[PATCH] gpg-agent: Enable socket activation

Alex Elsayed eternaleye at gmail.com
Fri Nov 21 00:37:05 CET 2014


Werner Koch wrote:

> On Thu, 20 Nov 2014 20:11, rjh at sixdemonbag.org said:
> 
>> I think this is a little extreme.  If the other users are all trusted,
>> the risk is manageable.  For instance, over the Christmas holidays my
>> younger relatives will often use my laptop to do some of their
> 
> Of course I was thinking of a machine with concurrent working users.
> There are too many local root exploits and even a fully fixed box is
> never safe from side-channel attacks.

IMO, this is a _very convincing_ reason to deterministically kill off gpg-
agent on logout, which session-daemon control makes feasible.




More information about the Gnupg-devel mailing list