217332 – gnome-session shouldn't set http_proxy environment variable if proxy requires password

Bug 217332 - gnome-session shouldn't set http_proxy environment variable if proxy requires password

Summary: gnome-session shouldn't set http_proxy environment variable if proxy requires...

Keywords:
Status:	CLOSED RAWHIDE
Alias:	None
Product:	Fedora
Classification:	Fedora
Component:	gnome-session
Sub Component:
Version:	rawhide
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Ray Strode [halfline]
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	216686 217333
TreeView+	depends on / blocked

Reported:	2006-11-27 05:22 UTC by Ray Strode [halfline]
Modified:	2007-11-30 22:11 UTC (History)
CC List:	0 users
Fixed In Version:
Clone Of:
Environment:
Last Closed:	2007-04-02 18:59:39 UTC
Type:	---
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Description Ray Strode [halfline] 2006-11-27 05:22:18 UTC

It was pointed out here:

http://bugzilla.gnome.org/show_bug.cgi?id=84315

that it's a bit of a security issue to automatically store the user's proxy
password in an environment variables.

Also, it was pointed out there that the code to do it was doing it wrong anyway.
 We should just drop the code.

Comment 1 Ray Strode [halfline] 2007-04-02 18:59:39 UTC

we dropped the code.

Note You need to log in before you can comment on or make changes to this bug.