In nm-applet's "Edit Connections", WPA Enterprise has an option "Ask for this password every time" but it is not respected
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
network-manager-applet (Ubuntu) |
New
|
Undecided
|
Unassigned |
Bug Description
By default, all passwords used in nm-applet are cached by GNOME keyring. From Ubuntu 10.10 version of nm-applet, all wireless connections that are "Dynamic WEP" or "WPA&WPA2 Enterprise" have an option called "Ask for this password every time". Nevertheless, these network passwords are cached and they are never asked again, regardless of whether the option is set or not.
If this option worked, it would be very useful for laptops and portable devices that do not contain important information, since the user could use no password or a weak password for the keyring, and at the same time she could connect to the enterprise network without risk of exposing her "important" credentials of the enterprise account.
ProblemType: Bug
DistroRelease: Ubuntu 10.10
Package: network-
ProcVersionSign
Uname: Linux 2.6.35-23-generic i686
NonfreeKernelMo
Architecture: i386
CRDA: Error: [Errno 2] No such file or directory
Date: Tue Dec 7 23:56:38 2010
IfupdownConfig:
auto lo
iface lo inet loopback
InstallationMedia: Ubuntu-Netbook 10.10 "Maverick Meerkat" - Release i386 (20101007)
IpRoute:
192.168.0.0/24 dev eth1 proto kernel scope link src 192.168.0.11
default via 192.168.0.1 dev eth1
Keyfiles: Error: [Errno 2] No such file or directory
ProcEnviron:
LANG=en_US.utf8
SHELL=/bin/bash
SourcePackage: network-
Ubuntu 10.04.1 LTS manager- gnome 0.8-0ubuntu3
network-
I see no "Ask for this password every time" option: nm-applet forcedly remembers wpa-enterprise network password, there is no apparent way to configure it not to store a password.
For the same reasons as the parent, i would like to have this option (we use domain passwords for wireless access).
As a policy, i suggest that password caching is disabled by default, and user has to select a "remember this password" checkbox to enable it: user should be made aware that his password is being stored.