desktop-packages team mailing list archive

Thread
Date

[Bug 894625] Re: saved passwords accessible to every one

To: desktop-packages@xxxxxxxxxxxxxxxxxxx
From: Marc Deslauriers <marc.deslauriers@xxxxxxxxxxxxx>
Date: Fri, 25 Nov 2011 12:50:39 -0000
Reply-to: Bug 894625 <894625@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Thanks for taking the time to report this bug and helping to make Ubuntu better.  This is not a bug, but rather expected behavior:
https://wiki.ubuntu.com/SecurityTeam/FAQ#gnome-keyring

Please feel free to report any other bugs you may find.

** Visibility changed to: Public

** This bug is no longer flagged as a security vulnerability

** Visibility changed to: Public

** This bug is no longer flagged as a security vulnerability

** Changed in: seahorse (Ubuntu)
       Status: New => Invalid

-- 
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to seahorse in Ubuntu.
https://bugs.launchpad.net/bugs/894625

Title:
  saved passwords accessible to every one

Status in “seahorse” package in Ubuntu:
  Invalid

Bug description:
  in seahorse, the passwords of IMAP and IM accounts are getting
  displayed by clicking on "show password" option under properties.
  These are accessible even from a normal user account. Because of this,
  everyone can view passwords of saved accounts.

  ProblemType: Bug
  DistroRelease: Ubuntu 11.10
  Package: seahorse 3.2.2-0ubuntu0.1
  ProcVersionSignature: Ubuntu 3.0.0-13.22-generic 3.0.6
  Uname: Linux 3.0.0-13-generic i686
  NonfreeKernelModules: wl
  ApportVersion: 1.23-0ubuntu4
  Architecture: i386
  Date: Fri Nov 25 09:33:06 2011
  ExecutablePath: /usr/bin/seahorse
  InstallationMedia: Ubuntu 11.04 "Natty Narwhal" - Release i386 (20110427.1)
  SourcePackage: seahorse
  UpgradeStatus: Upgraded to oneiric on 2011-10-14 (41 days ago)

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/seahorse/+bug/894625/+subscriptions