False insecure memory warnings...

David Shaw dshaw@jabberwocky.com
Thu Apr 3 23:40:01 2003

Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Thu, Apr 03, 2003 at 02:55:50PM -0500, gabriel rosenkoetter wrote:
> After some discussion with David Shaw recently, I've broken down,
> admitted that my public keyring is really just huge and than having
> a cron job to maintain it is really pretty reasonable. So I've been
> blowing along happily with this in cron:
> 0 8 * * 1-5 zsh -c 'time gpg --no --batch --check-trustdb'
> (Yes, I really do want zsh's time output, thanks.)
> That was well and good till several days ago, when I started getting
> this:
> gpg: WARNING: using insecure memory!
> gpg: please see http://www.gnupg.org/faq.html for more information
> gpg: checking at depth 0 signed=3D49 ot(-/q/n/m/f/u)=3D0/0/0/0/0/1
> gpg: checking at depth 1 signed=3D82 ot(-/q/n/m/f/u)=3D0/0/0/19/30/0
> gpg: checking at depth 2 signed=3D286 ot(-/q/n/m/f/u)=3D1/0/0/69/5/0
> gpg: checking at depth 3 signed=3D178 ot(-/q/n/m/f/u)=3D1/74/0/21/0/0
> gpg: next trustdb check due at 2003-04-16
> gpg --no --batch --check-trustdb  14.57s user 11.03s system 60% cpu 42.32=
8 total
> Only but my gpg(1) really is suid, I promise:
> uriel:~% which gpg
> /usr/pkg/bin/gpg
> uriel:~% ls -l `!!`
> ls -l `which gpg`
> -r-sr-xr-x  1 root  wheel  684660 Feb 27 07:27 /usr/pkg/bin/gpg*

I've seen this a few times before.  Check to make sure that there
isn't another copy of gpg somewhere, and the gpg that cron is running
is the same one that you're running from the shell.


Content-Type: application/pgp-signature
Content-Disposition: inline

Version: GnuPG v1.2.2rc1 (GNU/Linux)
Comment: http://www.jabberwocky.com/david/keys.asc