On Wed, Feb 28, 2001 at 10:45:58AM +1100, Howard Lowndes wrote:
> I actually burn my private keys, locked with an access phrase, onto one of
> those credit card CDs, ...
>
> This probably still doesn't overcome the problem of the CD image being
> carried in user memory space tho.
>
> Anyone know how to stop the CD image being carried in memory space?
the problem is not so much the key being in memory (it needs to get into
memory if it's ever gonna go through the cpu) but that when that memory
gets paged to disk it can potentially be read by someone else later; you
don't want that key you've taken pains to put on CD to be sitting in the
swap space of every box you use.
the software that accesses the data has to handle this. see mlock(2)
Conrad.
--
SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/
More Info: http://slug.org.au/lists/listinfo/slug
