False insecure memory warnings...

David Shaw dshaw@jabberwocky.com
Thu Apr 3 23:40:01 2003


--Kj7319i9nmIyA2yE
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Thu, Apr 03, 2003 at 02:55:50PM -0500, gabriel rosenkoetter wrote:
> After some discussion with David Shaw recently, I've broken down,
> admitted that my public keyring is really just huge and than having
> a cron job to maintain it is really pretty reasonable. So I've been
> blowing along happily with this in cron:
>=20
> 0 8 * * 1-5 zsh -c 'time gpg --no --batch --check-trustdb'
>=20
> (Yes, I really do want zsh's time output, thanks.)
>=20
> That was well and good till several days ago, when I started getting
> this:
>=20
> gpg: WARNING: using insecure memory!
> gpg: please see http://www.gnupg.org/faq.html for more information
> gpg: checking at depth 0 signed=3D49 ot(-/q/n/m/f/u)=3D0/0/0/0/0/1
> gpg: checking at depth 1 signed=3D82 ot(-/q/n/m/f/u)=3D0/0/0/19/30/0
> gpg: checking at depth 2 signed=3D286 ot(-/q/n/m/f/u)=3D1/0/0/69/5/0
> gpg: checking at depth 3 signed=3D178 ot(-/q/n/m/f/u)=3D1/74/0/21/0/0
> gpg: next trustdb check due at 2003-04-16
> gpg --no --batch --check-trustdb  14.57s user 11.03s system 60% cpu 42.32=
8 total
>=20
> Only but my gpg(1) really is suid, I promise:
>=20
> uriel:~% which gpg
> /usr/pkg/bin/gpg
> uriel:~% ls -l `!!`
> ls -l `which gpg`
> -r-sr-xr-x  1 root  wheel  684660 Feb 27 07:27 /usr/pkg/bin/gpg*

I've seen this a few times before.  Check to make sure that there
isn't another copy of gpg somewhere, and the gpg that cron is running
is the same one that you're running from the shell.

David

--Kj7319i9nmIyA2yE
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2rc1 (GNU/Linux)
Comment: http://www.jabberwocky.com/david/keys.asc

iD8DBQE+jKpk4mZch0nhy8kRAjX5AJ9/2sZyedeOMnjTPwj4wcMkif0gXQCg2PNs
Cyhl910IaN4T3mgGYl7zvYo=
=nywP
-----END PGP SIGNATURE-----

--Kj7319i9nmIyA2yE--