You are not logged in.

#1 2019-02-09 18:28:21

icancto
Member
Registered: 2017-03-15
Posts: 6

Chrome password vault

I was wondering about the security of the password "vault" in the settings of the Chrome browser. How secure is it on Arch Linux? Both on Windows and on Mac OS I know that it's encrypted with your main password and every time you try to look up the password you have to enter it. But on Arch Linux I don't see this happening. I does not ask me for a password to view any of the passcodes in the valut. Are the passwords at least encrypted with my main password?

Last edited by icancto (2019-02-09 18:28:56)

Offline

#2 2019-02-09 20:28:55

jagan605
Member
Registered: 2011-12-04
Posts: 26

Re: Chrome password vault

Chrome uses the system wallet which depends on the desktop environment. On Gnome and GTK based DEs it uses gnome-keyring and in Plasma it uses kwallet, so it is secure.

Offline

#3 2019-02-09 20:40:06

icancto
Member
Registered: 2017-03-15
Posts: 6

Re: Chrome password vault

What about i3? That's what I'm using.

Offline

#4 2019-02-09 20:42:08

jagan605
Member
Registered: 2011-12-04
Posts: 26

Re: Chrome password vault

Offline

#5 2019-02-09 21:03:01

seth
Member
Registered: 2012-09-03
Posts: 10,589

Re: Chrome password vault

Notice that w/o an external PW manager, chromium stores login data in ~/.config/chromium/Default/LoginData - an unencrypted sqlite database.
You can create generic "vaults" (encrypted filesystem images) and move and symlink files into them and also have them decrypted and mounted w/ your login: https://wiki.archlinux.org/index.php/Pam_mount

Offline

Board footer

Powered by FluxBB