Rookiestyle
commented
11 months ago Why?
Softlock allows you to do Auto-Type, ... This would not change if the plugin requested the masterkey after 1 failed attempt.
Closed ghost closed 11 months ago
Rookiestyle
commented
11 months ago Why?
Softlock allows you to do Auto-Type, ... This would not change if the plugin requested the masterkey after 1 failed attempt.
ghost
commented
11 months ago QuickUnlock for database unlocking requests the master key after a failed attempt, while SoftLock does not, which leads to the possibility of brute force cracking of the pin
Rookiestyle
commented
11 months ago SoftLock aims to protect you from shoulder-surfers and from leaving your workspace unattended.
If you are afraid from bruteforcing the pin while you're away, you can use the expiry time.
Once reached, you need to provide the complete masterkey
ghost
commented
11 months ago I saw that, and then I also found that SoftLock's QuickUnlock did not prompt for a key in a UAC secure desktop environment
Rookiestyle
commented
11 months ago The SoftLock pin will never be shown in secure desktop environment (btw: It is not UAC, just looks like that).
As of now, when the SoftLock pin is expired and the full masterkey is requested, this is not done on secure desktop environment. I will change that.
SoftLock's QuickUnlock should asks for prompt master password after 1 failed attempt