Keeping .gnupg folder in cloud

Werner Koch wk at
Thu Sep 18 17:13:58 CEST 2014

On Thu, 18 Sep 2014 16:04, rjh at said:

> But the .gnupg folder contains a few sensitive files, such as
> random_seed.  If you publish your random seed, it's theoretically
> possible for someone to determine the internal state of your random

In the case of session keys, this is true.  For generating public keys,
I doubt that this will help: We update the internal 4800 bit RNG state
with 2400 fresh random bits before the key is generated.

But right, there are other files which should not be published.



Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.

More information about the Gnupg-users mailing list