Enhance Linux config security by saving credentials for the user. #264
Comments
4 tasks
jwijenbergh
added a commit
to geteduroam/linux-app
that referenced
this issue
Apr 26, 2023
This prevents the password from being used by other users. I think it's good that this is off by default See https://people.freedesktop.org/~lkundrak/nm-docs/nm-settings.html#secrets-flags and GEANT/CAT#264
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Issue type
Questions about the eduroamCAT or its usage should be sent to the users mailing list.
Defect - Crash/memory corruption.
Defect - Non-compliance with a standards document or incorrect OS API usage.
Defect - Unexpected behaviour (obvious or has been verified by a project member).
[x ] New feature request.
Defect/Feature description
At the moment the users credentials used to configure eduroam via the script are set to "store for all users" which should not be done. Instead the option "store only for this user" to add it to the users keyring should be used (
password-flags=1) . Especially relevant on multi-user devices, but on others to as this option uses the keychain instead of storing it as clear text in etc...The text was updated successfully, but these errors were encountered: