Message: previous - next
Month: February 2012

Re: [trinity-users] LXDE, TDE and KMail - can I achieve what I would like to do?

From: Kristopher John Gamrat <chaotickjg@...>
Date: Mon, 13 Feb 2012 14:50:42 -0500
On Monday 13 February 2012 12:53:59 pm John A. Sullivan III wrote:
> ----- Original Message -----
> From: "Kristopher John Gamrat" <chaotickjg@...>
> To: trinity-users@...
> Sent: Sunday, February 12, 2012 3:22:58 PM
> Subject: Re: [trinity-users] LXDE, TDE and KMail - can I achieve what I would like to do?
> On Sunday 12 February 2012 03:01:21 pm Lisi wrote:
> > Hi, Kris. 
> > 
> > Thank you for the reply.
> > 
> > On Sunday 12 February 2012 19:06:38 Kristopher John Gamrat wrote:
> > > It is possible to not enter the password in Kmail, most email clients offer
> > > to store the password.
> > 
> > That is the problem.  I can't find a way.  But it used to be possible.  
> Using my instructions (typing it in when setting up the accounts and checking off the store password option) should work. I've also noticed that when I forget to add the password at setup, it will come up with a popup asking for the password, and there will be a checkbox for storing it.
> > I don't like KWallet.  It is just there by default.  Can I safely uninstall 
> > it?  And would I then be able to get KMail to store the passwords itself, as 
> > it used to do?
> Since Kmail can store your passwords directly, it should not matter whether KWallet is present or not.
> I never tried removing KWallet before now, but Kmail seems to work fine without it. After removing kwalletmanager-trinity and restarting Kontact (which uses Kmail directly for email), it did not ask me for a password, neither for sending nor receiving (I don't like KWallet either, so I don't use it, though I do have it store my passwords). It might ask you to remove several meta-packages, though I'm not sure which ones specifically as I manually selected which packages to install (I think I added KWallet by accident since it was in the suggested packages). Just make sure to check what your package manager wants to remove first; meta-packages are generally safe to remove since they are there simply to make it easier to install the real packages in bulk.
> If your package manager indicates that it can't be removed safely, then when KWallet comes up, don't check the box on the second screen of the KWallet wizard that comes up (on my system, when it came up, I clicked Next, then clicked Finish without touching anything else in the wizard). Kmail will then ask you if you wish to store the password unsafely. Once you confirm that you do, it should not ask for the password again, unless you change the passwords on your configured email accounts (e.g. visiting, signing in with your Gmail account, and changing the password in your Account Settings).
> <snip>
> Sorry - just seeing this thread now.  I've never been a great fan of KWallet either and it creates a nightmare when you change your mail password and it suddenly tried to login with the old password to every kmail account, kalendar, kaddressbook, etc. account and locks out for too many failed attempts! However, is there a difference in the way in which KWallet and KMail store the passwords? I was under the impression the KMail storage of simply a hash in an rc file was significantly less secure than KWallet - John

Unless you know the algorithm used to produce the hash (MD5 or otherwise), chances are you won't be able to de-hash it. I'm not exactly sure how KWallet stores passwords, though I can only guess it uses a better encryption scheme than just a hash.

Kris Gamrat
Ark Linux webmaster