Pinentry makes it awfully easy to snoop all passwords entered by the user

Abel Luck abel at guardianproject.info
Wed Aug 28 20:44:45 CEST 2013


Daniel Kahn Gillmor:
> but basically: if your adversary has root on your machine or has full
> control over your local account even, there isn't a way to use gpg (or
> any software) safely.  This is unfortunate, but it seems to be the way
> things work. :(

This is the important point here imho!

~abel



More information about the Gnupg-devel mailing list