Thinkfinger doesn't unlock keyring
Bug #276384 reported by
Ciso
This bug affects 22 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
GNOME Keyring |
Invalid
|
Undecided
|
Unassigned | ||
gnome-keyring-manager |
Invalid
|
Medium
|
Unassigned | ||
thinkfinger (Ubuntu) |
Invalid
|
Undecided
|
Unassigned |
Bug Description
After a good configuration with this HowTo:
http://
My fingerprint reader works to login, but if I login with my fingerprint, the keyring manager asks me to unlock the keyring to connect to my wifi network.
Everything's okay if I login with my text password.
Ubuntu Hardy on Dell XPS M1330
description: | updated |
Changed in gnome-keyring-manager: | |
status: | New → Invalid |
Changed in gnome-keyring: | |
status: | New → Invalid |
Changed in gnome-keyring: | |
status: | Invalid → Confirmed |
Changed in gnome-keyring-manager: | |
status: | Invalid → Confirmed |
Changed in gnome-keyring: | |
status: | Confirmed → Invalid |
Changed in gnome-keyring-manager: | |
status: | Triaged → Invalid |
To post a comment you must log in.
For reasons unknown to me, Network manager stores your wireless passwords in an encrypted keyring. Your password is the decrypt token. I assume you've enabled pam_keyring in common_auth, which recieves the password you type at GDM and starts the keyring manager with enough timeout to let nm-applet retrieve passwords from your keyring.
I'm marking this confirmed, to keep it a visible and known bug.
The fixes I can imagine are to either:
* place NM wireless keys out of the keyring by default (weak wireless security)
* store the keyring token within the fingerprint reader itself (good luck)
* store the keyring token on disk (bad security!)
Given the nature of the request and the very weak security of fingerprints, I think something closer to the first option is the desired solution here. I understand that Network Manager in Intrepid (http:// www.ubuntu. com/testing/ intrepid/ alpha5# Network% 20Manager% 200.7) allows system wide settings.
Does this sound like an acceptable fix?