I discovered this morning that saving the password in the keychain is frustratingly fragile:
- If you have a VPN that disconnects after a set time (e.g. 4 hours), Viscosity thinks it needs to prompt you for the password again.
- If you accidentally enter your authentication code in the password prompt, it overwrites your password.
To prevent this:
- I don’t know whether it’s possible for Viscosity to detect time-expired disconnections and handle those more gracefully, or prompt to renew beforehand?
- Separately, I’d like to have some confirmation before overwriting the password when I’ve entered something different in the password field.
If it’s the first time of entering a password, obviously no confirmation is needed. And since you should be changing your password rarely, an extra “yes, I mean to update it” shouldn’t be too onerous. For example, Safari’s keychain integration does that: “Do you want to update your password in the keychain?”
Thankfully my Time Machine backup was able to recover the old, long, machine-generated password. But it was a bit of a detour.
