Jérémie Courrèges-Anglas writes: > Kevin Chadwick <[email protected]> writes: > > [...] > > > Another issue may be that isn't gpg GNU/GPL and can't be in base. > > That's only a detail regarding the whole problem, but there is > netpgp[1], for which there is no port yet. > > [1] http://blog.netbsd.org/tnf/entry/netpgp
netpgp requires serious auditing before it should be considered even for ports. The code is full of buffer overflows and double frees. (Interesting note: upstream never noticed them, because although they're a problem on any system, they only crash on OpenBSD due to our strict memory checks. Proactive security made these bugs visible immediately.) If anyone's interested in working on it, there is a port in progress in the openbsd-wip ports repo... https://github.com/jasperla/openbsd-wip/tree/master/security/netpgp
