[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Log File a security hole?

To: Mail45 <[email protected]>
Subject: Log File a security hole?
From: "Robert Rothenburg 'Walking-Owl'" <[email protected]>
Date: Fri, 31 Jan 1997 02:22:37 +0000
CC: [email protected]
Comments: Authenticated sender is <[email protected]>
Organization: What organization?
Priority: normal
Sender: [email protected]

Is there a way to disable the \WINDOWS\PGPW_32.LOG?
In subtle ways it's a security hole if left to accumulate over time,
since it keeps records of which keys you encrypted messages to.

(Imagine somebody using an anonymous remailer but g-d forbid is 
unaware of this log file, and somebody discovers that messages were 
encrypted to such a beast...)

I understand in certain group/corporate environs one would want 
logging; in others, one doesn't need it or should have the option (in 
an easily found place) to wipe it every once in a while.




-----
"The word to kill ain't dirty     | Robert Rothenburg ([email protected])
 I used it in the last line       | http://www.asb.com/usr/wlkngowl/
 but use a short word for lovin'  | Se habla PGP:  Reply with the subject
 and dad you wind up doin' time." | 'send pgp-key' for my public key.

Prev by Date: [noise] RE: Shave the Whales
Next by Date: Re: Workaround for filtering/cybersitter
Prev by thread: Re: Intelligence Update (fwd)
Next by thread: Log File a security hole?
Index(es):
- Date
- Thread