severity 712744 normal tags 712744 -security +moreinfo thanks Hi Samuel,
> gpg-agent could do prctl(PR_SET_DUMPABLE, 0, 0, 0, 0) to protect user > secrets from appearing in coredumps or being stolen using ptrace(), like > ssh-agent does. Unfortunately it doesn't yet do this. gpg-agent uses setrlimit to prevent core dumps. Is there any indication that this is not sufficient? Cheers, Thijs
signature.asc
Description: This is a digitally signed message part.
