* etc/NEWS: Add security consideration note on passphrase input

author Daiki Ueno <ueno@gnu.org>

Sun, 31 Dec 2017 04:37:17 +0000 (05:37 +0100)

committer Daiki Ueno <ueno@gnu.org>

Sun, 31 Dec 2017 04:37:17 +0000 (05:37 +0100)
author Daiki Ueno <ueno@gnu.org>
Sun, 31 Dec 2017 04:37:17 +0000 (05:37 +0100)
committer Daiki Ueno <ueno@gnu.org>
Sun, 31 Dec 2017 04:37:17 +0000 (05:37 +0100)
diff --git a/etc/NEWS b/etc/NEWS

index 692c28a7210a90f1bbdbc6fd970995f42ace8014..7bd3a4cac4f86a6e8f5a58e230f13bcb39d5d0fe 100644 (file)
--- a/etc/NEWS
+++ b/etc/NEWS
@@ -1502,6 +1502,15 @@ supported by the upstream project.
  To adapt to the change, you may need to set 'epa-pinentry-mode' to the
  symbol 'loopback'.
  
+Note that previously, it was said that passphrase input through
+minibuffer would be much less secure than other graphical pinentry
+programs.  However, these days the difference is insignificant: the
+'read-password' function sufficiently protects input from leakage to
+message logs.  Emacs still doesn't use secure memory to protect
+passphrases, but it was also removed from other pinentry programs as
+the attack is unrealistic on modern computer systems which don't
+utilize swap memory usually.
+
  \f
  * Lisp Changes in Emacs 26.1
author	Daiki Ueno <ueno@gnu.org>
	Sun, 31 Dec 2017 04:37:17 +0000 (05:37 +0100)
committer	Daiki Ueno <ueno@gnu.org>
	Sun, 31 Dec 2017 04:37:17 +0000 (05:37 +0100)