From owner-freebsd-hackers Mon Mar 11 16:15:59 2002 Delivered-To: freebsd-hackers@freebsd.org Received: from utility.clubscholarship.com (utility.clubscholarship.com [198.78.70.175]) by hub.freebsd.org (Postfix) with ESMTP id CB1BC37B42B; Mon, 11 Mar 2002 16:15:29 -0800 (PST) Received: from localhost (root@localhost) by utility.clubscholarship.com (8.11.6/8.11.6) with ESMTP id g2C0DG569744; Mon, 11 Mar 2002 16:13:16 -0800 (PST) (envelope-from root@utility.clubscholarship.com) Date: Mon, 11 Mar 2002 16:13:16 -0800 (PST) From: Patrick Thomas To: Cc: Subject: cryptography implications (privacy) of FreeBSD jail ? Message-ID: <20020311161036.B69654-100000@utility.clubscholarship.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-hackers@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Let's say I am running in a jail, and say 5 other people are running in other, seperate jails on the same machine. Now lets say I start up pgp, and generate my keys, and generally use pgp through the command line in my jail. Or, instead of pgp I do other crypto related sensitive activities... what is my risk here ? Can someone either on the host machine or in one of the other jails watch memory on the machine and discern things like my keys or passphrases or have very easy access to the data I am decrypting ? Please feel free to expand on the topic as well, in case there are related questions that I am _not_ asking, but should be... --pt To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message