Unsafe configuration of the pinentry program
Werner Koch
wk at gnupg.org
Tue Dec 30 15:49:37 CET 2025
On Tue, 30 Dec 2025 14:55, Marius Spix said:
> directory can easily compromise gpg-agent by overriding the key
> pinentry-program in ~/.gnupg/gpg-agent.conf
This is anyway TILT - GAME OVER. There are hundereds of ways to
compromise a system if you have write access to the configuration files.
Thanks for asking.
Shalom-Salam,
Werner
--
The pioneers of a warless world are the youth that
refuse military service. - A. Einstein
-------------- next part --------------
A non-text attachment was scrubbed...
Name: openpgp-digital-signature.asc
Type: application/pgp-signature
Size: 284 bytes
Desc: not available
URL: <https://lists.gnupg.org/pipermail/gnupg-users/attachments/20251230/2415939b/attachment.sig>
More information about the Gnupg-users
mailing list