Secure Memory
Gerhard Siegesmund
Gerhard Siegesmund <gerhard.siegesmund@epost.de>
Thu Dec 6 13:33:01 2001
--oTHb8nViIGeoXxdp
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
> > When I perform a GPG operation involving my secure key I get the=20
> > message: Using insecure memory....
> > This suggests to me that there is a more secure way to perform the=20
> > operation. I can't find reference to this topic and would like to.
> man gpg
> ...
> --no-secmem-warning
> Suppress the warning about "using insecure
> memory".
Better: Make gpg suid-root. Then it can use more secure memory which
can't be seen by another user on the system. Might be nontheless a
security-problem for your system if there is a buffer-overflow-bug in
gpg.
--=20
cu
--=3D=3D Jerri =3D=3D--
Homepage: http://www.jerri.de/ ICQ: 54160208
--oTHb8nViIGeoXxdp
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iD8DBQE8D2UMbC4NDXsS+doRAn0yAJ9/FqPZ6stHHrV2QBf5JKdXAcoXJACeNdy7
HxqFpx022yD97df8uKhR8mM=
=cE8b
-----END PGP SIGNATURE-----
--oTHb8nViIGeoXxdp--