Bug#570000: gnome-keyring-daemon accesses removeable disks -- why?
Josselin Mouette
joss at debian.org
Mon Feb 15 19:19:23 UTC 2010
Le lundi 15 février 2010 à 13:55 -0500, Ron Murray a écrit :
> I've looked in the documentation, and I can find no reason for
> gnome-keyring-daemon to be looking in removeable drives. It claims to
> store passwords and otherwise act like ssh-agent; trying to access
> other drives in a system would appear to be outside this purpose.
>
> If there's a valid reason for gnome-keyring-daemon to be doing
> this, then it should appear in the documentation. Otherwise I can only
> regard this package as a security risk.
It is possible to store the keyring, and all the sensitive information
it contains, in a removable drive instead of using the system drive.
I agree that the daemon itself lacks documentation, though.
Cheers,
--
.''`. Josselin Mouette
: :' :
`. `' “I recommend you to learn English in hope that you in
`- future understand things” -- Jörg Schilling
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 190 bytes
Desc: Ceci est une partie de message num?riquement sign?e
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnome-maintainers/attachments/20100215/30e84bf8/attachment.pgp>
More information about the pkg-gnome-maintainers
mailing list