I’ve written an article about KAuth, the new authentication framework in KDE SC 4.4. Earlier today, Linux-Comminity has published it. Go and read it (if you understand German) :)
|
|
|
|
|
|
|
|
|
|
|
|
|
|||||||
|
KAuth article publishedI’ve written an article about KAuth, the new authentication framework in KDE SC 4.4. Earlier today, Linux-Comminity has published it. Go and read it (if you understand German) :) 8 Responses to “KAuth article published” |
||||||
|
|
|||||||
Shame I don’t! :D
Is this any useful for you? :)
I just saw the images (i don’t read german :) ) One thing i hope it’s been fixed in the 4.4 version is that after a login i’ve always to put also the kwallet password to open it….. it would be better to have it open (unless you go into the wallet to show the passwords, in that case it would require it)
KAuth and KWallet are entirely different things, and independant from each other. KWallet is used for caching passwords (for example login information for websites, the password to get on your wireless network, etc.),
KAuth is used for secure authentication for system tasks, such as setting the system clock (i.e. things you often need root privileges for).
If you want to get rid of the password dialog, find out what’s requesting your password (knetworkmanager, maybe?) and make it use a wallet that has an empty password. You can use different wallets throughout KDE, so you probably don’t have to expose all saved password that way. I agree it’s something we can improve, though not sure how to do it in a safe way.
I use an external password manager (keepassx) as kwallet has not so many features for a password manager. I use kwallet just for kde apps which require a password, so all my email accounts managed by kmail, amarok because i use last.fm credentials, kopete with my accounts, choqok with my twitter one and so on….. (i think plasma too for rtm and some other plasmoid)… oh..and also some private rss feeds on akregator… you see that kwallet it’s kinda important and has (sometimes) important data to manage (eg. company emails), in that case having a wallet with an empty password it’d be way better than have to write it every login, at least in this case passwords cannot be saw by anyone… with an empty password they would… :)
Security and convenience are sometimes mutually exclusive, with kwallet, you can split those groups though.
And yet it would be nice if kwallet could (re)use the kdm authentication so the kwallet will be open when I log in. I don’t really see how this is possible with the current infrastructure but it would be a nice thing to have ™
@ahox: well, a wallet with an empty password does pretty much exactly that, no?