Re: [patch] passphrase cache for GnuPG

From: Carlos Morgado <chbm chbm nu>
To: Balsa List <balsa-list gnome org>
Subject: Re: [patch] passphrase cache for GnuPG
Date: Fri, 11 Apr 2003 22:18:50 +0100

On Fri, 11 Apr 2003 21:07:30, Albrecht Dreß wrote:
> Am 11.04.03 20:40 schrieb(en) Carlos Morgado:
>> what's the rationale behind the system wide policy ?
> 
> Imagine a company or institution which simply forbids or limits using such 
> stuff as it is still a security risk. Saying enable=false in the global 
> config file, they can still use pre-built deb's/rpm's.
> 

Ah, right. I didn't consider that angle - good point.

> I must admit that I am not sure if it's needed at all, as I can not decide 
> if my approach is really safe or not. I only know that many sysops tend to 
> be conservative here, so IMHO it's nice to have a choice.
> 

What about ANDing the system config and the user config ? This subverts
a bit your idea but makes more paranoid^Wcautious ;) users confortable.


-- 
Carlos Morgado - chbm(at)chbm(dot)nu - http://chbm.nu/ -- gpgkey: 0x1FC57F0A 
http://wwwkeys.pgp.net/ FP:0A27 35D3 C448 3641 0573 6876 2A37 4BB2 1FC5 7F0A

Follow-Ups:
- Re: [patch] passphrase cache for GnuPG
  - From: Albrecht Dreß

References:
- [patch] passphrase cache for GnuPG
  - From: Albrecht Dreß
- Re: [patch] passphrase cache for GnuPG
  - From: Carlos Morgado
- Re: [patch] passphrase cache for GnuPG
  - From: Albrecht Dreß

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]