Re: [gcmd-dev] [FIX] Drop usage of GNOME authentication manager for password handling

[Michael]

Piotr Eljasiak, 

> I'm currently working on using gnome-keyring exclusively, so it would
> not be the problem soon (BTW this is the last blocker for 1.4)

Good news !

But it probably a good idea to still keep the internal storage, for comparing / 
testing and as fallback.


> The latter is not recommended as gcmd keeps passwords in plain text.

But, isn't the network transmission (i.e. the protocol encryption) the critical 
thing, because there could be some 'man in the middle' at any point in the WAN 
chain (servers and routers). If some assumed trojan, or a unauthorized person, 
had access to your harddrive, you're already lost anyway. 

Well, probably even that file could be encrypted by gpg if that eases the worry.

And if you're paranoid you'll never keep a password anywhere on any computer, 
encrypted or not...