eric@lucii.org on Tue, 19 Feb 2002 01:10:12 +0100


[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] GPG question 

Bill:

"so simple - like the jitterbug it plumb evaded me"
                            - Jimmy Buffett

"chmod u+s /usr/bin/gpg" took care of the insecure memory.

I'm still working on the "secret key witghout public key" issue.  

Part of the problem may be that I imported keys from my pgp 6.x 
keyring on the NT box 

There are at least two errors in that keyring that I've been 
unable to eradicate.  Perhaps this message is related to that.  
I'll be generating new keys soon (and yes, I'll create the
revocation cert at the same time - per previous advice here on
PLUG).  Then I can start over and clean out the keys.  Since I have
access to the keyserver via the internet I should not need to 
enter everybody's public key on my keyring for things to work properly
(AFAIK).

Thanks Bill.

Eric


On Mon, Feb 18, 2002 at 03:02:15PM -0500, Bill Jonas wrote:
> On Mon, Feb 18, 2002 at 10:31:15AM -0500, eric@lucii.org wrote:
> > gpg: Warning: using insecure memory!
> > gpg: key E1D5DBC3: secret key without public key - skipped
> 
> The word "insecure" appears twice in the gpg man page.
> 
>        --no-secmem-warning
>                  Suppress  the warning about "using insecure mem­
>                  ory".
> ...
> BUGS
>        On  many  systems  this  program  should  be  installed as
>        setuid(root). This is  necessary  to  lock  memory  pages.
>        Locking  memory  pages  prevents the operating system from
>        writing memory pages to disk. If you get no  warning  mes­
>        sage  about insecure memory your operating system supports
>        locking without being root. The program drops root  privi­
>        leges as soon as locked memory is allocated.
> 
> Looks like you need to make it SUID root.
> 
> bj@dozer:~$ ls -l `which gpg`
> -rwsr-xr-x    1 root     root       611056 Jun 16  2001 /usr/bin/gpg*
> 
> I get no warnings, FWIW.
> 
> -- 
> Bill Jonas    *    bill@billjonas.com    *    http://www.billjonas.com/
> 
> Developer/SysAdmin for hire!   See http://www.billjonas.com/resume.html



-- 
#   Eric Allan Lucas 
# "Oh, I have slipped the surly bond of earth
#  And danced the skies on laughter-silvered wings..
#              -- John Gillespie Magee Jr.

Attachment: pgp4uKg1pP0Ea.pgp
Description: PGP signature