Language Selection

English French German Italian Portuguese Spanish

GNOME Keyring

Filed under
Software
Security

For the past week or so, people have been talking about a “security issue” in Seahorse. This sums up my opinion on the matter:

This isn't a security issue, and there is no good way to fix it.

A password managing daemon, such as GNOME Keyring, increases the security of stored passwords for the following reasons:

  • Passwords are stored in a database that uses real encryption, not just an obfuscation scheme
  • A single code base needs to be audited to make sure no vulnerabilities exist in the encryption algorithms that are being used
  • The database is protected by a password that is known only to the user who unlocks it
  • Since the database is encrypted, no other user or bootable CD can recover the stored passwords if the unlock password is not known

So, if GNOME Keyring increases the security of user credentials, why can you see your passwords exposed in plain text when you open Seahorse? Because you've unlocked the keyring using your login password.

Full Post




More in Tux Machines

Bad Saved Games, Fedora Scheduling, and Scribbling

In tonight's Linux news, GamingOnLinux.com poster says "game saves are messing up our drives" - stop it! Phoronix.com is reporting on discussions of changing Fedora release schedule. Jack Germain says Scribbleton creates a personal local wiki to store anything from notes to books and Opera 25 draws near. Read more

Musique for Linux Review – A Minimalistic Player for You and Your Music

Musique is a minimalistic music player for the Linux platform that features a simple and clean interface. It's not like there is a lack of open source music players, so we've decided to see if this one is any good. Read more

CentOS 5.11 Officially Released, Probably the Last One in the Series

As you all know already, CentOS is an Enterprise-class Linux Distribution derived from sources provided by Red Hat. This is the eleventh update for the distribution and probably the last one. It features all the packages from all variants, including Server and Client, and the upstream repositories have been merged into a single one. Red Hat announced less than a month ago the release of their last update for Red Hat Enterprise Linux, 5.11. It stands to reason that CentOS 5.11 will also be the last update in the series. Read more

England's Healthwatch switches to open source CRM

England's Healthwatch organisations are now using CiviCRM, an open source solution for customer relationship management. "Open source affords access to a wide community of developers, which means that the software continues to develop and security updates and bug fixes are regularly rolled out", explains Tim Schofield, the organisation's interim systems manager. Read more