windows binary for gnupg 1.4.11 // compilation instructions posted

vedaal at nym.hush.com vedaal at nym.hush.com
Thu Sep 22 20:48:27 CEST 2011


John Clizbe John at enigmail.net wrote on
Thu Sep 22 18:38:06 CEST 2011 :

> It can be done, but it's nontrivial. I think it's more like 
Sisyphean IMHO :-(.

OK, thought so, ;-)


>You cannot secure "everything" necessary to securely run gpg (or 
any >other program) from a USB stick.
>Please don't delude yourself into thinking you can. You can't.

OK, not on windows,
but maybe for my limited threat model I might be able to:

My threat model doesn't include any 3 letter agencies, organized 
crime outfits, or malicious hackers out to get me, 
any of whom are capable of putting a hardware keylogger on a 
friend's laptop.

Think of it as an 'envelope' threat model. 
I need an envelope, not a post-card, 
but don't need a trusted messenger to deliver my envelope by hand.

So, if , for example, in a case where I don't have my laptop with 
me,
(but I do have a usb with gpg and keyrings, and a miniDVD with 
ubuntu),

then, assuming there is no keylogger on the borrowed laptop, what 
is the problem with booting from the ubuntu miniDVD, and running 
gnupg from ubuntu while accessing the keys from the usb, and 
writing to the usb?


vedaal





More information about the Gnupg-users mailing list