Bug 443561 – Seahorse should have 'remember for X minutes of inactivity'

After an evaluation, GNOME has moved from Bugzilla to GitLab. Learn more about GitLab.
No new issues can be reported in GNOME Bugzilla anymore.
To report an issue in a GNOME project, go to GNOME GitLab.
Do not go to GNOME Gitlab for: Bluefish, Doxygen, GnuCash, GStreamer, java-gnome, LDTP, NetworkManager, Tomboy.

Bug 443561 - Seahorse should have 'remember for X minutes of inactivity'


Summary:	Seahorse should have 'remember for X minutes of inactivity'


Status:	RESOLVED NOTABUG

Product:	seahorse-plugins
Classification:	Applications
Component:	Agent
Version:	unspecified
Hardware:	Other All

Importance:	Normal enhancement
Target Milestone:	---
Assigned To:	seahorse-plugins-maint
QA Contact:	seahorse-plugins-maint

URL:
Whiteboard:

Depends on:	384781
Blocks:

Reported:	2007-06-03 14:19 UTC by Rory McCann
Modified:	2009-02-01 12:33 UTC

See Also:
GNOME target:	---
GNOME version:	Unversioned Enhancement

Description Rory McCann 2007-06-03 14:19:55 UTC

Seahorse should have an additional option for remembering passphrases for X minutes of inactivity. The Enigmail extension for Mozilla Thunderbird has this option.

I.e. every time a passphrase is used, the timer is reset. So if you had it set to remember for 10 minutes of inactivilty and access the passphrase at 10:00am and then at 10:07am, you could still access it at 10:11am.

Comment 1 Adam Schreiber 2007-06-03 14:30:09 UTC

I'm not sure that this is good because if you were to walk away from your computer and forget to lock it someone could keep using your passphrase indefinitely as long as they used it once every X minutes.

Comment 2 Rory McCann 2007-06-03 16:26:54 UTC

I don't think that's much of a security problem. Firstly someone has physical access to your machine, which usually means game over for security. Secondly as far as I can see in the current version of seahorse, someone can change the passphrase settings so that key *don't* expire. so even now if you expire keys after 5 minutes, someone can effectily access them forever. Thirdly this should be an additional option, so you don't have to use it.

Comment 3 Adam Schreiber 2007-06-03 17:34:12 UTC

Looking at the code, I don't believe that changing the expiration time extends the cache until the key is re-cached.  Stef please correct me if I'm wrong.  On the other hand perhaps the cache should be immediately cleared like when no caching is set.  Although this exposes bug 443561 in that the agent doesn't respond to gconf keys updating.  Also if seahorse-agent is properly tied into your session initialization you can't run it with --no-daemonize as a work around.  I'll make a note of it in that bug.

Comment 4 Adam Schreiber 2007-06-03 17:35:01 UTC

(In reply to comment #3)
>  bug 443561 

Make that bug 384781.

Comment 5 Stef Walter 2007-08-21 03:22:54 UTC

Yeah Adam, you're right. Or at least that's how I wrote the code, so I hope you're right :) And I think every use of the password renews the password, just like Rory is requesting.

Comment 6 Adam Schreiber 2009-02-01 12:33:35 UTC

Closing as this seems to be the current behavior.  Rory if you've observed this isn't how things work, please reopen the bug with some timing data we can use to replicate.