79
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
this post was submitted on 17 Mar 2024
79 points (96.5% liked)
Linux
48186 readers
1135 users here now
From Wikipedia, the free encyclopedia
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word "Linux" in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.
Rules
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.
- No misinformation
- No NSFW content
- No hate speech, bigotry, etc
Related Communities
Community icon by Alpár-Etele Méder, licensed under CC BY 3.0
founded 5 years ago
MODERATORS
Works as intended for me between my android phone and Kububtu PC however I deliberately turned it off for security reasons.
¿Why? Whenever I copy a password from my password manager on the PC it is shared to the Android phone and stored on the clip board there in plain unecrypted form. Since I also use a clip board manager app which remembers anything that is copied for later retrieval this means that if I were to lose my phone it would yield the finder with a long list of logins and passwords that I use.
I could of course manually delete each password from the smart phone after logging in but it's way too much of a hassle and I'm prone to simply forgetting it.
By default KDE connect should simply not transfer copies made from password managers. It bypasses the whole security feature that password managers have which automatically clears the clipboard a short time after copying any password. Last I checked there were feature requests // bug reports on github arounc issue. But I'm not tech savvy enough to know whether there is a programmatic way to detect what kind of app the copy is originating from or whether we are stuck with the current way by design constraint.
There is a config option that doesnt share passwords, "as marked by password managers" idk how well it works but it might block that behavior. On the PC side in clipboard configs in kde connect.
Nice to see that option included. It wasn't there the last time I checked.
Thanks for pointing this issue out! Idk how the KDE team is moving to address this, but I know that for example the gnome extension Pano (which is a clipboard manager) has a blacklist of apps that should ignore (and which by default is most popular password managers), so KDEConnect could do the same I guess...