When unlocking keyrings manually, seahorse should not propose by default to unlock it next time automatically.
When unlocking a keyring manually (thus not the login keyring), a dialog appears and asks whether to unlock the keyring automatically on next login. The problem is that the dialog's checkbox is already checked by default.
There are several problems with this behavior:
- Gnome-keyring proposes to reduce the level of security of this keyring.
- Inadvertently closing the dialog with "ok" changes the keyring's current setting (manually unlock). It requires user interaction every time to preserve the current setting.
- When you mistakenly confirmed the dialog, reverting the change is complicated.
Despite of a tiny little surprise that such a security issue has been overseen for so long, I am still very confident that someone would kindly review and merge Atul Anand's patch. Credits and thanks again to Atul Anand!
For reference:
2014 When unlocking keyrings, seahorse should remember choice for "Automatically unlock this keyring"
2014 "Automatically unlock this keyring whenever I'm logged in" should be unchecked by default
2009 “Automatically unlock when I log in” considered harmful