Review Request 110328: Add config option to silently create initial password-less wallet

Sebastian K├╝gler sebas at kde.org
Mon May 6 22:41:19 BST 2013


On Monday, May 06, 2013 19:11:19 Eike Hein wrote:
> > How does KWallet encrypt if no password has been set?
> 
> About as badly as one would expect. It does still generate a hash which
> it uses for encryption. What kwalletd does is try whether it can open a
> wallet with an empty password first (thus generating the same hash) and
> ask for one to be entered if it can't.
> 
> Obviously running with an empty password isn't really for the security-
> minded, but the distributions in question feel like this is the better
> default
> for their user experience. At least the user can still set a password later.

This is also desired behaviour for Plasma Active, one reason being the UI 
being entirely unsuitable for a touch device.
-- 
sebas

http://www.kde.org | http://vizZzion.org | GPG Key ID: 9119 0EF9




More information about the kde-core-devel mailing list