KPasswordEdit and security
Thiago Macieira
thiago at kde.org
Wed Dec 27 20:10:09 GMT 2006
Kuba Ober wrote:
>Maybe at least locking just the page that contains the password buffer
> would help? Then no mlockall.
Under Linux, it seems mlock(2) is allowed for non-privileged processes as
long as the memory lock limit is respected. On my Mandriva Cooker, it
seems the default is 32 kilobytes (8 default-sized pages).
But this begs the question: does it do any good to lock the page where the
password char-array is stored? Consider what you said: networking
buffers, X and Qt's event system, Qt itself, etc.
--
Thiago Macieira - thiago (AT) macieira.info - thiago (AT) kde.org
PGP/GPG: 0x6EF45358; fingerprint:
E067 918B B660 DBD1 105C 966C 33F5 F005 6EF4 5358
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <http://mail.kde.org/pipermail/kde-core-devel/attachments/20061227/46081293/attachment.sig>
More information about the kde-core-devel
mailing list