1
0
Fork 0
mirror of https://github.com/pgpainless/pgpainless.git synced 2024-11-26 06:12:06 +01:00

Add explanation for secret key protector hint to documentation

This commit is contained in:
Paul Schaub 2022-09-05 13:46:12 +02:00
parent 0d23809524
commit fb0908ffd1
Signed by: vanitasvitae
GPG key ID: 62BEE9264BF17311

View file

@ -81,6 +81,7 @@ unlikely in this key-space.
Furthermore, multiple OpenPGP keys could contain the same subkey, but with different passphrases set. Furthermore, multiple OpenPGP keys could contain the same subkey, but with different passphrases set.
If the same `SecretKeyRingProtector` is used for two OpenPGP keys with the same subkey, but different passwords, If the same `SecretKeyRingProtector` is used for two OpenPGP keys with the same subkey, but different passwords,
the key-id collision will cause the password to be overwritten for one of the keys, which might result in issues. the key-id collision will cause the password to be overwritten for one of the keys, which might result in issues.
See `FLO-04-004 WP2` of the [2021 security audit](https://cure53.de/pentest-report_pgpainless.pdf) for more details.
::: :::
Most `SecretKeyRingProtector` implementations can be instantiated with custom `KeyRingProtectionSettings`. Most `SecretKeyRingProtector` implementations can be instantiated with custom `KeyRingProtectionSettings`.