Jason Gunthorpe <[EMAIL PROTECTED]> writes: > On Wed, 8 Jul 1998, Hamish Moffatt wrote: > > > On generating gpg keys, how can one go about getting enough entropy on > > one's own machine?
Odd, in the past I just moved the mouse around a bit and that was enough. I was still able to create a 2048 bit key fairly easily just now. > > gpg is unable to lock memory hence > I got this warning on linux (2.0.34) too :< This means gpg isn't installed setuid root. Which means it has no way to prevent key data from being paged out to swap. Of course the "classic" pgp doesn't even try to deal with this problem so you're no worse off. Basically if you don't trust the sysadmins of the machines you're in trouble anyways (They could be eavesdropping on the terminal for your password). The main danger here is that future compromises may be able to recover key data. greg -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
