Re: mlock() secure text editors?

From: all mail refused (elvis_at_notatla.demon.co.uk)
Date: 05/06/03

• Next message: LHradowy: "A script that will only check file if it has been modified since last check"
• Previous message: Jason: "mlock() secure text editors?"
• In reply to: Jason: "mlock() secure text editors?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Tue, 6 May 2003 14:13:09 +0000 (UTC)

In article <85c09e0.0305052206.134c1025@posting.google.com>, Jason wrote:

>Anyone aware of a text editor that can be used to edit files destined
>for encryption? That is, something that doesn't dump the plaintext to
>disk as backup files, uses mlock() to keep data from being swapped out
>and zeros out memory blocks before they're free()'ed.

You can configure many systems with no swap. Even the ones that require it
at install time can IME have it removed afterward.

>Ideally, it'd integrate with gpg so that the data gets encrypted
>before it ever gets to disk, avoiding the need to overwrite deleted
>disk blocks multiple times.

Sounds like you want a cryptographic filesystem for that part of your
requirements.

>to a RAM disk. Wiping out free()d pages after vi exits would be
>harder - worst case, I could run a memory-eating mlockall() program
>that would malloc() and zero all available physical memory then exit.

You'd prefer the editor to wipe its pages before free()ing them.

There's also volatile shared memory, which is really meant for holding
keys persistently available to a single EUID but without remaining as
plaintext in RAM where physical access would result in disclosure.
    http://www.notatla.demon.co.uk/SOFTWARE/vshm_lx_2.2.12_patch.asc

-- 
decoy mail addresses: obtain username via 0x4f/tcp or 0x50/tcp
I don't use: mpeti_ka15@rediffmail.com sales@licaplast.com
             stopmail100@emailacc.com  sir_nat_the_brat@hotmail.com

• Next message: LHradowy: "A script that will only check file if it has been modified since last check"
• Previous message: Jason: "mlock() secure text editors?"
• In reply to: Jason: "mlock() secure text editors?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: How Does One ... > Jeff Gaines wrote: ... you have 256MB of physical memory on your PC so XP would normally ... >> memory unused so it doesn't appear to be a memory shortage. ... >> Have you checked your disk recently? ... (uk.people.silversurfers) Re: How can I force an app to be completely hold in physical memory ? ... You are seeing disk I/O issues. ... really resident in memory. ... Now there should be enough memory to hold certain apps completely in physical memory. ... (microsoft.public.windowsxp.help_and_support) Re: High Paging ... Memory> Available MBytes -> Measures the amount of physical memory ... was not in disk and had to be retrieved from disk. ... paging file was not properly sized. ... (microsoft.public.windows.server.general) Re: Copying huge amount of data on ReiserFS, XFS and Silicon Image 3112 cause oops. ... > You would need to be within the size of the physical memory of your ... > memory, 1 Gbyte disk free. ... send the line "unsubscribe linux-kernel" in ... (Linux-Kernel) Re: Is my process using swap ? ... Pages of your process might be mapped to files on disk. ... the operating system will discard some of those pages ... freeing up memory for other purposes. ... to run low on physical memory. ... (comp.unix.solaris)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint