Keeping .gnupg folder in cloud

Werner Koch wk at gnupg.org
Thu Sep 18 17:13:58 CEST 2014


On Thu, 18 Sep 2014 16:04, rjh at sixdemonbag.org said:

> But the .gnupg folder contains a few sensitive files, such as
> random_seed.  If you publish your random seed, it's theoretically
> possible for someone to determine the internal state of your random

In the case of session keys, this is true.  For generating public keys,
I doubt that this will help: We update the internal 4800 bit RNG state
with 2400 fresh random bits before the key is generated.

But right, there are other files which should not be published.


Shalom-Salam,

   Werner

-- 
Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.




More information about the Gnupg-users mailing list