Comment 15 for bug 322827

I just added bug #376225 before finding this. I'll leave it to others to decide whether to mark as a duplicate, since this bug is supposedly about LDAP, Active Directory, or Kerberos also.

However, I think I can contribute to this discussion.
Sebastien Bacher wrote:
> how would you suggest it to know about system password changes and the new password to use?

The mechanism has already existed at one point, see /usr/share/doc/gnome-keyring/README.Debian. It suggests you add the following line to /etc/pam.d/common-password:
password optional pam_gnome_keyring.so

I tried this and it does not work, it must have been broken at some point. To fix this bug, I suggest you fix this feature, and make it the default.

I'd also like to say, however, that I feel marking this bug as "Wishlist" is inappropriate. Two people I know spent months being forced to type their old, long-obsoleted passwords just so NetworkManager would allow them on their wireless network. This is a bug.

Sebastien Bacher wrote:
> not really no, libpam-gnome-keyring try to unlock the gnome-keyring using the password that you typed, if you happen to have the same password for login and gnome-keyring that works but otherwise that doesn't

Then this behavior should be changed, it's as simple as that. You're talking about preserving a severe usability issue, for the sake of a feature that is completely useless to almost anybody. You could consider following Alex Mauer's step-by-step suggestion to keep the option available. Otherwise, just forget about it, and tie the login keyring to the login password. No one will mind and many will be helped.