On Wed, Jun 24, 2009 at 2:33 PM, Morten Gulbrandsen<classp...@arcor.de> wrote: [clipped 6/24/2009 3:11:09 PM by Brian Mearns] > Dear Brian > > This is the core math of OpenPGP > > bash-3.00$ gpg --version > > Supported algorithms: > > > Pubkey: RSA, RSA-E, RSA-S, ELG-E, DSA > Cipher: 3DES, CAST5, BLOWFISH, AES, AES192, AES256, TWOFISH > Hash: MD5, SHA1, RIPEMD160, SHA256, SHA384, SHA512, SHA224 > Compression: Uncompressed, ZIP, ZLIB, BZIP2 > > > === > > > If used apart from manually invoked messages and files, > and without the use of a proper passphrase, manually keyed. > > I don't think it would be much useful. It would be much the same as > saving your passphrase or even typing it in the source code. > > But this is known to me. > > > http://www.gnu.org/software/gnutls/ > > > http://gmplib.org/ > # I'm involved here > > > http://www.opentls.org/ > > > > OpenTLS is a project to replace OpenSSL, and is divided in three smaller > packages, NetCrypto, NetPKI and NetTLS. > > It's been worked on since the autumn 2003, and at the time of writing, > the last major part of NetCrypto is being worked on. The other two > components are still entirely vaporware, hardly even at the planning > stage. It was known from the beginning that this project would evolve > slowly. > > === > > > for live applications which runs distributed like OpenVPN or > skype or sip-communicator, > > this paper tells some interesting stuff: > > http://www.davidpashley.com/articles/cert-authority.html > > this is for running applications distributed over then net, eg client > server computing and what needs a passphrase when loggin on the network. > > Human authentication like in OpenPGP is essential. > > if a piece of software is to do the authentication, > you may even save to hard disk the files. But I cannot figure any > understandable benefit for that. > > Why do you want the software to encrypt unlike PGP, > which encrypts with a human token called the passphraze? > > > Example > > bash-3.00$ touch somethingIdliketohide.txt > bash-3.00$ gpg -c somethingIdliketohide.txt > > > # I am prompted twice for my passphraze, > # which would be silly to put in any sourcecode. > > > gpg: WARNING: `somethingIdliketohide.txt' is an empty file > bash-3.00$ ls -l somethingIdliketohide.txt* > - -rw-r--r-- 1 morten other 0 Jun 24 20:27 > somethingIdliketohide.txt > - -rw-r--r-- 1 morten other 64 Jun 24 20:27 > somethingIdliketohide.txt.gpg > bash-3.00$ > > > > you may even use gpg -c --cipher-algo AES256 If you prefer. > > > Morten [clipped 6/24/2009 3:11:26 PM by Brian Mearns] -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Greetings, Morten- Hope you're not offended if I ask: are you a dada engine? [http://dev.null.org/dadaengine/] Cheers, as always- Brian P.S.: No, I do not remember Trafalgar. - -- Feel free to contact me using PGP Encryption: Key Id: 0x3AA70848 Available from: http://keys.gnupg.net -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) iQEcBAEBAgAGBQJKQnvpAAoJEHOUulIkSI7c6HEIAIseG4+2wLesoxVtc+MS6OR+ lvV0FEZuFL4irM9jvHeLyx5VoxEAj2Fr9T2Xyj4kzIQGFZHf6ufnHZ2RvdAczSgj oPeXrbarVm4HcTMPhcUkYoqIdcdY0Op7vEL7r3LShuHoGbJv4OPlBu+MVAoYX59u xejdTz/9C9VOflLrkxuCeHeesnd+dos2qriBFA/xraR1uU4dqIK6uc4mTpDsCnDw LnaX4V/3rQC2jB4JBAANsGjhAQOeEMJZWc1JAsBYFjPFX+L1uTOtUFbePa1F4aX7 mOU9uMUhkHGmJn6/xDLqHFAwwa/b0vEo+ywKtcJb8skD5PrDfUM1rtpkC3iKLvk= =PxB2 -----END PGP SIGNATURE----- _______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
