Sep. 18, 2009
Well, it finally bit me in the … Storing sensitive information, such as passwords for encrypted volumes, in the system keychain is a *REALLY* *REALY* bad idea! Why? Well, in contrast to the login keychain that is unlocked by a user’s password (transparently, if the same as the login password) the system keychain is accessible by any administrator on the system. So basically anyone with root access can dump all passwords from the system keychain.
If this wasn’t bad enough you can simply boot the system using the installation DVD and reset any administrator password, login and have instant access to the system keychain. So, well, using the system keychain for passwords to encrypted disks is not a great idea.
I therefore removed the articles referring to how to setup TrueCrypt with the keychain.
