[Tickets #12099] Re: create gpg keys for the 21th century
noreply at bugs.horde.org
noreply at bugs.horde.org
Mon Mar 18 10:02:16 UTC 2013
DO NOT REPLY TO THIS MESSAGE. THIS EMAIL ADDRESS IS NOT MONITORED.
Ticket URL: http://bugs.horde.org/ticket/12099
------------------------------------------------------------------------------
Ticket | 12099
Updated By | arjen+horde at de-korte.org
Summary | create gpg keys for the 21th century
Queue | Horde Base
Version | Git master
Type | Bug
State | Feedback
Priority | 2. Medium
Milestone |
Patch | 1
Owners | Michael Slusarz
------------------------------------------------------------------------------
arjen+horde at de-korte.org (2013-03-18 10:02) wrote:
IMHO the length of the key is the least of your worries here.
Unless you have ultimate trust in the person who is administrating the
webserver (ie, *you* are the one in charge), there is no guarantee
that nobody has access to your private key. As an administrator it
would be trivial to log the passwords of private keys (if any) and the
keys themselves are also present.
If confidentiality is really an issue, you shouldn't be using PGP (or
S/MIME) in Horde in the first place.
More information about the bugs
mailing list