Bug 301118

Summary: store passwords in kwallet / secret storage
Product: [Applications] konversation Reporter: Christian (Fuchs) <kde>
Component: generalAssignee: Konversation Developers <konversation-devel>
Status: RESOLVED DUPLICATE    
Severity: wishlist CC: hein, jmillan
Priority: NOR    
Version: unspecified   
Target Milestone: ---   
Platform: Gentoo Packages   
OS: Linux   
Latest Commit: Version Fixed In:
Sentry Crash Report:

Description Christian (Fuchs) 2012-06-03 19:31:15 UTC
Currently server passwords are stored in clear text in konversations configuration file.
They can be used to take over accounts and, depending on the network, read out private information such as e-mail addresses. 

Offering to store them in a secret storage might reduce the risk there

Reproducible: Always

Steps to Reproduce:
1. Store a server password
2. grep your konversationrc

Actual Results:  
Password is in there, in clear text

Expected Results:  
Password can be (optionally?) stored in a secret storage such as kwallet
Comment 1 José Millán Soto 2012-06-03 19:53:09 UTC
This bug is a duplicate of https://bugs.kde.org/show_bug.cgi?id=94311 , a proposed patch is in https://git.reviewboard.kde.org/r/104699/
Comment 2 Christian (Fuchs) 2012-06-03 19:59:59 UTC
Hi, as written on IRC: sorry, didn't find that duplicate in my searches. 

Just for the sake of documentation: the other bugs title is about nickserv passwords, however, having a look at the .diff, it seems that server passwords are also taken into account. In that case this wish here would also be covered. 

Thanks :)
Comment 3 Eike Hein 2012-06-04 14:21:15 UTC

*** This bug has been marked as a duplicate of bug 94311 ***