Re: I don't want a keyring password

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: "Alan Cox" <alan@xxxxxxxxxxxxxxxxxxx>, "For users of Fedora" <fedora-list@xxxxxxxxxx>
Subject: Re: I don't want a keyring password
From: "jdow" <jdow@xxxxxxxxxxxxx>
Date: Tue, 20 Mar 2007 01:18:18 -0700
Cc:
References: <cone.1174244742.41964.4001.500@xxxxxxxxxxxxxxxxxxxxxxxx><45FDC3B1.8090001@xxxxxxxxxxxxx><cone.1174260238.408200.12037.500@xxxxxxxxxxxxxxxxxxxxxxxx><026301c769f2$ffea8470$0225a8c0@wednesday> <20070319124243.119418f3@xxxxxxxxxxxxxxxxxxx>
Reply-to: For users of Fedora <fedora-list@xxxxxxxxxx>

From: "Alan Cox" <alan@xxxxxxxxxxxxxxxxxxx>

Of course not. It never did. An encrypted key ring is safe from "root".
An unencrypted key ring is open to root. So if you get root kitted your
passwords are dead.


An encrypted ring is open to root. They might just have to wait until you
use it that is all.


I guess I should have said an encrypted ring is no more open to root than
it is open to any person who has cracked into your account. Root by
definition has done that. And root can't casually read it. Root would
have to execute an exploit to gain access.

{^_^}

Follow-Ups:
- Re: I don't want a keyring password
  - From: James Wilkinson

References:
- I don't want a keyring password
  - From: Sam Varshavchik
- Re: I don't want a keyring password
  - From: Denis Leroy
- Re: I don't want a keyring password
  - From: Sam Varshavchik
- Re: I don't want a keyring password
  - From: jdow
- Re: I don't want a keyring password
  - From: Alan Cox

Prev by Date: Re: problems w/drives and fc6 (still)
Next by Date: Re: I don't want a keyring password
Previous by thread: Re: I don't want a keyring password
Next by thread: Re: I don't want a keyring password
Index(es):
- Date
- Thread

[Index of Archives] [Current Fedora Users] [Fedora Desktop] [Fedora SELinux] [Yosemite News] [Yosemite Photos] [KDE Users] [Fedora Tools] [Fedora Docs]