From owner-freebsd-security Thu Dec 27 14:48:54 2001 Delivered-To: freebsd-security@freebsd.org Received: from topperwein.dyndns.org (acs-24-154-28-168.zoominternet.net [24.154.28.168]) by hub.freebsd.org (Postfix) with ESMTP id C8E7A37B416 for ; Thu, 27 Dec 2001 14:48:48 -0800 (PST) Received: from topperwein (topperwein [192.168.168.10]) by topperwein.dyndns.org (8.11.6/8.11.6) with ESMTP id fBRMmnG01712 for ; Thu, 27 Dec 2001 17:48:50 -0500 (EST) (envelope-from behanna@zbzoom.net) Date: Thu, 27 Dec 2001 17:48:44 -0500 (EST) From: Chris BeHanna Reply-To: Chris BeHanna To: Subject: Re: Invalid self-signature (was: Re: FreeBSD Ports Security Advisory FreeBSD-SA-01:67.htdig) In-Reply-To: <20011217230335.GB658@shall.anarcat.dyndns.org> Message-ID: <20011227174727.L93274-100000@topperwein.dyndns.org> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Mon, 17 Dec 2001, The Anarcat wrote: > Is it me or is there something wrong with the signer keys on the > keyservers? > > Mutt tells me this: > > [-- PGP output follows (current time: Mon Dec 17 18:01:10 2001) --] > gpg: Warning: using insecure memory! ^^^^^^^^^^^^^^^^^^^^^ This is itself a problem. gpg needs to be setuid root in order to lock pages in memory, so that your passphrase never makes it into the swap file. -- Chris BeHanna Software Engineer (Remove "bogus" before responding.) behanna@bogus.zbzoom.net I was raised by a pack of wild corn dogs. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message