New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[PGP] priv key visible for other RainLoop users logging in with browser #374

Open
cybershaman opened this Issue Nov 15, 2014 · 1 comment

Comments

Projects
None yet
2 participants
@cybershaman
Copy link

cybershaman commented Nov 15, 2014

I understand that due to the way PGP is implemented the keys (public/private) are being stored in the browser.
Howevever, once imported the private key can be seen by any other user with another RainLoop account logging in using that same browser installation.

Perhaps there is a way to program some sort of "privilege seperation" in here?

@greg0r

This comment has been minimized.

Copy link

greg0r commented Jan 22, 2018

Hello Everyone,
I just noticed the exact same behavior. Is this issue still not solved? I mean that makes it completely useless. No other user should be able to use my private key.
Or am I missing something?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment