From: Andy S. <an...@a2...> - 2003-02-14 20:14:22
|
<quote who="Ryan"> > access the keys so if the web server is compromised they can't get the > keys easily. Some kind of suexec/suid program would allow the pgp program > (gnupg?) to run as the user who has access to the keys. This, at least, > would keep privileges separated and avoid the requirement that users must > be real system users. You could make a process, which runs as the real user (the owner of the key). This process listens on a socket. PHP sends the encrypted email data to the socket, and the program returns the plaintext message. This way, at least, it is totally impossible to get the private key from the PHP context. There may also be a way to do this sort of thing at the level of the imap server, since that process is already doing the suid in a presumably reasonable way. Good luck... I hope it works, even if it is moderately insecure at the system level. --- Andrew W. Schmeder andy_at_a2hd_dot_com http://www.a2hd.com |