On Thu, 2016-01-28 at 18:43 +0000, Christopher wrote: > I can't be the only one interested in finding out how to secure these > things in Fedora.
Any application running as your user can read anything from your keyring (provided it is unlocked). This is not problematic because we don't have any application sandboxing yet, so apps can read all your personal files and do whatever they want with them. They're trusted by definition. Who cares if they can get your passwords too? Ideally we would improve this. P.S. It uses secure memory to prevent your private keys from being paged to disk, but it doesn't work in Fedora. You'll see a warning about that in your journal. -- devel mailing list devel@lists.fedoraproject.org http://lists.fedoraproject.org/admin/lists/devel@lists.fedoraproject.org
