Re: DSA GnuPG signatures

2013-04-03 Thread Vladimir 'φ-coder/phcoder' Serbinenko
On 31.01.2013 13:49, Andrey Borzenkov wrote: > В Fri, 11 Jan 2013 21:54:22 +0100 > Vladimir 'φ-coder/phcoder' Serbinenko пишет: > >> Hello, all. I've just committed import of libgcrypt and implementation >> of related code to check signatures. Short usage: >> verify_detached FILE FILE.sig [pubke

Re: DSA GnuPG signatures

2013-01-31 Thread Andrey Borzenkov
В Fri, 11 Jan 2013 21:54:22 +0100 Vladimir 'φ-coder/phcoder' Serbinenko пишет: > Hello, all. I've just committed import of libgcrypt and implementation > of related code to check signatures. Short usage: > verify_detached FILE FILE.sig [pubkey.gpg] > trust KEY.gpg > distruct KEYID > check_signatu

Re: DSA GnuPG signatures

2013-01-13 Thread Vladimir 'φ-coder/phcoder' Serbinenko
On 13.01.2013 09:33, Andrey Borzenkov wrote: > В Fri, 11 Jan 2013 21:54:22 +0100 > Vladimir 'φ-coder/phcoder' Serbinenko пишет: > >> Hello, all. I've just committed import of libgcrypt and implementation >> of related code to check signatures. Short usage: >> verify_detached FILE FILE.sig [pubke

Re: DSA GnuPG signatures

2013-01-13 Thread Andrey Borzenkov
В Fri, 11 Jan 2013 21:54:22 +0100 Vladimir 'φ-coder/phcoder' Serbinenko пишет: > Hello, all. I've just committed import of libgcrypt and implementation > of related code to check signatures. Short usage: > verify_detached FILE FILE.sig [pubkey.gpg] Just to be sure. Signature is created using gp

Re: DSA GnuPG signatures

2013-01-11 Thread Vladimir 'φ-coder/phcoder' Serbinenko
On 11.01.2013 23:14, Colin Watson wrote: > On Fri, Jan 11, 2013 at 09:54:22PM +0100, Vladimir 'φ-coder/phcoder' > Serbinenko wrote: >> 1) DSA keys only. RSA is more tricky since it needs padding and RSA >> should be progressively phased out, not put into new places due to some >> vulnerabilities

Re: DSA GnuPG signatures

2013-01-11 Thread Colin Watson
On Fri, Jan 11, 2013 at 09:54:22PM +0100, Vladimir 'φ-coder/phcoder' Serbinenko wrote: > 1) DSA keys only. RSA is more tricky since it needs padding and RSA > should be progressively phased out, not put into new places due to some > vulnerabilities (large classes of semiprimes are factorisable up

DSA GnuPG signatures

2013-01-11 Thread Vladimir 'φ-coder/phcoder' Serbinenko
Hello, all. I've just committed import of libgcrypt and implementation of related code to check signatures. Short usage: verify_detached FILE FILE.sig [pubkey.gpg] trust KEY.gpg distruct KEYID check_signatures=[enforce|no] grub-mkimage -k KEY gcry_dsa verify [...] When check_signatures=enforce ev