Am Montag, den 05.04.2010, 01:04 +0200 schrieb Andrea Florio: > i can consider it as fixed (at least on suse, it "simply" works)
I will have to test on Fedora. > that is true if password is provided. > > If autologin is enabled, that don't work but i don't consider that a > problem, even because the same thing happen using gdm. This is defined in gnome-keyring and it is not a bug but done for a good reason: If autologin is enabled, there is absolutely no authentication, thus the keyring containing many private passwords is not unlocked. If it would be unlocked automatically, everybody with root access or access to the login manager configuration could steal all passwords of a user. > i appreciate effort to have it working even with autologin, but i really > think that patch: > > http://lxde.git.sourceforge.net/git/gitweb.cgi?p=lxde/lxdm;a=commitdiff;h=2895c16d2129ce7f93a73c52744f7b146cfc2e44 > > to be e BIG security hole. The problem IMHO is not to have the password > into conf file, but the problem is that the password is NOT encrypted. > > this patch should than removed (best choice) or allow to save the > password into conf file into encrypted mode. I agree with Andrea here, the password MUST not be in the config file, at least not unencrypted. I see that Andrea reverted the patch meanwhile. Was this done with prior consultation of dogd or did you (Andrea) do it on your own? > Best Regards > Andrea Regards, Christoph ------------------------------------------------------------------------------ Download Intel® Parallel Studio Eval Try the new software tools for yourself. Speed compiling, find bugs proactively, and fine-tune applications for parallel performance. See why Intel Parallel Studio got high marks during beta. http://p.sf.net/sfu/intel-sw-dev _______________________________________________ Lxde-list mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/lxde-list
