Re: password managers
On Tue, 15 Jun 2004 18:46, Alberto Gonzalez Iniesta <firstname.lastname@example.org> wrote:
> Some of the applications I run use kwallet, that seems similar to what
> Russell Cooker described for OS X.
No. kwallet can be ptraced, this allows a hostile program to get access to
all it's data with ease.
Of course in OS/X I expect that you could fool the password manager somehow to
get access. But at least they stop ptrace.
Also kwallet seems to have no features for restricting access to data.
http://www.coker.com.au/selinux/ My NSA Security Enhanced Linux packages
http://www.coker.com.au/bonnie++/ Bonnie++ hard drive benchmark
http://www.coker.com.au/postal/ Postal SMTP/POP benchmark
http://www.coker.com.au/~russell/ My home page