FreeBSD Memory Pages Not Locked?
=?unknown-8bit?Q?S=EAr=EAciya_Kurdistan=EE?=
sereciya at kurdistan.ath.cx
Wed Apr 16 15:20:57 PDT 2003
Hello,
I recently installed "gpnupg" from the ports collection and
upon running it (after the key generation), I found myself
seeing the following error:
gpg: Warning: using insecure memory!
... Those of you who are impatient and think that this is a
gpg &| port specific problem, please be patient and read on ...
from: http://www.gnupg.org/documentation/faqs.html#q6.1
Here's what the GPG FAQ says:
"6.1) Why do I get "gpg: Warning: using insecure memory!"
On many systems this program should be installed as setuid(root).
This is necessary to lock memory pages. Locking memory pages
prevents the operating system from writing them to disk and
thereby keeping your secret keys really secret. If you get no
warning message about insecure memory your operating system
supports locking without being root. The program drops root
privileges as soon as locked memory is allocated."
So my question is: does FreeBSD really not have support for
locking memory pages?
if this is true, then what is the reason
that this has not yet been implemented,
is this not an important security feature?
otherwise... if FreeBSD does in fact have
support for locking memory pages, then
why am I getting this error message?
If any of you have encountered this problem, and would like
to offer some help &| advice, you have a captive audience
of at least one, me!
Thanks in advance,
--$êrêciya Kurdistanî
+--------------------------------------------------------------+
| Welat xwe ava nake, dest bidin hevdu, pist nedin tu dijminî |
| Riya azadiyê ne hêsan e, hêviya xwe bernedin, dema me |
| nêzîk e. |
| |
| Hevaltî bi kesên du rû nekin, hevaltî bi hevdu ra bikin |
| Ne ji hevaltiya wan kesên pêxwas û rû dirêj, ne bi wan |
| kesên xwînperest, ne jî ji yên din. |
| |
| -$êrêciya Kurdistanî |
+--------------------------------------------------------------+
translation provided on request: sereciya at kurdistan.ath.cx
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-performance/attachments/20030416/faad091c/attachment.bin
More information about the freebsd-performance
mailing list