[Popcon-developers] Drop atime and ctime for privacy reasons possible?

adrelanos adrelanos at riseup.net
Sun Oct 28 16:25:23 UTC 2012


Bill Allombert:
> On Sat, Oct 27, 2012 at 11:48:45PM +0000, adrelanos wrote:
>> Bill Allombert:
>>> On Sat, Oct 27, 2012 at 09:55:22AM +0000, adrelanos wrote:
>>>> Paul Wise:
>>>>> On Fri, Oct 26, 2012 at 6:37 PM, adrelanos wrote:
>>>>>
>>>>>> for privacy reasons.
>>>>>
>>>>> In addition, it would be great to see popcon.d.o switch to SSL to
>> add privacy.
>>>
>>> I would rather use gpg.
>>
>> gpg is fine.
>
> Could you do some benchmark ?
> - Generate a popcon report on a system with a large number of packages
installed,
> - Encrypt it with gpg --armor with some public key.
> - Then decrypt it 1000 times with the matching private key.
> - Compute time.
> - Retry with a different keylength or algorithm.
>
> Cheers,

~100 KiB popcon file encrypted with 4096/4096 gpg key.

100 times decrypted took 16 seconds inside a rather slow single core
virtual machine.

Test script:
https://github.com/adrelanos/popcon-benchmark

Are these acceptable times or does it need tuning?



More information about the Popcon-developers mailing list