Ubuntu
network-manager-applet package

In nm-applet's "Edit Connections", WPA Enterprise has an option "Ask for this password every time" but it is not respected

Bug #686794 reported by oriolpont
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
network-manager-applet (Ubuntu)
New
Undecided
Unassigned

Bug Description

By default, all passwords used in nm-applet are cached by GNOME keyring. From Ubuntu 10.10 version of nm-applet, all wireless connections that are "Dynamic WEP" or "WPA&WPA2 Enterprise" have an option called "Ask for this password every time". Nevertheless, these network passwords are cached and they are never asked again, regardless of whether the option is set or not.

If this option worked, it would be very useful for laptops and portable devices that do not contain important information, since the user could use no password or a weak password for the keyring, and at the same time she could connect to the enterprise network without risk of exposing her "important" credentials of the enterprise account.

ProblemType: Bug
DistroRelease: Ubuntu 10.10
Package: network-manager-gnome 0.8.1+git.20100809t190028.290dc70-0ubuntu3
ProcVersionSignature: Ubuntu 2.6.35-23.41-generic 2.6.35.7
Uname: Linux 2.6.35-23-generic i686
NonfreeKernelModules: wl
Architecture: i386
CRDA: Error: [Errno 2] No such file or directory
Date: Tue Dec 7 23:56:38 2010
IfupdownConfig:
 auto lo
 iface lo inet loopback
InstallationMedia: Ubuntu-Netbook 10.10 "Maverick Meerkat" - Release i386 (20101007)
IpRoute:
 192.168.0.0/24 dev eth1 proto kernel scope link src 192.168.0.11
 default via 192.168.0.1 dev eth1
Keyfiles: Error: [Errno 2] No such file or directory
ProcEnviron:
 LANG=en_US.utf8
 SHELL=/bin/bash
SourcePackage: network-manager-applet

Revision history for this message
oriolpont (oriolpont) wrote :
Revision history for this message
hce (hce) wrote :

Ubuntu 10.04.1 LTS
network-manager-gnome 0.8-0ubuntu3

I see no "Ask for this password every time" option: nm-applet forcedly remembers wpa-enterprise network password, there is no apparent way to configure it not to store a password.

For the same reasons as the parent, i would like to have this option (we use domain passwords for wireless access).

As a policy, i suggest that password caching is disabled by default, and user has to select a "remember this password" checkbox to enable it: user should be made aware that his password is being stored.

Revision history for this message
oriolpont (oriolpont) wrote :

There is a dirty workaround: delete the default keyring and disable /usr/bin/gnome-keyring-daemon. This way you disable all keyring capabilities but your network password is never stored and it is asked everytime.

Let me add also that using the "Available to all users" option (which makes the connection to be managed by NetworkManager /etc/NetworkManager/system-connections/ instead of gnome) does not work either. In this case, the "Ask for this password every time" option means that the password is never stored or asked and connection is never established.

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.