Shawn, et al -- ...and then Shawn said... % % On 05/28, David T-G said something like: % > So that takes care of that example, and maybe it was a bad one. I can't % > come up with one that's better, either, but I have in mind something to % > which I must refer more than once (hmmm... perhaps a gpg passphrase as a % > script works with encrypted files or such) and thus must decrypt to use % > (or must I after all?). % > % > Am *I* making sense? If so, am I making mountains where there are none? % % As I see it, there's no perfect answer.
Good; I'm officially not lost, then, even if I'm not entirely sure where I am :-) % % At some point, the script will have cleartext sensitive info in a var, % but these vars can be destroyed when you are done with them. Through something like an undef command? OK again. % % Also, there is the vulnerability of a third party discovering the cipher % key and the password protecting it given access to the programs memory, % thus deleting the protection afforded by a cipher. Well, yeah. % % Nothing protects you from this, really. That is, except burning the % hardware the script is running on, making sure to capture the smoke, % and dumping the ashes over the edge of the world. *grin* Understood. % % -- % Shawn Leas % [EMAIL PROTECTED] % % I got pulled over by a cop, and he said, 'do you know the speed limit % here is 50 miles per hour?'. So I said, 'oh, that's OK, I'm not going % that far.'. % -- Stephen Wright Thanks again & HAND :-D -- David T-G * It's easier to fight for one's principles (play) [EMAIL PROTECTED] * than to live up to them. -- fortune cookie (work) [EMAIL PROTECTED] http://www.justpickone.org/davidtg/ Shpx gur Pbzzhavpngvbaf Qrprapl Npg!
msg24954/pgp00000.pgp
Description: PGP signature
