[X Newbies] decrypting keychains

[cricket]

The reason you get the warning dialog when you upgrade your system is 
that keychain keeps track of which applications have access to which 
keychain items -- and when you upgrade, the application has changed and 
it is no longer 'trusted'. For example, would you want it to be 
possible to write a program, name it 'Mail', and have it snag all your 
Mail passwords?

While I agree that the dialog is confusing and maybe annoying, there is 
a reason for it to be doing this. You don't want other applications to 
be able to use passwords that are only intended to be used by one 
program.

By the way, this is not specific to Mail, but to any application that 
uses the keychain as a means to securely store passwords.

- cricket

On Aug 26, 2003, at 11:38 AM, TheMacintoshLady wrote:

>> in Mail, i now get messages often saying, roughly
>>
>> Mail wants permission to decrypt keychain MyName in blah blah
>> mail.earthlink.net.
>>
>> i get to allow once, deny or always allow.
>>
>> i've never seen this message before & am not sure what is at stake.
>
> Isn't this the most annoying thing? Reminiscent of something else I 
> know..
>
> Seems every time I do an  update of some sort, the system takes it upon
> itself to activate Keychain which I want no part of.
> You simply have to open this and nuke everything that's listed in 
> there.
> It seems that if you want mail to remember your password, you can just
> set it in the mail set up, but NOT in Keychain.
>
> I do not like at all how the system takes liberties with some things 
> this
> way, but at least if you know how it happens you can  nip it in the bud
> before it does.