-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
arcintl escribió:
...
> First: if the user creates a key and then leaves the company. assuming
> he/she didnt tell anyone the pass phrase and was the only key used, are
> those files locked for ever?
Right, without access to the secret key, it is
I am out of the office until 07/28/2009.
I am out of the office until July 28th 2009. If this is a production
problem, please call the solution center at 918-573-2336 or email Bob Olson
at robert.ol...@williams.com. I will have limited mail and cell phone
access.
Note: This is an automated re
On Jul 27, 2009, at 11:15 AM, James P. Howard, II wrote:
On Sun Jul 26 2009 23:09:18 GMT-0400 (EST) , David Shaw
wrote:
Because it is difficult (or nearly impossible) to determine the
difference from the perspective of GnuPG. That is, I as a person
know what I'm encrypting and what I plan on
On Sun Jul 26 2009 23:09:18 GMT-0400 (EST) , David Shaw
wrote:
> Because it is difficult (or nearly impossible) to determine the
> difference from the perspective of GnuPG. That is, I as a person
> know what I'm encrypting and what I plan on doing with it, but GnuPG
> just sees bits. As a gene
On 07/27/2009 09:41 AM, Ingo Krabbe wrote:
> I mean if you encrypt a file f.txt to f.txt.gpg with 10 recipients, you will
> have a f.txt.gpg that contains f.txt 10 times encrypted in 10 different ways.
> Maybe I'm wrong about this point, but I can't think about an encryption
> strategy
> with mixe
Somehow this thread mutated into being on both gnupg-devel and gnupg-
users. I'm only replying to gnupg-users. Let's try to keep it on one
list.
On Jul 27, 2009, at 9:41 AM, Ingo Krabbe wrote:
You actually can encrypt files to more than one OpenPGP key, so that
anyone holding any of the re
On Jul 27, 2009, at 8:29 AM, Daniel Kahn Gillmor wrote:
And: You can only encrypt the files for one key. So only one user
will have
access to the files (owns the files), as long as you don't share
the keys. For
example you can introduce company wide keys or deparmtement keys
and distribut
On Jul 27, 2009, at 5:25 AM, arcintl wrote:
i wish to setup GNUpg for my work (i am the IT Administrator) but i
have a
few questions.
First: if the user creates a key and then leaves the company. assuming
he/she didnt tell anyone the pass phrase and was the only key used,
are
those files l
On Mon, Jul 27, 2009 at 08:29:10AM -0400, Daniel Kahn Gillmor wrote:
> Hi Ingo--
>
> This is a well-thought-out response, but there are some nagging,
> nit-picky details that i'm not sure are what you meant:
>
> On 07/27/2009 06:33 AM, Ingo Krabbe wrote:
> > 3. GnuPG is a distributed system in co
Although it is controversial, look into key escrow.
One possibility is to allow (require via policy?) users to encrypt data to a
single central escrow key (that you store offline) in addition to any other
keys they use. Then if recovery is required, the escrow key can be used to
decrypt the data.
One possibility is to allow (require via policy?) users to encrypt
data to a
single central escrow key (that you store offline) in addition to
any other
keys they use. Then if recovery is required, the escrow key can be
used to
decrypt the data.
This sounds quite a bit like the Additional
Hi Ingo--
This is a well-thought-out response, but there are some nagging,
nit-picky details that i'm not sure are what you meant:
On 07/27/2009 06:33 AM, Ingo Krabbe wrote:
> 3. GnuPG is a distributed system in contrast to SSL Ciphers, that are
> assymmetric as well but need a centralized keyser
On Mon, Jul 27, 2009 at 02:25:05AM -0700, arcintl wrote:
>
> i wish to setup GNUpg for my work (i am the IT Administrator) but i have a
> few questions.
good idea
>
> First: if the user creates a key and then leaves the company. assuming
> he/she didnt tell anyone the pass phrase and was the on
i wish to setup GNUpg for my work (i am the IT Administrator) but i have a
few questions.
First: if the user creates a key and then leaves the company. assuming
he/she didnt tell anyone the pass phrase and was the only key used, are
those files locked for ever?
if this is so my idea was the IT d
14 matches
Mail list logo
