I had an idea/feature request for Linux itself.
With many debian based distros (Arch has this too but it is a different GUI) you can encrypt your entire computer which will require you to enter a password to decrypt it when booting it up.
On every linux distro I used weather it is debian or arch based, you can setup a specific user to be the user the computer automatically logins to when the system boots up.
The annoying thing about using the auto login feature for a user is that it does not unlock the keyring. If you have apps setup to run in the background on startup, they may require you to unlock your keyring. Sure, you can set the keyring password to be blank but this is not a good idea for security reasons.
This was my idea to solve this. It will require the computer to be setup to be fully encrypted however.
The auto login users keyring password will be stored and be encrypted using the system encrypted password. When the computer is booted up and unlocked, it will decrypt the keyring password and use that to unlock the users keyring when logging into the user.
This way the keyring gets unlocked but the keyring password is stored secure and not in plain text.
Not sure the best place to make this feature request? Debain github repo perhaps?
You must log in or register to comment.
I wouldn’t say this has anything to do with the Linux kernel itself. I would make the request with whatever app handles your auto-login (probably your login manager). Also I don’t see the point of a keyring password if it’s never entered. I think it would be by design that the keyring stays locked when no password or authentication is provided.
