Re: handling private keys

To: debian-security@lists.debian.org
Subject: Re: handling private keys
From: Radu Spineanu <radus@smartpost.ro>
Date: Tue, 28 Jun 2005 18:29:22 +0300
Message-id: <[🔎] 42C16CD2.4020907@smartpost.ro>
In-reply-to: <[🔎] 9044cb32050628062062690df@mail.gmail.com>
References: <[🔎] 42C14D52.4060702@smartpost.ro> <[🔎] 9044cb32050628062062690df@mail.gmail.com>

Edward Faulkner wrote:

> As to your question, once someone roots your box all bets are off.  If
> you're really paranoid about these keys, keep them on a dedicated
> machine that's extremely locked down.  Or even a machine with no
> network at all, and move data back and forth on a usb drive.
> 
I was thinking about doing local authentication using gpg keys stored on
the usb memory.

I remember something about an OS that handled all authentication using
one daemon, i can't remember how it was called.

Radu

Reply to:

References:
- handling private keys
  - From: Radu Spineanu <radus@smartpost.ro>
- Re: handling private keys
  - From: Edward Faulkner <edfaulkner@gmail.com>

Prev by Date: Re: handling private keys
Next by Date: Re: Bad press related to (missing) Debian security
Previous by thread: Re: handling private keys
Next by thread: Re: handling private keys
Index(es):
- Date
- Thread