[Pkg-gnupg-maint] Bug#598471: Bug#598471: using insecure memory on GNU/kFreeBSD

Thijs Kinkhorst thijs at debian.org
Sat Nov 13 11:55:43 UTC 2010


On Wed, September 29, 2010 14:36, Werner Koch wrote:
> On Wed, 29 Sep 2010 11:41, rmh at debian.org said:
>
>> Upstream recommends [2] setting the SUID bit and assures that "the
>> program
>> drops root privileges as soon as locked memory is allocated".
>
> However it is much easier and more secure to enable encrypted swap
> space than to use mlock.  It seems that gbde and the init scripts are
> missing on GNU/kfreebsd.

Robert, as I don't have knowledge of GNU/kFreeBSD, can you say whether the
suggestion by Werner is indeed a better way to solve this problem?


Cheers,
Thijs





More information about the Pkg-gnupg-maint mailing list