Excerpts from Robert J. Hansen's message of Tue Oct 12 15:25:50 +0200 2010:
> These two attack modes (root and user access) cover the overwhelming > majority of instances today, so already this hypothetical attack is an > exotic. That most mainstream systems are painfully easy to attack doesn't imply we should stop trying to make systems more secure. One instance where the proposed mechanism (in conjunction with the new version of gpg-agent that will handle the secret keys itself) would be both useful and secure is Sugar [1] in combination with Rainbow [2]. Depending on who you believe, there are currently some hundred thousand to over a million systems currently running this combination (on OLPC [3] XO-1 [4]). Sascha [1] https://www.sugarlabs.org/ [2] http://wiki.laptop.org/go/Rainbow [3] http://www.laptop.org/ [4] http://wiki.laptop.org/go/XO-1 -- http://sascha.silbe.org/ http://www.infra-silbe.de/
signature.asc
Description: PGP signature
_______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
