Bill Jonas on Mon, 18 Feb 2002 21:10:19 +0100


[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] GPG question


On Mon, Feb 18, 2002 at 10:31:15AM -0500, eric@lucii.org wrote:
> gpg: Warning: using insecure memory!
> gpg: key E1D5DBC3: secret key without public key - skipped

The word "insecure" appears twice in the gpg man page.

       --no-secmem-warning
                 Suppress  the warning about "using insecure mem­
                 ory".
...
BUGS
       On  many  systems  this  program  should  be  installed as
       setuid(root). This is  necessary  to  lock  memory  pages.
       Locking  memory  pages  prevents the operating system from
       writing memory pages to disk. If you get no  warning  mes­
       sage  about insecure memory your operating system supports
       locking without being root. The program drops root  privi­
       leges as soon as locked memory is allocated.

Looks like you need to make it SUID root.

bj@dozer:~$ ls -l `which gpg`
-rwsr-xr-x    1 root     root       611056 Jun 16  2001 /usr/bin/gpg*

I get no warnings, FWIW.

-- 
Bill Jonas    *    bill@billjonas.com    *    http://www.billjonas.com/

Developer/SysAdmin for hire!   See http://www.billjonas.com/resume.html

Attachment: pgprZ3tHtcs9N.pgp
Description: PGP signature