Re: [RFC] Debian skin for AIX

To: debian-devel@lists.debian.org
Cc: debian-dpkg@lists.debian.org
Subject: Re: [RFC] Debian skin for AIX
From: Andreas Bombe <bombe@informatik.tu-muenchen.de>
Date: Mon, 11 Mar 2002 13:19:41 +0100
Message-id: <[🔎] 20020311121941.GA771@informatik.tu-muenchen.de>
Mail-followup-to: debian-devel@lists.debian.org, debian-dpkg@lists.debian.org
In-reply-to: <[🔎] Pine.LNX.3.96.1020308202052.1536A-100000@trillian.megadodo.umb>
References: <[🔎] Pine.LNX.3.96.1020308202052.1536A-100000@trillian.megadodo.umb>

On Sat, Mar 09, 2002 at 01:01:49PM -0600, Jor-el wrote:
> d.  The AIX port of GNUpg (needed for signing a package) is on rather
> shaky grounds. The build that I did of this program so that I could
> excercise dpkg functions, complains that I am 'using insecure memory' -
> whatever that means. The program appears to work, but given that I am not
> a security expert, I cant tell if it is working to spec.

It is working to spec.  GnuPG tries to lock all memory it uses into RAM
in order to avoid sensitive data being swapped to permanent media like
harddisks.

To do that, it a) has to know about a function to do that (mlockall() on
Linux) and b) has to have the correct privileges (root for mlockall()).
If these conditions aren't met it has to live with swappable memory and
warns you about that.  It would be worth fixing.

-- 
Andreas Bombe <bombe@informatik.tu-muenchen.de>    DSA key 0x04880A44

Reply to:

References:
- [RFC] Debian skin for AIX
  - From: Jor-el <jorel@trillian.megadodo.umb>

Prev by Date: Re: Bug#137828: ITP: bibtool -- an interactive editor for bibTeXdatabases
Next by Date: Re: fortunes-i18n ?
Previous by thread: Re: [RFC] Debian skin for AIX
Next by thread: Unsubscribe debian@vanhuet.nl
Index(es):
- Date
- Thread