Privacy

[Marc Evans]

On Fri, 12 Mar 2004, Derek Atkins wrote:

> Robert Heller <heller at deepsoft.com> writes:
>
> > 1) The GnuCash developers are *probably* not experts at writing the
> > security code.  This means it is likely to be either not really secure
> > or will be flakey -- that is the 'security option' will be an illusion
> > that does not provide any real security.
>
> Actually, this is untrue.  In Real Life I am a Security Guru.  In fact
> I WROTE half of what became PGP 5.  But I agree with you that Gnucash
> should not include this directly.
>
> I'll also note that this feature is only useful for XML files, WHICH
> ARE GOING AWAY IN A FUTURE VERSION.  It's neigh impossible to
> "encrypt" a database.
>
> Basically: learn to use Unix File Permissions.  They exist for a
> REASON.  Use them.  It's not our job to deal with your laziness.

While I can understand and agree with your summary, I will ask the
question, what do you propose people do to minimize problems that could be
caused as a result of a computer theft, such that the computer contains
one or more gnucash databases which happen to contain sensitive
information such as credit card numbers and other data useful for identify
theft? My gut instinct is to lean toward an encrypted filesystem, which of
course has performance implications. Are there other techniques that
people are employing today to deal with this?

- Marc