From mboxrd@z Thu Jan 1 00:00:00 1970 X-Msuck: nntp://news.gmane.io/gmane.emacs.gnus.general/63671 Path: news.gmane.org!not-for-mail From: Daiki Ueno Newsgroups: gmane.emacs.devel,gmane.emacs.gnus.general Subject: Re: Security flaw in pgg-gpg-process-region? Date: Tue, 05 Sep 2006 20:57:26 +0900 Message-ID: <8fe569ef-0b5e-4c29-b434-686fce4c619b@well-done.deisui.org> References: <9c79059a-61a9-4fa4-8376-638753320a14@well-done.deisui.org> <4aaf7080-0e3d-4a75-aff5-f9d5bcd0437f@well-done.deisui.org> <87fyjz2gaj.fsf@pacem.orebokech.com> <87ac5gnccs.fsf@mid.deneb.enyo.de> NNTP-Posting-Host: main.gmane.org Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII X-Trace: sea.gmane.org 1157457528 3058 80.91.229.2 (5 Sep 2006 11:58:48 GMT) X-Complaints-To: usenet@sea.gmane.org NNTP-Posting-Date: Tue, 5 Sep 2006 11:58:48 +0000 (UTC) Cc: satyaki@chicory.stanford.edu, Reiner.Steib@gmx.de, ding@gnus.org, emacs-devel@gnu.org, fw@deneb.enyo.de, jas@extundo.com Original-X-From: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Tue Sep 05 13:58:45 2006 Return-path: Envelope-to: ged-emacs-devel@m.gmane.org Original-Received: from lists.gnu.org ([199.232.76.165]) by ciao.gmane.org with esmtp (Exim 4.43) id 1GKZZd-0001ha-6z for ged-emacs-devel@m.gmane.org; Tue, 05 Sep 2006 13:58:37 +0200 Original-Received: from localhost ([127.0.0.1] helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.43) id 1GKZZc-00073o-Se for ged-emacs-devel@m.gmane.org; Tue, 05 Sep 2006 07:58:36 -0400 Original-Received: from mailman by lists.gnu.org with tmda-scanned (Exim 4.43) id 1GKZZR-00073U-RR for emacs-devel@gnu.org; Tue, 05 Sep 2006 07:58:25 -0400 Original-Received: from exim by lists.gnu.org with spam-scanned (Exim 4.43) id 1GKZZL-0006wG-Pz for emacs-devel@gnu.org; Tue, 05 Sep 2006 07:58:25 -0400 Original-Received: from [199.232.76.173] (helo=monty-python.gnu.org) by lists.gnu.org with esmtp (Exim 4.43) id 1GKZZL-0006w2-IW for emacs-devel@gnu.org; Tue, 05 Sep 2006 07:58:19 -0400 Original-Received: from [221.255.76.220] (helo=localhost) by monty-python.gnu.org with esmtps (TLS-1.0:RSA_AES_256_CBC_SHA:32) (Exim 4.52) id 1GKZk0-0008Bk-SM; Tue, 05 Sep 2006 08:09:21 -0400 Original-Received: from localhost ([127.0.0.1] helo=well-done.deisui.org ident=ueno) by localhost with esmtp (Exim 4.63) (envelope-from ) id 1GKZYU-0001Bt-F6; Tue, 05 Sep 2006 20:57:26 +0900 Original-To: rms@gnu.org X-Attribution: DU In-Reply-To: (Richard Stallman's message of "Tue, 05 Sep 2006 05:43:27 -0400") X-BeenThere: emacs-devel@gnu.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Emacs development discussions." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Original-Sender: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Errors-To: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Xref: news.gmane.org gmane.emacs.devel:59367 gmane.emacs.gnus.general:63671 Archived-At: >>>>> In >>>>> Richard Stallman wrote: > When decrypting PGP messages PGG will send your passphrase along > with data, so if Emacs process is killed and [someone else has] > stolen your note PC, your passphrase can also be stolen from the > temp file. > Since it is not likely for Emacs to be killed just while it is running > GPG, I think that very few users have such temp files lying around. > So the thief would need to be very lucky (as well as knowing about > such things) in order get anyone's pass phrase. I don't think so. The rationale is, (1) decrypting large data takes some time, (2) the user tends to interrupt Emacs from the terminal, and (3) every file PGG writes out are in the same format "p@ssphr@se -----BEGIN PGP MESSAGE----- ... -----END PGP MESSAGE-----" I think every security problem looks not feasible, at a glance. Regards, -- Daiki Ueno