1997-06-14 - Re: Impact of Netscape kernel hole
Header Data
From: John Young <jya@pipeline.com>
To: cypherpunks@toad.com
Message Hash: deb4901258add54f1819f40d2c4dcb75bd3968c6c1a77613214e655a718b514f
Message ID: <1.5.4.32.19970614004420.009dc794@pop.pipeline.com>
Reply To: N/A
UTC Datetime: 1997-06-14 01:17:29 UTC
Raw Date: Sat, 14 Jun 1997 09:17:29 +0800
Raw message
From: John Young <jya@pipeline.com>
Date: Sat, 14 Jun 1997 09:17:29 +0800
To: cypherpunks@toad.com
Subject: Re: Impact of Netscape kernel hole
Message-ID: <1.5.4.32.19970614004420.009dc794@pop.pipeline.com>
MIME-Version: 1.0
Content-Type: text/plain
Huge Cajones wrote:
>Tim's post (although refuted by Marc) raises some serious issues since I
>suspect that Joe Public has his secret key sitting in c:\pgp\secring.pgp
Isn't it widely known that the secret key is not to be stored in the box, as the
PGP manual and security pubs emphasize?
Still, it would be good to know if a Netscape snooper could snarf a key while
it is being used by PGP to decrypt, that is, whether the hole allows snooping
on dynamic ops or just on stored info.
Does anyone know if the the hole finders are discussing this on the Net, and
if so, where? What are the folks at Netscape saying? Tom, Jeff?
Thread
Return to June 1997
- Return to “Adam Shostack <adam@homeport.org>”
- Return to “ichudov@Algebra.COM (Igor Chudov @ home)”
- Return to “John Adams <jadams@seahawk.navy.mil>”
- Return to “John Young <jya@pipeline.com>”
Return to “Tom Weinstein <tomw@netscape.com>”
- 1997-06-14 (Sat, 14 Jun 1997 09:17:29 +0800) - Re: Impact of Netscape kernel hole - John Young <jya@pipeline.com>
- 1997-06-14 (Sat, 14 Jun 1997 10:00:27 +0800) - Re: Impact of Netscape kernel hole - Tom Weinstein <tomw@netscape.com>
- 1997-06-14 (Sat, 14 Jun 1997 10:59:05 +0800) - Re: Impact of Netscape kernel hole - ichudov@Algebra.COM (Igor Chudov @ home)
- 1997-06-14 (Sun, 15 Jun 1997 06:41:26 +0800) - Re: Impact of Netscape kernel hole - Tom Weinstein <tomw@netscape.com>
- 1997-06-25 (Wed, 25 Jun 1997 23:32:18 +0800) - Re: Impact of Netscape kernel hole - John Adams <jadams@seahawk.navy.mil>
- 1997-06-14 (Sun, 15 Jun 1997 06:41:26 +0800) - Re: Impact of Netscape kernel hole - Tom Weinstein <tomw@netscape.com>
- 1997-06-14 (Sat, 14 Jun 1997 10:59:05 +0800) - Re: Impact of Netscape kernel hole - ichudov@Algebra.COM (Igor Chudov @ home)
- 1997-06-14 (Sat, 14 Jun 1997 22:41:06 +0800) - Re: Impact of Netscape kernel hole - Adam Shostack <adam@homeport.org>
- 1997-06-14 (Sat, 14 Jun 1997 10:00:27 +0800) - Re: Impact of Netscape kernel hole - Tom Weinstein <tomw@netscape.com>