6

Apple uses a nice keychain. This is used by, for example, Google's Chrome browser.

Imagine a user copies all the keychain files.

Would that user be able to unlock the keychain, if they knew the master password, on a different Mac computer running the same version of OS X?

Does any software exist to allow a user (who remembers their master password) to open the keychain on Windows or Linux?

Have any vendors attempted brute force or dictionary attacks? (I checked Elcomsoft, and they don't appear to have a Mac Keychain product yet.) I understand that these attacks are unlikely to be successful if the user has chosen a good password, but I also know that most people do not chose good passwords.

the
  • 1,841
  • 2
  • 16
  • 33
DanBeale
  • 2,064
  • 3
  • 18
  • 27
  • 1
    I don't have a complete answer, but I know that you can move keychains between machines: http://support.apple.com/kb/ht2980#key – Nathan G. Mar 17 '13 at 23:33

1 Answers1

3

It is possible to open the keychain file provided that you have the password associated with it (usually, but not always the user's login password).

I have personally done this when backing up and performing a manual upgrade of my personal system, although I do not know where any software is available to open the file out of Mac OS.

Ben
  • 31
  • 1