search

originallgb / keepassdroid

Automatically exported from code.google.com/p/keepassdroid
0 stars 0 forks source link

Avoid having to reenter the master password #156

Closed GoogleCodeExporter closed 8 years ago

GoogleCodeExporter commented 8 years ago 
I would like to be able to avoid the need to reenter the master password caused 
by automatic closing by Android system, for example by using a service which 
would remember the master password + key file (in memory, so it should be quite 
secure I think) and reopen the password file if the program has been closed by 
system. It's really tedious to find out the app has been closed by Android and 
I have to reenter the long password again (especially considering the hundreds 
of megabytes of memory an average Android device has).

If it is not possible to achieve this goal (I'm not an Android programmer), 
please explain why not.

Thanks for your time and for this program.

Original issue reported on code.google.com by meneltha...@gmail.com on 2 Feb 2011 at 11:30

GoogleCodeExporter commented 8 years ago 
If this is your goal, is it possible for you to just use a keyfile?

Original comment by bpel...@gmail.com on 3 Feb 2011 at 3:15

GoogleCodeExporter commented 8 years ago 
Thanks for your answer, but using just keyfile brings additional security risk, 
because a potential intruder would only have to copy my files (KeePass DB + 
keyfile) (from my mobile or my computer) to gain access to my passwords. With a 
master password, he would also need to log my password when I type it.

Original comment by meneltha...@gmail.com on 3 Feb 2011 at 12:37

GoogleCodeExporter commented 8 years ago 
There is no way for me to force Android to keep the key in memory. If android 
decides that it needs to free up memory it can kill the application at any time.

Original comment by bpel...@gmail.com on 25 Jun 2011 at 4:56

GoogleCodeExporter commented 8 years ago 
[deleted comment]
GoogleCodeExporter commented 8 years ago 
[deleted comment]
GoogleCodeExporter commented 8 years ago 
[deleted comment]
GoogleCodeExporter commented 8 years ago 
[deleted comment]
GoogleCodeExporter commented 8 years ago 
OK, I finally managed to make the app unkillable by setting 
android:persistent="true" in AndroidManifest.xml (recompiled the *.apk using 
apktool) and copying it to the /system partition. So as far as I'm concerned, 
problem solved. :-)

Original comment by meneltha...@gmail.com on 12 Aug 2012 at 7:00