Gnupg on openbsd with enigma rouncube plugin
Werner Koch
wk at gnupg.org
Mon Sep 26 15:50:33 CEST 2022
On Mon, 26 Sep 2022 00:30, Ángel said:
> You would need to recompile gpg with that change / convince the OpenBSD
Please don't do that. Actually you would have to recompile Libgcrypt.
But don't do that (recompile with changes to the random code).
> My recommendation: create the /dev nodes inside the chroot
Yes. You may also want to run gpg-agent via the agent-extra-socket (see
gpgconf -L) thing for extra security; its not an out of the box feature,
though. gpg-agent takes care of the private keys and having it isolated
from the web server is a Good Thing.
Salam-Shalom,
Werner
--
The pioneers of a warless world are the youth that
refuse military service. - A. Einstein
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 227 bytes
Desc: not available
URL: <https://lists.gnupg.org/pipermail/gnupg-users/attachments/20220926/93bf410c/attachment.sig>
More information about the Gnupg-users
mailing list