[PATCH] Make pinentry-qt read and store passphrases in KDE
3.2's wallet
Martijn Klingens
klingens at kde.org
Sun Nov 30 21:12:04 CET 2003
On Sunday 30 November 2003 20:39, Ingo Klöcker wrote:
> Sorry, but storing the passphrase which protects your OpenPGP key in
> KWallet is (IMO) completely out of question. The passphrase must never
> ever be stored in any form on the hard disk. I'm shocked that someone
> actually proposes this. A tiny bug in KWallet (which I'm sure was never
> seriously audited) and the OpenPGP keys of all KDE users would have to
> be considered compromised.
Well, if the wallet is compromised you have a problem anyway, with a GPG key
in it or not. There's too much sensitive information in there, that's the
whole nature of the wallet.
If you don't trust the wallet don't use it, but if you have KWallet enabled it
should be considered 'secure enough' for your setup.
According to your logic KDE shouldn't ship with KWallet or at least never use
it. While one could argue that the Kopete passwords in there aren't too
important one certainly can't argue the same for the Konqueror passwords that
I store in there.
--
Martijn
More information about the Gpa-dev
mailing list