The next time they try to connect, the stored passphrase is tried, and when it fails, Cyberduck falls back to password-based authentication which we do not permit on our server. Our problem, however, is that we have users who enter an incorrect passphrase when using key-based authentication, and this passphrase is then being saved to their keychain. IMO, I like the nudge to save the password in the system keychain, so I have no complaint with that. Sorry to add a comment to this closed ticket. The program was launched by an unprivileged Windows user, while it had been installed system-wide. I'd appreciate some pointers about how to completely clean the password from where it has been stored, as it happened to enter it in a 3rd party pc. The expected behavior would be the application to auto clean the saved password for the resource if the 'save password' is unchecked. This does not happen with bookmarks that were created after 'Use keychain' was unchecked, which results in the 'Save password' option to be deactivated in the dialog for credentials. After unchecking the 'Use keychain' option in the settings, deleting the bookmark and history, and also after editing the bookmark and removing the saved access ID, every time I enter the access ID (that had been previously saved), the password field is also auto-populated.Launched the bookmark, entered access credentials and, while the 'Save Password' option in that dialog was checked, I connected to the remote resource.With option 'Use Keychain' enabled, I created a bookmark for an S3 bucket only by setting the remote path to be the '/bucket-name'.I noticed a weird behavior with a password that is saved and cannot be cleaned from within the application no matter what I've tried.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |