Re: German ct magazine postulates death of pgp encryption

Am 28.02.2015 um 14:12 schrieb Peter Lebbing : > On 28/02/15 14:06, Ralph Seichter wrote: >> but PGP does not work for mass e-mail protection > > Let me stress again that the proper course might be to replace SMTP (e-mail) > and > then work from that. If you have a sieve and wish for something t

Re: trust paths

Am 28.02.2015 um 19:15 schrieb Johan Wevers > I'm not talking about mathematically proving something. After all, a > government agency could make a false key with Werner Koch's name on it > and send someone who looks like him with real ID documents to a > keysigning party. Government-issued ID's

Re: Re: German ct magazine postulates death of pgp encryption

Jonathan Schleifer wrote: > > Let me stress again that the proper course might be to replace SMTP > > (e-mail) and > > then work from that. If you have a sieve and wish for something to hold > > liquids, > > you could plug up all the holes or say "Blow this for a lark" and get a pan. > > You me

Re: German ct magazine postulates death of pgp encryption

On 01/03/15 13:21, Jonathan Schleifer wrote: > You mean like BitMessage ? It was Werner who floated the idea of replacing SMTP here on gnupg-users. After thinking about it, it made a lot of sense to me. You could search gnupg-users for his messages about this

Re: German ct magazine postulates death of pgp encryption

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On 27.02.15 20:56, Werner Koch wrote: > On Fri, 27 Feb 2015 17:26, patr...@enigmail.net said: > >> that anyone can upload _every_ key to a keyserver is an issue. If >> keyservers would do some sort of verification (e.g. confirmation >> of the email

Re: German ct magazine postulates death of pgp encryption

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 03/01/2015 03:41 PM, Patrick Brunschwig wrote: > On 27.02.15 20:56, Werner Koch wrote: >> On Fri, 27 Feb 2015 17:26, patr...@enigmail.net said: > >>> that anyone can upload _every_ key to a keyserver is an issue. >>> If keyservers would do some s

Decrypting PGP/MIME on the command line

Hi, is there a command line utility that takes a PGP/MIME encrypted message (a plain RFC 2822 text file) and outputs an unencrypted copy? The secret key is available and GnuPG is configured correctly. It is okay if the process is somewhat lossy; signatures or attachments do not need to be preserve

Re: German ct magazine postulates death of pgp encryption

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On 01.03.15 15:58, Kristian Fiskerstrand wrote: > On 03/01/2015 03:41 PM, Patrick Brunschwig wrote: >> On 27.02.15 20:56, Werner Koch wrote: >>> On Fri, 27 Feb 2015 17:26, patr...@enigmail.net said: > that anyone can upload _every_ key to a key

Re: German ct magazine postulates death of pgp encryption

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 03/01/2015 04:35 PM, Patrick Brunschwig wrote: > On 01.03.15 15:58, Kristian Fiskerstrand wrote: >> On 03/01/2015 03:41 PM, Patrick Brunschwig wrote: >>> On 27.02.15 20:56, Werner Koch wrote: On Fri, 27 Feb 2015 17:26, patr...@enigmail.net sa

Re: strength of voice authentication [was: Re: German ct magazine postulates death of pgp encryption]

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On Saturday 28 February 2015 at 5:54:21 PM, in , Johan Wevers wrote: > For once, it > requires much contextual knowledge about what both > persons know of each other. Why? Most of my phone calls to regular business contacts consist entirely of d

Re: German ct magazine postulates death of pgp encryption

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On 01.03.15 16:38, Kristian Fiskerstrand wrote: >>> In general I believe this to be an insufficient form of >>> identification that really doesn't provide much of anything >>> useful, but at least the PGP keyserver does it reasonably sane >>> in it

Re: German ct magazine postulates death of pgp encryption

Hi Patrick, > Am 01.03.2015 um 15:41 schrieb Patrick Brunschwig : > > The idea I have in mind is roughly as follows: if you upload a key to > a keyserver, the keyserver would send an encrypted email to every UID > in the key. Each encrypted mail contains a unique link to confirm the > email addre

Re: German ct magazine postulates death of pgp encryption

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On Friday 27 February 2015 at 12:23:18 PM, in , Ralph Seichter wrote: > The thought of letting PGP die as an e-mail encryption > mechanism for the "masses" (the non-tech-savvy average > users) and to have it replaced with something my mother > co

Re: German ct magazine postulates death of pgp encryption

Hi Kristian, > Am 01.03.2015 um 16:38 schrieb Kristian Fiskerstrand > : > > You wouldn't need the keyservers to be involved in this at all. Anyone > could set up such a mail verification CA outside of the keyserver network. In theory, yes. And keybase.io goes in that direction, although they do

Re: German ct magazine postulates death of pgp encryption

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 03/01/2015 05:36 PM, Marco Zehe wrote: > Hi Kristian, > >> Am 01.03.2015 um 16:38 schrieb Kristian Fiskerstrand >> : >> >> You wouldn't need the keyservers to be involved in this at all. >> Anyone could set up such a mail verification CA outsi

Re: German ct magazine postulates death of pgp encryption

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 01.03.15 17:31, Marco Zehe wrote: > Hi Patrick, > >> Am 01.03.2015 um 15:41 schrieb Patrick Brunschwig >> : >> >> The idea I have in mind is roughly as follows: if you upload a >> key to a keyserver, the keyserver would send an encrypted email

Re: German ct magazine postulates death of pgp encryption

Hi Kristian, > Am 01.03.2015 um 17:36 schrieb Kristian Fiskerstrand > : > > Seriously? Please look at > https://bugzilla.mozilla.org/show_bug.cgi?id=790487regarding that > implementation, which opens up another can of worms (encrypts to {S,C} > key, not encryption key, dual usage of same key mat

Re: German ct magazine postulates death of pgp encryption

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On Sunday 1 March 2015 at 12:21:20 PM, in , Jonathan Schleifer wrote: > and also gets rid of spam > by requiring a proof of work to send something. Surely, "proof of work" is evidence of performing some otherwise unnecessary CPU cycles. This was

Re: German ct magazine postulates death of pgp encryption

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 03/01/2015 05:45 PM, Marco Zehe wrote: > Hi Kristian, > >> Am 01.03.2015 um 17:36 schrieb Kristian Fiskerstrand >> : >> >> Seriously? Please look at >> https://bugzilla.mozilla.org/show_bug.cgi?id=790487regarding that >> implementation, which

Re: German ct magazine postulates death of pgp encryption

Hi Kristian, > Am 01.03.2015 um 17:54 schrieb Kristian Fiskerstrand > : > > Since the author's first reaction was closing it WONTFIX I didn't > bother, with that kind of behavior they can't possibly take security > seriously. Error in judgement that has since been corrected. These things someti

Re: German ct magazine postulates death of pgp encryption

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On Friday 27 February 2015 at 11:15:36 AM, in , Peter Lebbing wrote: > So what did this key attract, being on the keyserver > for four years now? > 22 Nigerian 419 scams. That's it. Twenty-two! They came > in batches; I haven't seen anything sin

Re: German ct magazine postulates death of pgp encryption

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 03/01/2015 05:31 PM, Marco Zehe wrote: > Hi Patrick, > >> Am 01.03.2015 um 15:41 schrieb Patrick Brunschwig >> : >> >> The idea I have in mind is roughly as follows: if you upload a >> key to a keyserver, the keyserver would send an encrypted e

Re: German ct magazine postulates death of pgp encryption

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 03/01/2015 06:01 PM, Marco Zehe wrote: > Hi Kristian, > >> Am 01.03.2015 um 17:54 schrieb Kristian Fiskerstrand >> : >> >> Since the author's first reaction was closing it WONTFIX I didn't >> bother, with that kind of behavior they can't possi

Re: German ct magazine postulates death of pgp encryption

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On Sunday 1 March 2015 at 2:41:33 PM, in , Patrick Brunschwig wrote: > The idea I have in mind is roughly as follows: if you > upload a key to a keyserver, the keyserver would send > an encrypted email to every UID in the key. Each > encrypted m

Re: German ct magazine postulates death of pgp encryption

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On 01.03.15 18:11, MFPA wrote: > > > On Sunday 1 March 2015 at 2:41:33 PM, in > , Patrick Brunschwig wrote: > > > >> The idea I have in mind is roughly as follows: if you upload a >> key to a keyserver, the keyserver would send an encrypted ema

Re: German ct magazine postulates death of pgp encryption

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 03/01/2015 06:08 PM, Kristian Fiskerstrand wrote: > On 03/01/2015 06:01 PM, Marco Zehe wrote: >> Hi Kristian, > >>> Am 01.03.2015 um 17:54 schrieb Kristian Fiskerstrand >>> : >>> ... > that have enabled it. Another issue with the current > im

Re: German ct magazine postulates death of pgp encryption

Am 01.03.2015 um 17:45 schrieb MFPA <2014-667rhzu3dc-lists-gro...@riseup.net>: >> and also gets rid of spam >> by requiring a proof of work to send something. > > Surely, "proof of work" is evidence of performing some otherwise > unnecessary CPU cycles. This wastes energy. In a system used by > b

Re: Decrypting PGP/MIME on the command line

On Sun, 1 Mar 2015 15:32, rp...@kcore.de said: > is there a command line utility that takes a PGP/MIME encrypted message > (a plain RFC 2822 text file) and outputs an unencrypted copy? The Not really. MIME is a structured format and as such it may result in a bunch of encrypted, non-nencrypted,

Re: A forgotten patch?

On Sun, 1 Mar 2015 03:29, a...@raxys.net said: > I think the majority of people work for people they don't necessarily > like that much. I suppose it's related to the unfair distribution of > wealth in our world. Being funded by Facebook isn't the most reputable > thing either. Yeah right, or Go

New "validating keyserver" architecture (was: Re: German ct magazine postulates death of pgp encryption)

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On 1 Mar 2015 at 17:21, Patrick Brunschwig wrote: > On 01.03.15 16:38, Kristian Fiskerstrand wrote: > >>> In general I believe this to be an insufficient form of > >>> identification that really doesn't provide much of anything > >>> useful, but at

Re: Whishlist for next-gen card

On 01/03/15 17:43, NdK wrote: > while I was talking of remote user auth (so using openpgp card instead of > ~/.ssh/id_* keys -- something that's already doable). No, I'm talking about that as well. And I don't think the fingerprint of the host is part of the signed data or the signature. Why do yo

Re: strength of voice authentication [was: Re: German ct magazine postulates death of pgp encryption]

Johan Wevers: > On 28-02-2015 15:09, Daniel Kahn Gillmor wrote: > >> We had this discussion recently over on messag...@moderncrypto.org. > > What is described there is a much more confined problem. > >> It's far from "trivial", but breaking voice-based authentication >> (particularly in the alre

Re: German ct magazine postulates death of pgp encryption

On Sunday 01 March 2015 19:58:19 Jonathan Schleifer wrote: > Am 01.03.2015 um 17:45 schrieb MFPA <2014-667rhzu3dc-lists- gro...@riseup.net>: > >> and also gets rid of spam > >> by requiring a proof of work to send something. > > > > Surely, "proof of work" is evidence of performing some otherwise

Re: German ct magazine postulates death of pgp encryption

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Am 01.03.2015 um 23:25 schrieb Ingo Klöcker : > And most spam is sent by bots. The spammers don't really care how much > energy the bots burn. Yes, the amount of spam might decrease because > the bots cannot hammer out that many bitmessages as SMTP

Re: German ct magazine postulates death of pgp encryption

On Sunday 01 March 2015 23:43:25 Jonathan Schleifer wrote: > Am 01.03.2015 um 23:25 schrieb Ingo Klöcker : > > And most spam is sent by bots. The spammers don't really care how much > > energy the bots burn. Yes, the amount of spam might decrease because > > the bots cannot hammer out that many bit

Re: Decrypting PGP/MIME on the command line

On Sun 2015-03-01 20:01:05 +0100, Werner Koch wrote: > On Sun, 1 Mar 2015 15:32, rp...@kcore.de said: > >> is there a command line utility that takes a PGP/MIME encrypted message >> (a plain RFC 2822 text file) and outputs an unencrypted copy? The > > Not really. MIME is a structured format and a

Re: Decrypting PGP/MIME on the command line

On 3/1/15 3:34 PM, Daniel Kahn Gillmor wrote: On Sun 2015-03-01 20:01:05 +0100, Werner Koch wrote: On Sun, 1 Mar 2015 15:32, rp...@kcore.de said: is there a command line utility that takes a PGP/MIME encrypted message (a plain RFC 2822 text file) and outputs an unencrypted copy? The Not rea

Re: German ct magazine postulates death of pgp encryption

On Mon, 2 Mar 2015 00:13:07 +0100, Ingo Klöcker wrote: > On what kind of hardware? A high-end gamer PC? Or a low end mobile phone? According to the paper, the goal is to take 4 minutes on an average PC and that it shall be adjusted according to hardware improvements. > There are much larger b

Re: How to send a key to a keyserver?

Kristian Fiskerstrand writes: >On 02/27/2015 12:57 PM, Philip Jackson wrote: >> On 26/02/15 18:15, Helmut Waitzmann wrote: >>> I tried >>> >>> gpg2 --verbose --keyserver hkp://pool.sks-keyservers.net >>> --send-keys -- 72ABFF0923A87CF22D0ED7C4FDEE765D017077F1 >>> >>> and got the message >>> >>

Re: German ct magazine postulates death of pgp encryption

Kristian Fiskerstrand said: > >> > >> You wouldn't need the keyservers to be involved in this at all. > >> Anyone could set up such a mail verification CA outside of the > >> keyserver network. How about storing keys in a more distributed manner, DNS, in addition to some other method of authen

Re: How to send a key to a keyserver?

Helmut Waitzmann writes: > So it's a problem with my http proxy? Seems like actually. -- Xavier. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: How to send a key to a keyserver?

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 03/02/2015 02:45 AM, Helmut Waitzmann wrote: > Kristian Fiskerstrand > writes: > >> On 02/27/2015 12:57 PM, Philip Jackson wrote: >>> On 26/02/15 18:15, Helmut Waitzmann wrote: I tried gpg2 --verbose --keyserver hkp://pool.sks-ke