|
|
07-22-2008, 01:57 PM
|
|
|
What is the point of the NM keyring?
Ken Murray escribió:
On Mon, Jul 21, 2008 at 8:21 AM, Kevin Kofler <kevin.kofler@chello.at> wrote:
That's because of gnome-keyring's designer's stupid arrogance not to allow
passwordless keyrings (unlike KWallet which empowers the user). Instead, we're
stuck with some PAM hackery which allows reusing the login password, which
obviously won't work if you use autologin, and which doesn't appear to be
working properly with KDM even if you don't. This is part of why I'm really
hoping for a KDE alternative to nm-applet which supports KWallet to come out
soon.
knetworkmanager?
knetworkmanager is a link to nm-applet since F8, due to low development
in the knetworkmanager team, AFAIK.
--
fedora-list mailing list
fedora-list@redhat.com
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
|
|
07-22-2008, 06:18 PM
|
|
|
What is the point of the NM keyring?
Martin Marques wrote:
> Ken Murray escribió:
>> On Mon, Jul 21, 2008 at 8:21 AM, Kevin Kofler <kevin.kofler@chello.at>
>> wrote:
>>
>>> That's because of gnome-keyring's designer's stupid arrogance not to
>>> allow passwordless keyrings (unlike KWallet which empowers the user).
>>> Instead, we're stuck with some PAM hackery which allows reusing the
>>> login password, which obviously won't work if you use autologin, and
>>> which doesn't appear to be working properly with KDM even if you don't.
>>> This is part of why I'm really hoping for a KDE alternative to nm-applet
>>> which supports KWallet to come out soon.
>>
>> knetworkmanager?
>
> knetworkmanager is a link to nm-applet since F8, due to low development
> in the knetworkmanager team, AFAIK.
It's under development again, may make a reappearance in fedora soonish (but
currently has a less-than-ideal UI and lacks kwallet integration).
-- Rex
--
fedora-list mailing list
fedora-list@redhat.com
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
|
|
08-16-2008, 03:25 PM
|
|
|
What is the point of the NM keyring?
See Thread at: http://www.techienuggets.com/Detail?tx=45040 Posted on behalf of a User
Sigh, getting rather tired of all these IT and Security GURUs telling us how we need to configure our systems all the time. Look, I have a machine that is UNATTENDED and uses a WIRELESS connection. The gnome keyring PREVENTS me from using the machine in this role. This machine must auto login and it must connect to the wireless net to work. The nearest user is about 20 miles away so there is NO login password and NO ONE to enter one. So, can't we just turn the damn gnome keyring OFF?? Sorry if I offend, but I am really fed up with this problem!
In Response To:
Some kind soul pointed out that one could get rid
of the demand by NM for a keyring password
by deleting .gnome2/keyrings/default.keyring
and then giving an empty password when requested.
But that made me wonder what possible point
the keyring password could have?
Is it intended as some kind of security device?
As far as I can see, you have to be logged in to run NM,
and if you are logged in you can delete this file.
I might say the same about the KDE wallet system.
How does this make one's part of the system more secure,
since it is open to you to change the wallet password,
or even to make it empty?
I live in an old house with hundreds of locks
on cupboard doors, etc, to which almost all the keys
have long ago disappeared.
It seems to me Fedora is getting a bit like that.
I wish I felt there was someone whose job it was
to make Fedora/Linux simpler to use
rather than just adding more features
with keys and passwords to fit.
--
fedora-list mailing list
fedora-noway@spam.com
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
--
fedora-list mailing list
fedora-list@redhat.com
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
|
|
08-16-2008, 04:14 PM
|
|
|
What is the point of the NM keyring?
samk@twinix.com wrote:
> See Thread at: http://www.techienuggets.com/Detail?tx=45040
> Posted on behalf of a User
>
> Sigh, getting rather tired of all these IT and Security GURUs
> telling us how we need to configure our systems all the time. Look,
> I have a machine that is UNATTENDED and uses a WIRELESS connection.
> The gnome keyring PREVENTS me from using the machine in this role.
> This machine must auto login and it must connect to the wireless net
> to work. The nearest user is about 20 miles away so there is NO
> login password and NO ONE to enter one. So, can't we just turn the
> damn gnome keyring OFF?? Sorry if I offend, but I am really fed up
> with this problem!
>
You may be better off turning off NetworkManager, or marking the
interface as not manager by NetworkManager. Then set the network
service to start for run level 5, and configure the wireless
interface in /etc/sysconfig/network-scripts.ifcfg-<interface name>.
This way, the wireless connection will come up at boot time, instead
of when a user logs in. I can see the advantage of NetworkManager
for laptops, where you may be connecting to different networks, or
may not want the network connection until someone log in.
(Especially if you are using dialup.) But is its current state, it
is not that useful for desktops and not useful at all for servers. I
use it on my laptop, but not on my desktop...
Mikkel
--
Do not meddle in the affairs of dragons,
for thou art crunchy and taste good with Ketchup!
--
fedora-list mailing list
fedora-list@redhat.com
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
|
|
08-16-2008, 04:38 PM
|
|
|
What is the point of the NM keyring?
> Some kind soul pointed out that one could get rid
> of the demand by NM for a keyring password
> by deleting .gnome2/keyrings/default.keyring
> and then giving an empty password when requested.
>
> But that made me wonder what possible point
> the keyring password could have?
> Is it intended as some kind of security device?
More of a helper.
> As far as I can see, you have to be logged in to run NM,
> and if you are logged in you can delete this file.
Correct.
> I might say the same about the KDE wallet system.
> How does this make one's part of the system more secure,
> since it is open to you to change the wallet password,
> or even to make it empty?
The point is you can't get the keys back. So if your machine gets stolen
or borrowed all the passwords on the keyring are safe. I can blank the
ring and set new ones but I can't get the old ones. At the point I've
stolen your machine I can blank the disk or throw the computer into the
sea so being able to blank the ring isn't an issue, stopping people
getting the keys back is the point.
> I live in an old house with hundreds of locks
> on cupboard doors, etc, to which almost all the keys
> have long ago disappeared.
> It seems to me Fedora is getting a bit like that.
The wallet is an optional key cabinet. You can if you want just stick all
the passwords and keys in /etc/wpa/wpa_supplicant.conf (I think thats the
file) if you want
--
fedora-list mailing list
fedora-list@redhat.com
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
|
|
08-17-2008, 12:33 AM
|
|
|
What is the point of the NM keyring?
On Sat, 2008-08-16 at 09:25 -0500, samk@twinix.com wrote:
> See Thread at: http://www.techienuggets.com/Detail?tx=45040 Posted on behalf of a User
>
> Sigh, getting rather tired of all these IT and Security GURUs telling us how we need to configure our systems all the time. Look, I have a machine that is UNATTENDED and uses a WIRELESS connection. The gnome keyring PREVENTS me from using the machine in this role. This machine must auto login and it must connect to the wireless net to work. The nearest user is about 20 miles away so there is NO login password and NO ONE to enter one. So, can't we just turn the damn gnome keyring OFF?? Sorry if I offend, but I am really fed up with this problem!
>
> In Response To:
>
>
> Some kind soul pointed out that one could get rid
> of the demand by NM for a keyring password
> by deleting .gnome2/keyrings/default.keyring
> and then giving an empty password when requested.
We are talking about F9. F8 had such a file but F9 does not, at least
on my machine.
>
> But that made me wonder what possible point
> the keyring password could have?
> Is it intended as some kind of security device?
> As far as I can see, you have to be logged in to run NM,
> and if you are logged in you can delete this file.
>
> I might say the same about the KDE wallet system.
> How does this make one's part of the system more secure,
> since it is open to you to change the wallet password,
> or even to make it empty?
>
> I live in an old house with hundreds of locks
> on cupboard doors, etc, to which almost all the keys
> have long ago disappeared.
> It seems to me Fedora is getting a bit like that.
>
> I wish I felt there was someone whose job it was
> to make Fedora/Linux simpler to use
> rather than just adding more features
> with keys and passwords to fit.
>
>
>
> --
> fedora-list mailing list
> fedora-noway@spam.com
> To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
>
--
================================================== =====================
QOTD: "Wouldn't it be wonderful if real life supported control-Z?"
================================================== =====================
Aaron Konstam telephone: (210) 656-0355 e-mail: akonstam@sbcglobal.net
--
fedora-list mailing list
fedora-list@redhat.com
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
|
|
08-17-2008, 03:07 AM
|
|
|
What is the point of the NM keyring?
samk@twinix.com writes:
> Sigh, getting rather tired of all these IT and Security GURUs telling us how we need to configure our systems all the time. Look, I have a machine that is UNATTENDED and uses a WIRELESS connection. The gnome keyring PREVENTS me from using the machine in this role. This machine must auto login and it must connect to the wireless net to work. The nearest user is about 20 miles away so there is NO login password and NO ONE to enter one. So, can't we just turn the damn gnome keyring OFF?? Sorry if I offend, but I am really fed up with this problem!
[ Hitting carriage return once every 70 chars or so would have made this
much easier to read. -wsr]
There are two ways to get the wireless up and running. One is the
new-fangled Network(Mis)Manager and the other is the older
wpa_supplicant. You might try turning off NetworkManager, turning on
networking and wpa_supplicant and adding your wifi sid and password to
wpa_supplicant.config .
chkconfig NetworkManager off
chkconfig networking on
chkconfig wpa_supplicant on
Run system-config-network and fill in the addresses or select the dhcp
settings.
Add your SID and passwor to /etc/wpa_supplicant/wpa_supplicant.conf.
Mine (minus real sid and password) is below.
ctrl_interface=/var/run/wpa_supplicant
ctrl_interface_group=10
update_config=1
network={
ssid="NySID"
psk=MySekretKey
proto=RSN
key_mgmt=WPA-PSK # assuming you use WPA2
pairwise=CCMP
priority=10
}
Then reboot and watch the services start being mindful or the red FAIL
messages.
wpa_gui is a nice tool once wpa_supplicant is running to check signal
strengths and which SIDs are within reach. You can also forcefully
disconnect from one net and select another if you are within a few
AP's and need to find the most reliable one to configure in.
-wolfgang
--
Wolfgang S. Rupprecht http://www.full-steam.org/ (ipv6-only)
You may need to config 6to4 to see the above pages.
--
fedora-list mailing list
fedora-list@redhat.com
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
|
|
|
All times are GMT. The time now is 12:19 PM.
VBulletin, Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright ©2007 - 2008, www.linux-archive.org
|
