[43897] in Cypherpunks
Re: Virus attacks on PGP
daemon@ATHENA.MIT.EDU (Laszlo Vecsey)
Fri Nov 24 15:31:31 1995
Date: Fri, 24 Nov 1995 15:27:20 -0500 (EST)
From: Laszlo Vecsey <master@internexus.net>
To: Piete Brooks <Piete.Brooks@cl.cam.ac.uk>
Cc: Moroni <moroni@scranton.com>, Thomas E Zerucha <zerucha@shell.portal.com>,
Bill Frantz <frantz@netcom.com>, cypherpunks@toad.com
In-Reply-To: <"swan.cl.cam.:180670:951124195035"@cl.cam.ac.uk>
> > Where can one get PGP burnt into cdrom? Or the equiptment to do it
>
> If you can wait a while, TERENA (UKERNA, SURFnet, etc) are producing a PGP CD
> at the start of next year ...
Would PGP on CD-ROM truely gaurantee a corrupt/virus free executable? A
virus already running in memory could tamper with what it's doing,
perhaps extracting the necessary keys and dumping them to a log file.
This would be especially dangerous on a UNIX system where many people
might be using PGP, thinking it is secure.
I think the only way to be safe is to actually boot up off of the CD-ROM,
and hope that the hardware in your computer physically hasn't been
tampered with :)