Log in

No account? Create an account

Previous Entry | Next Entry

iJournal & Keychain

Does iJournal store your UN/PW in keychain? If not that would be cool... I wish keychain stored passwords for everything; especially my SSH keys, but I digress.


( 6 comments — Leave a comment )
Sep. 12th, 2002 07:40 am (UTC)
Can't you just exchange ssh keys on the two systems, and put them in the .ssh directory? I don't see why you'd need a keychain for that.
Sep. 12th, 2002 09:02 am (UTC)
Yes I can, but the advantage would be that if the SSH keys were stored in keychain, instead of in my ~/.ssh directory, I could use keychains ability to lock all of my passwords at once. One password to open keychain and it would unlock everything else. Then just set some good security on your actual keychain.
Sep. 12th, 2002 10:55 am (UTC)
If ssh could store keys in the keychain, you could use it to emulate the ssh-agent type functionality, complete with forgetting things when the computer goes to sleep.

Might make more sense to store the ssh keys in the .ssh directory as usual and just have the passphrases for those keys stored in the keychain.
Sep. 12th, 2002 11:06 am (UTC)
That's exactly what I meant, though apparently not what I said :) But yes, my dream is to have passwords for everything stored in keychain, and then just have one uber secure password for keychain. Good practices that lock keychain after 10 minutes idle, or system goes to sleep (like I have now). I use a hotpoint for my screensaver in the upper right corner which screensaver locks the machine when I walk away.
Sep. 12th, 2002 09:18 am (UTC)
Right now it just stores the MD5 version of your password in your user defaults (a plist file in your Preferences directory). The keychain is a good idea, though; I've been working on having multiple usernames work in the login combobox, which each saving its password; I'll look into the keychain and if it doesn't seem like a much more difficult way to do things from a coding standpoint I'll use it.
Sep. 12th, 2002 01:56 pm (UTC)
The md5 is unfortunately enough information to post and stuff, so it's almost (but not quite, since you can't change the password and such with the hash) as bad as a plaintext. It's too bad the LJ guys didn't step outside stateless HTTP for a minute and work out some sort of challenge/response mechanism for establishing a session.
( 6 comments — Leave a comment )


iJournal: Official LiveJournal Client for Mac OS X
iJournal Home

Latest Month

June 2011
Powered by LiveJournal.com
Designed by Lilia Ahner