On Thu 2015-05-14 14:23:03 -0400, Robert J. Hansen wrote: > (pubring.kbx is readable by others for a simple reason -- it's public > data!)
It may be public data, but the particular composition of your keyring is
as sensitive as the list of names in your address book, which many
people would prefer to be private.
Also, your example omits the permissions on ~/.gnupg itself, which
hopefully should deny all permissions from anyone but the user. If
that's set properly, then ~/.gnupg/pubring.kbx having o+r should not
matter, because users can't traverse the parent directory to find the
file.
--dkg
signature.asc
Description: PGP signature
_______________________________________________ enigmail-users mailing list [email protected] To unsubscribe or make changes to your subscription click here: https://admin.hostpoint.ch/mailman/listinfo/enigmail-users_enigmail.net
