Am Montag, den 02.05.2016, 09:29 +0200 schrieb Luca Beltrame:> In data lunedì 2 maggio 2016 08:52:19 CEST, Mariusz Wojcik ha
scritto:
KWallet is insecure [1] and gets annoying when your default access to internet is over wifi because it requires you to type the password
You can work-around this issue if you set the connection as "all users can connect" in plasma-nm. In that case the credentials will be handled by NetworkManager (that might be another issue for the overly paranoid).
Maybe we shouldn't enforce paranoia because it seems just unsafe to give KWallet no password. In the case of KMail I would really like to have KWallet to encrypt passwords. Anyway, people, who are paranoid, could give KWallet the password handling for wifi.
issue. Unfortunately this package is not available in the standard repository under Tumbleweed [2]. Why isn't it? I definitely think it
openSUSE contributor TheBlackCat has proposed a request for a new package half a month ago. Unfortunately neither me nor the rest of the team had time to review it until recently (this weekend).
Maybe that's the solution for more paranoid people. Well, I don't care because I just like to have my wifi password saved anywhere.
One hurdle that I'm not sure how to handle is setting PAM. In order to work correctly, the method needs to be added to all display managers that make request of it, or alternatively, be restricted only to SDDM.
Well, idk but maybe you could look how Gnome solved it with gnome -keyring.
Either option has drawbacks.
P.S.: The insecure bits for kwallet have been changed in more recent times. Personally I use it with a GPG smartcard, which is probably the safest way (but not the most convenient).
Yeah, the GPG backend seems secure in countrary to the default backend. -- To unsubscribe, e-mail: opensuse-kde+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-kde+owner@opensuse.org