On 03/03/12 01:25, brian m. carlson wrote:
> It is not true that encryption amounts to XORing the message text
> against the secret key.
> [snip]
> Also, CFB mode, what is XORed is the output of a block cipher
> encryption of the previous ciphertext.
And the paper exploits exactly this fact by in
On Fri, 2 Mar 2012 08:50, d...@fifthhorseman.net said:
> I believe that GnuPG had its own implementation of such an integrity
> check before the standardization was settled.
Right, since version 1.0.2 (2000-07-12). With version 1.1,91
(2002-08-04) gpg even defaults to MDC packets if one of the
On Fri, 2 Mar 2012 10:49, must...@mustrum.net said:
> Can I use my openPGP smartcard to decrypt a file with a empty keyring ?
No. Public OpenPGP keys are often pretty lare and would not fit on the
card. Thus we decided not to do it at all.
My usually advise is to put an URL to the public key
On Sun, Feb 26, 2012 at 11:50 AM, Todd A. Jacobs wrote:
>
> # Prompts twice for password to clearsign.
> echo foo | gpg --clearsign; echo foo | gpg --clearsign
>
> So, the keychain problem seems to be resolved, in that gpg-agent is now
> reading the SSH authentication key off the CryptoStick and h
Am Samstag, 3. März 2012, 22:14:12 schrieb Werner Koch:
> No. Public OpenPGP keys are often pretty lare and would not fit on the
> card. Thus we decided not to do it at all.
But it the public key technically necessary to decrypt data? I checked what
happens if the public key is unavailable (but
On Sat, Mar 3, 2012 at 4:23 PM, Hauke Laging
wrote:
> But it the public key technically necessary to decrypt data? I checked what
>
I *think* this is either because the key lookup is happening on the public
key first, before checking for the matching secret key, or because the
stubs aren't being
On Sat, Mar 3, 2012 at 4:14 PM, Werner Koch wrote:
> My usually advise is to put an URL to the public key into the URL field
> and then use the fetch sub command of the --card-edit menu to retrieve
> the key.
>
Should it be necessary to use the card-edit menu? I tried something
similar, realized
Am Sonntag, 4. März 2012, 00:20:11 schrieb Todd A. Jacobs:
> into the public keyring (using --import, rather than --edit-card),
IIRC you need both: First import the public key, then make the existence of
the secret key on the card known by --card-status.
Hauke
--
PGP: D44C 6A5B 71B0 427C CED3
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Le 03/03/2012 22:14, Werner Koch a écrit :
> No. Public OpenPGP keys are often pretty lare and would not fit on the
card. Thus we decided not to do it at all. My usually advise is to put
an URL to the public key into the URL field and then use the fe
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Le 04/03/2012 00:20, Todd A. Jacobs a écrit :
> I *think* this is either because the key lookup is happening on the
public key first, before checking for the matching secret key, or
because the stubs aren't being created right in the keyrings. I am
h
10 matches
Mail list logo
