| Summary | PGP/GPG: sync horde-logon pw and gpg-passphrase |
| Queue | IMP |
| Queue Version | HEAD |
| Type | Enhancement |
| State | Rejected |
| Priority | 1. Low |
| Owners | |
| Requester | sven (at) cryonet (dot) de |
| Created | 11/03/2005 (7207 days ago) |
| Due | |
| Updated | 11/04/2005 (7206 days ago) |
| Assigned | |
| Resolved | 11/04/2005 (7206 days ago) |
| Milestone | |
| Patch | No |
the pgp password.
easier for the end-user. protecting the private key using a passphrase
is absolutely necessary because the key is saved server-side. but why
not allow the user to use his horde/imp-pwd as passphrase and to keep
his passphrase in sync with it? the horde/imp-pwd is not saved as
clear-text in a secure setup so this should not be a security risk
(assuming hash-algorithms etc. are secure). the user just would not
have to type his passphrase for sending/viewing encrypted or signed
messages. if the passphrase is entered the first time it *is already*
stored in the session until the user logs of or tells horde to
"forget" the passphrase. making such a configuration optionally
available would make the usage of pgp more transparent.
State ⇒ Rejected
the pgp password.
State ⇒ New
Priority ⇒ 1. Low
Type ⇒ Enhancement
Summary ⇒ PGP/GPG: sync horde-logon pw and gpg-passphrase
Queue ⇒ IMP
it would also be nice to keep the horde logon-password in sync with
the pgp/gpg-passphrase if changing password via passwd-module.
greetz
sven