17 Oct
2002
17 Oct
'02
08:46
I would recommend using a smart card in this case, because you can remove it if you don't need it, and the private key never leaves the card - all operations are performed on-card. So an attacker cannot copy your key to his private machine and try to decrypt it etc. In addition, if keyboard snooping is an issue, you can even use a card reader with a keypad, so that you can enter the PIN without involvement from the host OS.
does the actual (as in 'the one that comes with suse 8.0) gpg do smartcards? if so, which reader / card combo would I need? I _DO_ have a card terminal from towitoko somewhere... bye, [MH]