Safe decryption with GnuPG?
Robert J. Hansen
rjh at sixdemonbag.org
Tue Feb 5 19:14:59 CET 2008
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Krzysztof Żelechowski wrote:
> GnuPG claims it locks memory pages so that they are never dumped.
On systems where that's supported, sure. On systems where that's not
supported, it doesn't. Ergo, tread carefully.
> (although I am quite surprised
> because the requirements are quite obvious to me;
> for what is the benefit of encryption
> when a bad robot can read over your shoulder?)
If your hardware is compromised then you are absolutely screwed, and
there is nothing you can do about it. Bang, period, game over, end of
sentence, end of discussion.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.8 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iFYEAREIAAYFAkeop6MACgkQf2XByo0Cu7OxvwDfeijBBMNF/zNFxk+faY5nERLG
6pT/D0jGRqHUdADfWJNvfqN7oPk1vNRBiXeIyQ0AVoV1BJT9y91soYkBHAQBAQgA
BgUCR6inowAKCRC3APSC/q+BCefVB/9hzIe10SvQlTThBAEZoGvD4s4HrIEWyIOo
j45mAzB63Z6TZyWwozjQsK8IVN2+TNY4fkOfmZSqo2P3O7Oz3dQ+0VY9FcCV2n1g
FqBZ1WuxEYMYJ37cLLbhN2s3fYKoBPW4Cv0atScC9hjeDyB7lUO5Gdm3BVw1XhPd
KI8Ke6syImfx1niXgTs3J2ZkkQueUkKvz/yGKeevAP+u8fg9U9NymQnKMlbyxPaf
oNkOdm64eJc0NMbA/KLwOoFgEv9CZpbRoZ8LeS9nZ3zpTtA+vlv/kivzR/aTZnR5
t7ttR64NXq5lnQOuiUxq8XyBwWhlmscXPiOg7H6X4QmqF0L7Zqmf
=fDSZ
-----END PGP SIGNATURE-----
More information about the Gnupg-users
mailing list