1

I am familiarizing with Ubuntu 24.04 and Seahorse. I recently connected to a password-protected network drive, and the password is now stored in my "login" keyring, which is encrypted with the password of my local linux user account.

The keyring is currently automatically unlocked whenever I login. Am I correct in assuming that this means that any application can access these secrets without a user-facing prompt for a password? If not, how does Ubuntu/Seahorse ensure that only certain applications access the secrets?

If these secrets are accessible, why would I want to keep the automatic login feature enabled, and why is it enabled by default? It seems like this storage method is as safe/unsafe as a passwords.txt file if I do not need to enter my password for secret retrieval.

Improve this question
1
  • Which DE are you using? This is crucial to determining which design decisions were made, KDE for example has a different keyring implementation than GNOME Commented Apr 28 at 15:33

0

Reset to default

You must log in to answer this question.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.