LD_PRELOAD attack
Alexander W. Janssen
yalla at fsfe.org
Wed Jun 11 18:02:13 CEST 2008
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
michael graffam schrieb:
> Thoughts?
Run "unset LD_PRELOAD" before running gnupg if you don't trust the system?
It's an inherent feature of the loader. Compiling everthing statically
only works around this inherent feature/problem, however you call it.
And it wouldn't prevent any other keyloggers or flaws in drivers.
Just my 2c though.
> -M
Alex.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iQCVAwUBSE/3AxYlVVSQ3uFxAQJDywQAuFndAr3Woy5cEzZr8rU3kUz5ITHiKcRI
Vul18f+/qCYTnGnl6ipudePe3b0qycF83LxMvDO7sH9jQOud9vViLKAygqx77dBv
tgowk3H37gd/91QkZCfpLV05Im60sCX+d+4a9FDzKF8vcsA8ac1EIVUbbUOsftBv
VDrNMn6nTjo=
=64mR
-----END PGP SIGNATURE-----
More information about the Gnupg-users
mailing list