I have implicitly accepted it, as any normal user, but it doesn’t change the fact that its a security hole the size of Greenland 😀. And it works like this on Windows and basically MacOS as well as I stated above. So all players just got okay with that I suppose because everybody does it…
- 1 Post
- 6 Comments
- dieTasse@feddit.orgOPtoLinux@lemmy.ml•Is using a keyring an insecure thing to do?English0·1 month ago
- dieTasse@feddit.orgOPtoLinux@lemmy.ml•Is using a keyring an insecure thing to do?English0·1 month ago
Who defines the untrusted applications though? Thank you for the links! Btw I found out its the same on all major systems, on Windows as well as on MacOS (there they have credentials per app, but its easily spoofable for the same reason why GNOME refuses to even implement this).
- dieTasse@feddit.orgOPtoLinux@lemmy.ml•Is using a keyring an insecure thing to do?English0·1 month ago
Man I can’t believe what rabbit hole I am getting into. It indeed seems crazy, how can this be acceptable. How is it possible that nobody is concerned by this.
- dieTasse@feddit.orgOPtoLinux@lemmy.ml•Is using a keyring an insecure thing to do?English0·1 month ago
That is the default behavior on most mainstream distros. And there is no timeout either, it stays unlocked the whole time you are logged in. In most cases users do not even know they have something like this and what is its purpose (seen a lots of confused people on forums asking about it when they start being prompted for password when they get mismatched from the login one for some reason).
- dieTasse@feddit.orgtoSelfhosted@lemmy.world•What are some OpenMediaVault alternatives?English01·4 months ago
WHAT?
How is this related to the keyring security issues? (Don’t get me wrong, it’s interesting news, and I already saw it in the Privacy sublemmy)