Questions about GPGME / GnuPG library

[Nils Ellmenreich]

>>>"OTB" == Olaf Trygve Berglihn <olafb at pvv.org> writes:

 OTB> Root is root is root is root, i.e. if you can exploit to become root,
 OTB> then you could swap the gnupg-binary, the shell-binary or
 OTB> whatever.

Not quite, gpg drops root priviledges as soon as protected memory has
been reserved. Having said that, the best way would be to have OS
support for secure memory in non-root applications ...

Regards, Nils
-- 
Nils Ellmenreich, Lst. f. Programmierung, Universitaet Passau, Germany