+1 russ. This is true of the dropbox daemon too. Are we to throw out DDs with dropboxd installed? Wine? On Apr 4, 2014 7:23 PM, "Russ Allbery" <[email protected]> wrote:
> Gunnar Wolf <[email protected]> writes: > > > Urgh... > > > Well, please enlighten me here: Without fully auditing the Javascript > > code you are using to do the crypto client-side, can you *really* be > > certain your private half has not travelled to Keybase? > > If Javascript running in a browser has access to your GPG secret key > without you explicitly pasting it into the browser, I think you have > larger problems.... > > -- > Russ Allbery ([email protected]) <http://www.eyrie.org/~eagle/> > > > -- > To UNSUBSCRIBE, email to [email protected] > with a subject of "unsubscribe". Trouble? Contact > [email protected] > Archive: https://lists.debian.org/[email protected] > >
