Bug#570000: gnome-keyring-daemon accesses removeable disks -- why?

Josselin Mouette joss at debian.org
Mon Feb 15 19:19:23 UTC 2010


Le lundi 15 février 2010 à 13:55 -0500, Ron Murray a écrit : 
> I've looked in the documentation, and I can find no reason for
> gnome-keyring-daemon to be looking in removeable drives. It claims to
> store passwords and otherwise act like ssh-agent; trying to access
> other drives in a system would appear to be outside this purpose.
> 
> If there's a valid reason for gnome-keyring-daemon to be doing
> this, then it should appear in the documentation. Otherwise I can only
> regard this package as a security risk.

It is possible to store the keyring, and all the sensitive information
it contains, in a removable drive instead of using the system drive.

I agree that the daemon itself lacks documentation, though.

Cheers,
-- 
 .''`.      Josselin Mouette
: :' :
`. `'   “I recommend you to learn English in hope that you in
  `-     future understand things”  -- Jörg Schilling
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 190 bytes
Desc: Ceci est une partie de message num?riquement sign?e
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnome-maintainers/attachments/20100215/30e84bf8/attachment.pgp>


More information about the pkg-gnome-maintainers mailing list