Re: password managers
On Tue, 15 Jun 2004 18:46, Alberto Gonzalez Iniesta <agi@agi.as> wrote:
> Some of the applications I run use kwallet, that seems similar to what
> Russell Cooker described for OS X.
No. kwallet can be ptraced, this allows a hostile program to get access to
all it's data with ease.
Of course in OS/X I expect that you could fool the password manager somehow to
get access. But at least they stop ptrace.
Also kwallet seems to have no features for restricting access to data.
--
http://www.coker.com.au/selinux/ My NSA Security Enhanced Linux packages
http://www.coker.com.au/bonnie++/ Bonnie++ hard drive benchmark
http://www.coker.com.au/postal/ Postal SMTP/POP benchmark
http://www.coker.com.au/~russell/ My home page
Reply to: