Re: [Keyrings] Re: [PATCH 01/04] Add multi-precision-integer maths library
From: Adrian Bunk
Date: Sun Jan 29 2006 - 18:13:59 EST
On Sun, Jan 29, 2006 at 05:54:00PM -0500, Kyle Moffett wrote:
>...
> If we use this proposed in-kernel system, then I can give my
> certificate/pubkey to the kernel code, and then my web browser, SSH,
> and anything else can automatically use it to decrypt and sign data
> without being able to directly access (and thus compromise) the key.
> If I later notice what I think might be a rogue process, I can
> instantly and globally revoke all access to that keypair.
Why do you need this in the kernel?
A userspace daemon could do exactly the same.
> Cheers,
> Kyle Moffett
cu
Adrian
--
"Is there not promise of rain?" Ling Tan asked suddenly out
of the darkness. There had been need of rain for many days.
"Only a promise," Lao Er said.
Pearl S. Buck - Dragon Seed
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/