Ubuntu one should not require a password at every log on if "straight to desktop" is enabled
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| One Hundred Papercuts |
New
|
Undecided
|
Unassigned | ||
| ubuntuone-client (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Bug Description
With Ubuntu 9.10 and Ubuntu One set to connect at start up, if Ubuntu is set to auto log into the desktop, it asks the user for the password to unlock the keyring before it will connect to Ubuntu One. It does this on every boot up. I can understand the security implications, but for many users, especially the home user who wants to auto login straight to their desktop, there should be an option to permanently remember the password so it only needs to be done once.
On my wifes computer, I have set up Ubuntu One and set up backups to the cloud, but on auto login, she sometimes just closes the box that asks for the password and the cloud remains unconnected. As a result, her backups don't work.
Including a check box to have it remember the password so it never asks again, would benefit many home users who are not concerned with securing their machines from someone else sitting at the keyboard. It's not at an office, it's in their home.
| Chris Coulson (chrisccoulson) wrote | #1 |
| Changed in ubuntuone-client (Ubuntu): | |
| status: | New → Invalid |
That's not really a bug (and it's not a bug in the ubuntuone-client anyway). When you log in normally, your login password unlocks the encrypted keyring. If you're using auto-login then the keyring can't be unlocked, as you've not supplied a password to unlock it. That is how gnome-keyring is meant to work (your passwords and secrets are stored in an encrypted file)
You say "there should be an option to permanently remember the password so it only needs to be done once" - but gnome-keyring is exactly where applications passwords are remembered, and you need to unlock it first in order to access any secrets stored in it.
If you want to work around it, you can set an empty keyring password (but that means that anyone who has physical access to your machine will be able to view all of your passwords and secrets for things like Evolution, WPA passphrases etc)
Anyway, this has already been bought up before as bug 137247