Fingerprint verification is no longer accurate. #1091
Labels
security
Encryption, Privacy or other data exposure
Comments
|
The fingerprints didn't match when I looked at the encryption info. Not sure if this is related or not. |
|
Yup, that's one half of the issue. |
strugee
added a commit
to strugee/gnome-shell-extension-gsconnect
that referenced
this issue
Jul 27, 2021
I changed the monkeypatched function name to improve clarity (what kind of fingerprint is it?) and also to avoid clashing with future GLib APIs. Fixes GSConnect#1091
strugee
added a commit
to strugee/gnome-shell-extension-gsconnect
that referenced
this issue
Jul 27, 2021
I changed the monkeypatched function name to improve clarity (what kind of fingerprint is it?) and also to avoid clashing with future GLib APIs. Ref GSConnect#1091
andyholmes
pushed a commit
that referenced
this issue
Jul 27, 2021
I changed the monkeypatched function name to improve clarity (what kind of fingerprint is it?) and also to avoid clashing with future GLib APIs. Ref #1091
strugee
added a commit
to strugee/gnome-shell-extension-gsconnect
that referenced
this issue
Jul 29, 2021
strugee
added a commit
to strugee/gnome-shell-extension-gsconnect
that referenced
this issue
Jul 29, 2021
strugee
added a commit
to strugee/gnome-shell-extension-gsconnect
that referenced
this issue
Jul 29, 2021
ferdnyc
pushed a commit
to strugee/gnome-shell-extension-gsconnect
that referenced
this issue
Oct 24, 2022
|
Closed by #1493 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Since a few months ago, KDE Connect stopped using a pair of SHA1 fingerprint hashes to confirm pairing, and now uses a SHA256 hash of the combination of both certificates.
This is unfortunate since it means any older version of KDE Connect or GSConnect connecting to an Android device will appear to be fraudulent. The affects all versions of GSConnect up to v46.
See:
The text was updated successfully, but these errors were encountered: