Peter Lebbing:
> So the "key file" method /is/ better than echo passphrase. It's still a risky
> thing to use, in my opinion, though. And the hack presented doesn't allow for
> the common scenario: a key file *as well as* a password. It might be possible
> to
> hack that in as well.
hmm.. what abo
On 03/28/2014 07:48 AM, Peter Lebbing wrote:
> And the hack presented doesn't allow for
> the common scenario: a key file *as well as* a password.
sorry, i think my assumption of the common scenario was very different
from yours, or i wouldn't have recommended the conversion i did.
i'd assumed t
On 27/03/14 16:52, Peter Lebbing wrote:
> Plus that it has the same problems as
>
> $ echo mysecret|gpg --passphrase-fd 0
>
> [...]
> Also, key files easily lead to security-by-obscurity implementations where
> people think "an attacker doesn't know which file I use", whereas the attacker
> thinks
On 27/03/14 17:34, ved...@nym.hush.com wrote:
> Even Truecrypt, which does use keyfiles, doesn't do it this way.
I don't understand what you mean with "this way", could you explain? I must be
reading it differently than you.
> Much as I like different crypto options, I don't think it would really
On Thursday, March 27, 2014 at 11:56 AM, "Peter Lebbing"
wrote:
>These issues wouldn't exist if GnuPG actually *supported* key
>files,
>and would prompt for the key file as it does for a passphrase.
.
>> it's not really using the binary file as a key, but rather as a
>> passphrase
...
On 2014-03-27 14:35, David Shaw wrote:
Limitations of the method
Plus that it has the same problems as
$ echo mysecret|gpg --passphrase-fd 0
That is, it ends up in your history if your shell keeps a history and
you don't prevent it, and other users on a multi-user system can see the
passphr
On Mar 26, 2014, at 5:37 PM, -- -- wrote:
> Hi,
> is it possible to encrypt a file with a symmetric cipher (e.g., AES256) using
> a key file (e.g., a binary file) instead of a password?
Not really, but you can sort of weakly approximate it via something like this:
base64 -w0 binary-
On Wed 2014-03-26 17:37:05 -0400, -- -- wrote:
> is it possible to encrypt a file with a symmetric cipher (e.g., AES256)
> using a key file (e.g., a binary file) instead of a password?
Yes, but you will need to translate the binary file into a long ascii
string first (which means the exact
On 26/03/14 22:37, -- -- wrote:
> Hi,
> is it possible to encrypt a file with a symmetric cipher (e.g., AES256) using
> a
> key file (e.g., a binary file) instead of a password?
No.
HTH,
Peter.
--
I use the GNU Privacy Guard (GnuPG) in combination with Enigmail.
You can send me encryp
Hi,
is it possible to encrypt a file with a symmetric cipher (e.g., AES256)
using a key file (e.g., a binary file) instead of a password?
Thanks.
Please include me in CC for reply.
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.or
10 matches
Mail list logo
