Issue 689067 link

Starred by 3 users

Issue metadata

Status:	Assigned
Owner:	rsorokin@chromium.org
Cc:	marcuskoehler@chromium.org
Components:	Enterprise
EstimatedDays:	----
NextAction:	----
OS:	Chrome
Pri:	3
Type:	Bug
Chromad

Don't ask user for the old password to decrypt cryptohome

Project Member Reported by rsorokin@chromium.org, Feb 6 2017

Issue description

In case of password changing case, chrome could use the old password to try to decrypt cryptohome. If that won't work than ask for the probably even older password.

Comment 1 by ljusten@chromium.org, Oct 18 2017

Labels: Pri-3

Comment 2 by ljusten@chromium.org, Oct 18 2017

Labels: -M-58

Comment 3 by jsm...@stillwaterschools.com, Aug 24

Even better: create an admin policy to allow us to enforce skipping the decrypt-with-old-password box entirely (just assume forgot old password and proceed anyway)

Comment 4 by samuel.k...@airbnb.com, Aug 27

An admin policy like the one mentioned in comment #3 would help us quite a bit.

On our large Chromebox fleet, we presently have them all configured to purge user data at logout to workaround the issue of passwords being out of sync.  We don't really care about losing locally saved data, but it would be nice to be able to keep local data present so Chrome Sync doesn't have to happen at every single login.

Comment 5 by rsorokin@chromium.org, Nov 22

Cc: marcuskoehler@chromium.org

►

Issue 689067 link

Issue metadata

Don't ask user for the old password to decrypt cryptohome

Issue description

Comment 1 by ljusten@chromium.org, Oct 18 2017

Comment 1 Deleted

Comment 2 by ljusten@chromium.org, Oct 18 2017

Comment 2 Deleted

Comment 3 by jsm...@stillwaterschools.com, Aug 24

Comment 3 Deleted

Comment 4 by samuel.k...@airbnb.com, Aug 27

Comment 4 Deleted

Comment 5 by rsorokin@chromium.org, Nov 22

Comment 5 Deleted

Sign in to add a comment