Default setting for remembering password should be remember until logout

Thank you for your bug report. The issue is an upstream one and it would be nice if somebody having it could send the bug the to the people writting the software (https://wiki.ubuntu.com/Bugs/Upstream/GNOME)

Per Sebastien's request I have filed this upstream with Gnome. In Gnome's bugzilla this is 587909. (http://bugzilla.gnome.org/show_bug.cgi?id=587909)

The issue is not really an hundredpapercut one, shares are mounted for the session until the user unmount those. The reason why smb ask for the password again is that some shares need different credentials for write access for example and giving the default login informations would break that usecase

Invalid as per Sebastien's comment.

Yes, but which case is the 80% use case -- user wants the password to be
remembered for the duration of the session and will not be asked for
different credentials for the same SMB share, or a user will be asked
different credentials? If the latter is a corner case, which affecting SMB
shares only suggests it is, we should still consider changing the /default/
behavior so that most users benefit from a better default, while the
possibly relatively smaller population of SMB users exhibiting the use case
Seb describes should be the ones to use a non-default setting.

the default should be changed for smb only then? do you agree it's a non issue with other protocoles since the shares are usually listed as mounted for the session?

If more than 80% of users would benefit from the "remember until session
ends" options, and the remainder of users would still be able to accomplish
tasks involving different credentials for the same share, and it doesn't
pose a significant security risk, then I would favor changing the default. I
think the issue is more complex than I understand so I am going to defer to
those who understand SMB use cases better.

as far as I understand, and I'm not using a split access SMB server, if you have a mounted SMB share with read-only permissions, and you attempt to write to it then youd get an error, and gvfs will either try auth away (regardless of the password save state) or not.

I second the idea that the default should be "remember until logout".

Also, I would like to be able to disable completely the "save forever" option, to avoid (non expert) user mistakes.

This has now been fixed upstream

This bug was fixed in the package nautilus - 1:2.30.1-1ubuntu2

---------------
nautilus (1:2.30.1-1ubuntu2) maverick; urgency=low

  * Backport upstream changes
  * debian/patches/git_correct_delay_logic.patch:
    - git change to fix a logic error in the directory loading code which
      create a delay to have some shortcut actions to work after loading
      directory (lp: #390662)
  * debian/patches/git_correct_display_name.patch:
    - correctly display the applications names
  * debian/patches/git_correctly_set_default.patch:
    - correctly set the new default software when this one is changed
      (lp: #550004)
  * debian/patches/git_default_thumbnails.patch:
    - set default thumbnails to 64 for better layouting (lp: #497728)
  * debian/patches/git_browser_title_cleaning.patch:
    - clean the title of the file browser dialogs (lp: #439227)
  * debian/patches/git_clean_by_name_rename.patch:
    - 'Change "Clean Up by Name" to "Organize Desktop by Name"' (lp: #388949)
  * debian/patches/git_double_click_launcher.patch
    - 'Ignore > 2 clicks in the icon container' (lp: #389663)
  * debian/patches/git_ctrlq_close.patch:
    - 'Change 'Close all Windows' shortcut to Ctrl+Q.' (lp: #563226)
  * debian/patches/git_store_session_passwords.patch:
    - store the mounts passwords for the session (lp: #392589)
  * debian/patches/git_no_double_browse_entry.patch:
    - don't list a "browser" menu items in browser mode it's the default
      (lp: #388091)
 -- Sebastien Bacher <email address hidden> Wed, 07 Jul 2010 11:11:29 +0200

Fixed in Maverick