 |
 |
Keychain Secure Enough?
|
|
|
|
|
Registered User
Join Date: Jun 2006
Status:
Offline
|
|
I use keychain a lot, and it let's you lock and double lock all you keychains and what not and that's all good, but I realized as hard as it might be for someone to get into your keychains, anyone on your computer can delete any of these keys without having to enter any administrator passwords! What's up with that?
|
|
|
| |
|
|
|
|
|
|
|
Clinically Insane
Join Date: Oct 2000
Location: Los Angeles
Status:
Offline
|
|
Hey, that is pretty damn stupid and a huge security hole. You usually have to authenticate to wipe your nose, but there's no authentication in this case, and locking has no affect. Pretty amazing. Is it possible that lzpinoza is the first to have recognized this vulnerability?
|
"The natural progress of things is for liberty to yield and government to gain ground." TJ
|
| |
|
|
|
|
|
|
|
Clinically Insane
Join Date: Oct 2000
Location: Los Angeles
Status:
Offline
|
|
No one else cares about this?
|
"The natural progress of things is for liberty to yield and government to gain ground." TJ
|
| |
|
|
|
|
|
|
|
Banned
Join Date: Jun 2003
Status:
Offline
|
|
Someone with access to you computer could delete your Home folder...smash your computer...steal your HD or your entire computer...
...and you're worried about them deleting your keys?
Seriously...the Keychain wasn't meant to stop someone with malicious intents from accessing to your computer data. Keychain is meant to group your keys together and easily manage them...with a simple identity check.
If you're paranoid, don't let anyone near your computer or at least lock the screen when you're away.
|
|
|
| |
|
|
|
|
|
|
|
Addicted to MacNN
Join Date: Aug 2004
Location: FFM
Status:
Offline
|
|
Not anyone can do that. Only you can access your keychain.
|
|
|
| |
|
|
|
|
|
|
|
Clinically Insane
Join Date: Oct 2000
Location: Los Angeles
Status:
Offline
|
|
When a file is locked, you cannot empty it from the trash. Yet, when a keychain is locked, there's no protection. I realize they're different types of locks, but if you're going to call it a lock it should prevent deletion.
|
"The natural progress of things is for liberty to yield and government to gain ground." TJ
|
| |
|
|
|
|
|
|
|
Banned
Join Date: Jun 2003
Status:
Offline
|
|
Originally Posted by Big Mac
When a file is locked, you cannot empty it from the trash. Yet, when a keychain is locked, there's no protection. I realize they're different types of locks, but if you're going to call it a lock it should prevent deletion.
I do agree it's stupid that one can simply trash the keys that are considered locked by Keychain...but it's really not a huge issue.
3 steps:
1 - Backup your keys
2 - Lock your screen when you're away
3 - There is no step 3
|
|
|
| |
|
|
|
|
|
|
|
Forum Regular
Join Date: Mar 2003
Location: Los Angeles, CA
Status:
Offline
|
|
Not being on my Mac right now, I am not sure..but where is the keychain located? I would assume in your user folder? If so, use FileVault.
But like others have essentially said, if someone has physical access, they have total access. That's why servers are typically locked away in server rooms.
|
|
Too many Apple/Mac products to even bother listing!
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
 
|
|
|
Forum Rules
|
|
|
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
|
HTML code is Off
|
|
|
|
|
|
|
|
|
|
|
|
|
Top
