On Tue, 2019-07-09 at 19:30 +0200, Fran??ois Patte wrote: > I am curious to know what is the utility of gnome-keyring: I stored a > password for msmtp using secret-tool, and going to > .local/share/keyrings/ I can read this password clearly stored in a > file in this directory..... > > So, there is absolutely no secret!
Well, there's little point in keeping a password secret from its owner. And anyone who can access your files, has already seriously compromised you. And if it were encrypted, they'd have access to something that decrypted it for them. The two files I see in that filepath, on my system, are encoded in some scheme. So they're not *directly* viewable, some effort has to be put into decoding them. While I'm not familiar with gnome-keyring and secret-tool, most of these kind of tools exist to store things for you, so you don't have to remember them all, nor have to write them down, and you can relog into secure things by clicking okay, instead of reciting your credentials. I have no problem with letting my web-browser storing things like a facebook password in its password store. As bug-ridden software goes, web-browsers are right at the top of the list. But I won't let it save a banking logon, though. -- uname -rsvp Linux 3.10.0-957.21.3.el7.x86_64 #1 SMP Tue Jun 18 16:35:19 UTC 2019 x86_64 Boilerplate: All unexpected mail to my mailbox is automatically deleted. I will only get to see the messages that are posted to the mailing list. _______________________________________________ users mailing list -- users@lists.fedoraproject.org To unsubscribe send an email to users-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/users@lists.fedoraproject.org
