From: Rich Salz <rsalz@osf.org>
To: cypherpunks@toad.com
Message Hash: e27734b482d53fcca04abcfc79d6eed984ff63918c6c213b050194f69fefe3ff
Message ID: <9412020321.AA07870@sulphur.osf.org>
Reply To: N/A
UTC Datetime: 1994-12-02 03:25:46 UTC
Raw Date: Thu, 1 Dec 94 19:25:46 PST
From: Rich Salz <rsalz@osf.org>
Date: Thu, 1 Dec 94 19:25:46 PST
To: cypherpunks@toad.com
Subject: Re: public accounts / PGP / passphrases
Message-ID: <9412020321.AA07870@sulphur.osf.org>
MIME-Version: 1.0
Content-Type: text/plain
> >Could someone please elaborate on the foolishness of using PGP with a
> >passphrase on a public machine (as I do) ? Am I wrong in thinking that my
> >secret key is useless to an intruder until she guesses my passphrase ?
The sys admin can change the kernel running on your machine. A special
kernel can be built so that when a particular user is typing on a tty
and the executing process is named "pgp" then all keystrokes they type
are recorded into a file for the administrator to read later on.
The local machine must be part of the trusted computing base.
/r$
Return to December 1994
Return to “Rich Salz <rsalz@osf.org>”
1994-12-02 (Thu, 1 Dec 94 19:25:46 PST) - Re: public accounts / PGP / passphrases - Rich Salz <rsalz@osf.org>