Hibernation and secret keys

Werner Koch wk at gnupg.org
Wed Feb 11 12:18:20 CET 2009

On Wed, 11 Feb 2009 02:17, dshaw at jabberwocky.com said:

> GPG does have some countermeasures against this sort of thing, but
> given the nature of the problem, they are far from infallible.

For example you can send a HUP to gpg-agent from a suspend event script.
This makes sure that gpg-agent clears its passphrase cache.  It doesn't
help if session keys are still in memory.



Die Gedanken sind frei.  Auschnahme regelt ein Bundeschgesetz.

More information about the Gnupg-users mailing list