KDE Wallet keeps asking for password for apps it shouldn't

KDE Wallet has always driven me nuts one way or another.

Right now it’s asking me to enter my password to simply launch Ventoy AUR.

I enter my system password and I can access it, but once I close Ventoy and reopen it, it asks for the password again.

How do I end this madness once and for all?

For the purposes of the KDE Wallet, I’ll often avoid auto-login to Plasma. The two are tied.

Perhaps have a look here, as there are a few points under the “Note” that seem relevant to your situation (5th point for example):
https://wiki.archlinux.org/title/KDE_Wallet#Unlock_KDE_Wallet_automatically_on_login

2 Likes

I made insecure KDE wallet passwordless/plaintext, until it can utilize TPM2 or something.

@Nomad Try 3.7 to be get rid of it.

2 Likes

Always strange to see posts about this and not see someone say “disable KDE wallet” or “click ‘okay’ without entering a password then select ‘blowfish’” as the first solution. Either solution always works for me. But I guess that’s a me thing?

I say this to say that this has been the same solution for like 10 years. Probably exaggerating, but still.

I’ve tried disabling KDE wallet, but this causes other issues such as passwords for SMB connections to my NAS via Dolphin asking for passwords every time I try to connect, so I have to keep it enabled.

Entering no passwords fails as well, as you can see in the screenshot below.

I intend on checking the arch wiki link that @Bink replied with when I get some time soon.

image

1 Like

Oh, how I wish that would work. Unfortunately, it forces me to enter my password for my SMB connections in Dolphin every time I try to connect, so this won’t work for me :slightly_frowning_face:

My solution requires keeping KDE wallet but despite having kwallet-pam installed, it still asks for a password when running Ventoy.

I see. I think that’s the difference in why either solution works for me. I have never had SMB or NAS-related stuff to consider.

1 Like

This is a bit of a side-stepping of your topic, so I hope you don’t mind. I just thought I’d ask if you’d considered connecting to your NAS via SFTP, instead of SMB.

If it’s already serving that protocol, it may be as straight forward as:
sftp://yournasip

You might define some defaults for sftp to the NAS in ~/.ssh/config, such HostName (IP), user, port, identity file (private key), etc.

The reason I mention it with respect to this topic, is using public key encryption to connect to your NAS over sftp means you don’t need KDE Wallet, but your connection to the NAS remains considerably more secure than SMB.

sftp shares can also be mounted using sshfs. Performance wise, this has remained fast enough for me to do professional video editing work with huge source files residing on my NAS.

Just a thought.

1 Like

I just checked and yes it does have FTPS.

I will try this out and see how it goes. If it works out, then I will just disable KDE wallet.

Thanks for the suggestion.

Edit: I just realized SFTP is also available, which is different from FTPS.

:+1:

That’s the one you want :wink:

What’s the difference in the two?

FTPS is FTP protocol with SSL security added.
SFTP is SSH protocol, with file transfer added.

Interesting.

SFTP is possible via Dolphin on KDE?

It certainly is. I use it in Dolphin with my Synology NAS, and for connecting to my remote web servers.

1 Like

That’s a game changer.

I remember now why I set up SMB and just left it alone. It was back when I still used macOS, but now I only use Linux, so this solution sounds better.

Thanks again

1 Like

Before I forget, do you recommend changing the default port?

I changed the default SSH port on the NAS for security reasons.

Is it the same idea for SFTP port?

Changing the SSH port may have changed it for SFTP too, as they are essentially the same service.

Changing the default port is no issue, I do the same for remote servers to reduce bot noise.

When connecting in Dolphin, you’d add the port like such (2222 in this case):
sftp://nomadsnas:2222

What’s probably simpler again though, is to define that port in your ~/.ssh/config file. Something like:

Host nomadsnas
    HostName 192.168.0.2
    IdentityFile ~/.ssh/nomadsnas_ed25519 # private key
    User nomad
    Port 2222
1 Like

For mounting the sftp shares with sshfs, a command to mount your home folder on your NAS, to a local directory under ~/nomadsnas/home, might look like this:

sshfs nomad@nomadsnas:/home /home/nomad/nomadsnas/home -o compression=no -o cache=yes -o kernel_cache

Provided you have public key encryption set up with your NAS, and your ~/.ssh/config file defines where to find those details and such, the above command should mount with no further prompts.

I use a bash file to store these commands, so I can just double click on it when I need to mount the NAS.

Where is this public key encryption in DSM? When I first tried to connect through Dolphin via SFTP, it asked me about a key and that it wasn’t verifiable, and I just clicked ‘connect anyway’. I suppose I should create a key, but I’m not sure where after looking through DSM’s options.

The way I use my NAS is via tailscale with a hardened firewall so it’s not exposed to the internet.