[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

PGP: Environment protection for UNIX



Phil & Cypherpunks:

Here's a little program that demostrates a fairly simple way to immprove pgp
security on multi-user systems....

	main (int argn, char **argv, char **envv)
	{
	    for ( ; *envv ; ++envv) {
	        if (!strncmp(*envv,"PGP",3)) {
	            char *c=*envv;
	            while (*c) *c++=' ';
	        } /* end of if */
	    } /* end of for */
	    system("printenv");
	    sleep(10);
	}

It deletes from it's own environment any environment variable that
begins with the string "PGP".  It ain't bullet-proof but just by
grepping the environment of netcom, I've identified several PGP users:

	yonder
	nickt
	centaur
	henderso

This hack would prevent that...  'Course for UNIX, PGPPATH should
default to $HOME/.pgp anyway.

	Not doin' the work I oughta be doing,
	Stig...
	

/* Jonathan Stigelman, [email protected], PGP public key on request */
/* fingerprint = 32 DF B9 19 AE 28 D1 7A  A3 9D 0B 1A 33 13 4D 7F */