mobile GPG installation
Adrian 'Dagurashibanipal' von Bidder
Sun May 11 19:32:02 2003
Content-Description: signed data
On Sunday 11 May 2003 17:22, tk wrote:
> Burns wrote:
> > Change homedir (in the registry) to "A:\gpgsec" (trust file and
> > random seed file will be here from now on, along with your own
> > keypairs)
> > Somebody, let me know if I'm giving bad advice here.
> Only in the sense that (as per original poster's scenario)
> fiddling with the registry entries on the computer that belongs
> to someone else, who lets you look at your mail for a few
> minutes is a bad idea. We are still waiting for the good GPG
> creators to understand the very real need for a GPG variant
> that REQUIRES NO INSTALLATION, i.e., a program that is
> not "fused" to a particular "box", but only to an operating
> system and the medium it resides on (floppy, CD...).
> (Why is this such a difficult concept to fathom?)
Because the creators of gpg try to create a secure software, not a package=
that just seems secure.
You propose to insert a disk/usb-stick/whatever with your secret keyring in=
a computer which you basically can't trust. I don't think that this is=20
something the gpg authors should spend time to make easy.
OpenPGP encrypted mail welcome - my key: http://fortytwo.ch/gpg/92082481
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
-----END PGP SIGNATURE-----
Signature policy: http://fortytwo.ch/legal/gpg/email.20020822?version=1.4&md5sum=81630baabe9a0670bb19c1fa8527a7ab