Il 13/02/2015 23:23, Daniel Kahn Gillmor ha scritto: > The traditional argument against this sort of feature is that someone > with control over your local socket would most likely have control over > your graphical environment, and therefore could dismiss or hide any > prompt that comes up (so the prompting is a false sense of security). Who told, not so long ago, that if the attacker have control of the machine you're using you've already lost? The machine from where one is originating the ssh connection have to be quite trusted. Else you need a smartcard with out-of-band authorization for every operation.
BYtE, Diego _______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
