Re: gnome-keyring A couple of questions about Gnome Keyring
- From: Adam Schreiber <adam schreiber gmail com>
- To: Groth Johan <johan groth cell-telecom com>
- Cc: "gnome-keyring-list gnome org" <gnome-keyring-list gnome org>
- Subject: Re: gnome-keyring A couple of questions about Gnome Keyring
- Date: Wed, 18 Nov 2009 20:09:02 -0500
2009/11/18 Groth Johan <johan groth cell-telecom com>:
> Hi all,
> The company I work for is considering to use Gnome Keyring to store
> certificates for VPN access but are a bit concerned that they can be moved
> from one computer to another. So I saw this on the web page:
>
> 'Non-exportable' certificates could be implemented by encrypting them with a
> random passwords, and storing that password within the normal gnome-keyring
> password file. This way they wouldn't be used onanother computer even if
> copied out of that directory.
>
> Has this been implemented and if it has in which version of Gnome Keyring?
Since you didn't reference the web page you found it on, I'm going to
comment sight unseen because Stef's out of touch for a bit.
It probably means that a user could implement non-exportable
certificates by encrypting the certs themselves and storing the
symmetric encryption passphrases in gnome-keyring as normal secrets.
Cheers,
Adam
[
Date Prev][
Date Next] [
Thread Prev][
Thread Next]
[
Thread Index]
[
Date Index]
[
Author Index]
