Gentoo Forums :: View topic - Unsafe permissions on .gnupg

Unsafe permissions on .gnupg

View unanswered posts
View posts from last 24 hours

Gentoo Forums Forum Index

Networking & Security

View previous topic :: View next topic

Author

Message

gsoe
Apprentice

Joined: 10 Dec 2006
Posts: 289
Location: Denmark

Posted: Thu Oct 13, 2016 8:39 am Post subject: Unsafe permissions on .gnupg

Today I suddenly got this message from gnupg, when I was trying to run kgpg:

Quote:

unsafe permissions on homedir '/home/gert/.gnupg

The permissions were

Code:

newpc .gnupg # ls -l
totalt 2412
-rw------- 1 username username 42 22 jan 2013 gpg-agent.conf
-rw-r--r-- 1 username username 348 14 jun 2015 gpg.conf
-rw-r--r-- 1 username username 371 27 feb 2011 gpg.conf.gpgconf.bak
drwx------ 2 username username 4096 11 okt 20:26 private-keys-v1.d
-rw------- 1 username username 1200290 24 mar 2014 pubring.gpg
-rw------- 1 username username 1200290 24 mar 2014 pubring.gpg~
-rw-r--r-- 1 username username 27224 20 feb 2011 pubring.kbx
-rw------- 1 username username 600 15 sep 15:41 random_seed
-rw------- 1 username username 1522 11 jun 2012 secring.gpg
-rw------- 1 username username 1400 24 mar 2014 trustdb.gpg
-rw------- 1 username username 959 14 jun 2015 trustlist.txt

I changed all filepermissions to 600 and directories to 700, which solved the problem. Unfortunately I dont know if gnupg has been changed to accept only stricter permissions, so an update caused the problem, or if the permissions somehow got altered. But I notice that the private-keys-v1.d directory was altered two days ago. I did actually use gnupg at that time, but should that cause an alteration of private-keys-v1.d?

Any cause for concern?

toralf
Developer

Joined: 01 Feb 2004
Posts: 3943
Location: Hamburg

Posted: Thu Oct 13, 2016 8:48 am Post subject:

gnupg 2.1.5 wants 0700 on ~/.gnupg

gsoe
Apprentice

Joined: 10 Dec 2006
Posts: 289
Location: Denmark

Posted: Thu Oct 13, 2016 9:07 am Post subject:

Thanks toralf. In the meantime I got the idea to look at

Code:

newpc app-crypt # ls -l /usr/portage/app-crypt/ | grep gnupg
drwxr-xr-x 3 root root 4096 11 okt 10:42 gnupg
drwxr-xr-x 2 root root 4096 4 jun 09:47 gnupg-pkcs11-scd

Seems I updated to 2.1.15 two days ago at 10:42, that might account for for the "unsafe permissions" part. But I used kgpg at 20:26 without seeing the problem. Should that be possible given that KDE had been running all day with kgpg open in the background?

toralf
Developer

Joined: 01 Feb 2004
Posts: 3943
Location: Hamburg

Posted: Thu Oct 13, 2016 2:49 pm Post subject:

gsoe wrote:

Seems I updated to 2.1.15 two days ago

Code:

qlop --gauge --human --list --unlist gnupg

tells you such things

gsoe
Apprentice

Joined: 10 Dec 2006
Posts: 289
Location: Denmark

Posted: Thu Oct 13, 2016 5:24 pm Post subject:

Thanks again. Never heard of qlop before.

Display posts from previous:

	Gentoo Forums Forum Index Networking & Security	All times are GMT
Page 1 of 1

Jump to:

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum

Copyright 2001-2025 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy