Pinentry makes it awfully easy to snoop all passwords entered by the user

Daniel Kahn Gillmor dkg at fifthhorseman.net
Wed Aug 28 21:00:09 CEST 2013


On 08/28/2013 02:46 PM, Niklas Schnelle wrote:

> However it would be nice to have a way to disable tracing for normal users,

If you use the linux kernel, take a look at the grsecurity patchset.  I
believe this is one of its features.

https://en.wikibooks.org/wiki/Grsecurity/Appendix/Grsecurity_and_PaX_Configuration_Options#Ptrace_logging

	--dkg

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 1027 bytes
Desc: OpenPGP digital signature
URL: </pipermail/attachments/20130828/d5dbaeaf/attachment-0001.sig>


More information about the Gnupg-devel mailing list