution that fixes most of problems with pam-gnome-keyring
> module.
Making gnome-keyring work with some other authentication modules is not
stupid. Making it work with all of them is.
--
.''`. Josselin Mouette
: :' :
`. `' “I recommend you to learn English in hope that you in
`- future understand things” -- Jörg Schilling
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Ceci est une partie de message num?riquement sign?e
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnome-maintainers/attachments/20090607/9bad90d0/attachment.pgp>
More information about the pkg-gnome-maintainers
mailing list