Where to save passphrases?
Heinz Diehl
htd at fritha.org
Sat Jul 26 12:41:53 CEST 2014
On 26.07.2014, Sudhir Khanger wrote:
> Or does that again fall in risky behavior category?
Only you can answer this question, because the answer depends entirely
on your thread model. How big is the danger of your passphrase getting
stolen when kept in memory? Are there others which have physical
access to your machine? Is there swapspac which the passphrase could
be dumped into? Does the (any) risk increase because gpg-agent holds
the passphrase over time? Is it worth the risk, matched up against the
drawbacks?
Only you can know.
More information about the Gnupg-users
mailing list