windows binary for gnupg 1.4.11 // compilation instructions posted
vedaal at nym.hush.com
vedaal at nym.hush.com
Thu Sep 22 20:48:27 CEST 2011
John Clizbe John at enigmail.net wrote on
Thu Sep 22 18:38:06 CEST 2011 :
> It can be done, but it's nontrivial. I think it's more like
Sisyphean IMHO :-(.
OK, thought so, ;-)
>You cannot secure "everything" necessary to securely run gpg (or
any >other program) from a USB stick.
>Please don't delude yourself into thinking you can. You can't.
OK, not on windows,
but maybe for my limited threat model I might be able to:
My threat model doesn't include any 3 letter agencies, organized
crime outfits, or malicious hackers out to get me,
any of whom are capable of putting a hardware keylogger on a
friend's laptop.
Think of it as an 'envelope' threat model.
I need an envelope, not a post-card,
but don't need a trusted messenger to deliver my envelope by hand.
So, if , for example, in a case where I don't have my laptop with
me,
(but I do have a usb with gpg and keyrings, and a miniDVD with
ubuntu),
then, assuming there is no keylogger on the borrowed laptop, what
is the problem with booting from the ubuntu miniDVD, and running
gnupg from ubuntu while accessing the keys from the usb, and
writing to the usb?
vedaal
More information about the Gnupg-users
mailing list