How know who is a file encrypted for ?

Dirk Traulsen dirk.traulsen at lypso.de
Tue Feb 26 10:49:16 CET 2008


Am 26 Feb 2008 um 9:40 hat Sven Radde geschrieben:

> Hi!
> 
> Dirk Traulsen schrieb:
> > b. some keys do not belong to me in a common keyring.
> 
> I am really not sure whether that is a good idea at all. Granting other
> people (write!) access to my secret keyring would be a troubling
> thought, even though I am not currently aware of any practical
> exploits. 
> 
> I do not know your threat model but I cannot imagine many benefits for
> such a setup.

You are completely right that this is nothing for a maximum security 
usage, not the scenario one would like to have and not what I have at 
home.
But think of one computer which is used together by several people in a 
working group or a shared flat. As the computer itself is physically 
reachable to several people you have no other chance as to trust these 
people not to mess with the computer. In these cases where there is no 
high security possible, you don't really get more security by using 
different keyrings. 

Dirk




More information about the Gnupg-users mailing list