Re: gpg - difference --encrypt-to and --recipient
On 1/3/2019 at 10:14 PM, "MFPA" wrote:> [3] only for the overly paranoid who revel in tedious > work-arounds 8^) : > (a) Encrypt to both yourself and the recipient > (b) Remove your own id packet from the ciphertext, > (c) Re-calculate the crc of the ciphertext > (d) Send the 'hacked' ciphertext along to the > original recipient > (e) Store the first ciphertext from (a) along with > the one from (d), in your sent folder > (f) now you will always be able to decrypt and > retrieve the original plaintext Would the ciphertext at (d) be much different than encrypting to the recipient and hidden-encrypt-to your own key? = Yes. The ciphertext in (d) would have no indication that it was being encrypted to anyone else. Using 'hidden-encrypt' to your own key, would show that it was encrypted to another key, but undetectable to whom. As a concrete difference, if you used the command: gpg --try-all-secrets on the file encrypted to the recipient and hidden-encrypt-to your own key, it would decrypt to your own key. Even from the ciphertext, it is detectable because it is 'longer' (i.e., has another key-packet). Try encrypting to only one recipient, and the encrypting the same plaintext to the same recipient, while also using hidden-encrypt to, and look at the difference in length. vedaal___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Feature proposal - image encryption
Am Sonntag, den 06.01.2019, 23:42 +0100 schrieb Stefan Claas: > On Sun, 06 Jan 2019 23:19:24 +0100, Dirk Gottschalk wrote: > Hi Dirk, > > > GnuPG is world standard for email and probably file encryption, > > > so > > > why not for image encryption too? :-) > > > At least it would not hurt to have such feature in GnuPG. ;-) > > Except for the weeks, months, or years, which were needed to > > firstly implement the JPeg format, for example and the other ten > > millions of picture formats out there in the world. ;) > PNG is imho the current standard for Internet usage. Jpeg with its > compression artifacts and other formats are also mentioned as not > recommended to use with ImageMagick encryption. Yes, I read it earlier. But, the picture formats have to be inplemented anyways. and GPG is not intended to do this kind of file processing. By the way, AFAIT it was you who said, GPG has to much functions and options. ^^ Just kidding. > > I see what you mean regarding to promotion and so on. But, under > > the > > line, it's not worth the trouble. ^^ > Well, it is Werner's baby, so not my job to decide. It was only a > proposal and not meant as a must have request. Yes, it is Werners, and the rest of the core teams, decision. But this does not keep us away from discussing such things. Regards, Dirk -- Dirk Gottschalk Paulusstrasse 6-8 52064 Aachen, Germany GPG: DDCB AF8E 0132 AA54 20AB B864 4081 0B18 1ED8 E838 Keybase.io: https://keybase.io/dgottschalk GitHub: https://github.com/Dirk1980ac signature.asc Description: This is a digitally signed message part ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Feature proposal - image encryption
On Sun, 06 Jan 2019 23:19:24 +0100, Dirk Gottschalk wrote: Hi Dirk, > > GnuPG is world standard for email and probably file encryption, so > > why not for image encryption too? :-) > > > At least it would not hurt to have such feature in GnuPG. ;-) > > Except for the weeks, months, or years, which were needed to firstly > implement the JPeg format, for example and the other ten millions of > picture formats out there in the world. ;) PNG is imho the current standard for Internet usage. Jpeg with its compression artifacts and other formats are also mentioned as not recommended to use with ImageMagick encryption. > I see what you mean regarding to promotion and so on. But, under the > line, it's not worth the trouble. ^^ Well, it is Werner's baby, so not my job to decide. It was only a proposal and not meant as a must have request. Regards Stefan pgpBNZRjBzDXH.pgp Description: Digitale Signatur von OpenPGP ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Feature proposal - image encryption
Hi Stefan. Am Sonntag, den 06.01.2019, 23:12 +0100 schrieb Stefan Claas: > On Sun, 06 Jan 2019 22:13:50 +0100, Dirk Gottschalk wrote: > Hi Dirk, > > I don't think GPG should start to mangle with other data formats. > > ImageMagick does the trick. Why should we invent the wheel a second > > time? > My thinking is that people using security tools like GnuPG might > not trust tools from graphic tools programmers. And the second > thought is in case GnuPG would allow this people like us could > promote GnuPG for that in Computer Graphics communities and > in other places, which are much bigger than encryption communities. So, just encrypt a file the usual way with GPG. ^^ I see, what you're talking about. It's the Embedding into websites, what IM mentions. But, why should somebody distrust the aes implementation of an open source tool? Everybody can read the source, if he wants. I believe they just use one of the crypto-libraries available, like libcrypt, or libgcrypt, for example. > GnuPG is world standard for email and probably file encryption, so > why not for image encryption too? :-) > At least it would not hurt to have such feature in GnuPG. ;-) Except for the weeks, months, or years, which were needed to firstly implement the JPeg format, for example and the other ten millions of picture formats out there in the world. ;) I see what you mean regarding to promotion and so on. But, under the line, it's not worth the trouble. ^^ Regards, Dirk -- Dirk Gottschalk Paulusstrasse 6-8 52064 Aachen, Germany GPG: DDCB AF8E 0132 AA54 20AB B864 4081 0B18 1ED8 E838 Keybase.io: https://keybase.io/dgottschalk GitHub: https://github.com/Dirk1980ac signature.asc Description: This is a digitally signed message part ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Feature proposal - image encryption
On Sun, 06 Jan 2019 22:13:50 +0100, Dirk Gottschalk wrote: Hi Dirk, > I don't think GPG should start to mangle with other data formats. > ImageMagick does the trick. Why should we invent the wheel a second > time? My thinking is that people using security tools like GnuPG might not trust tools from graphic tools programmers. And the second thought is in case GnuPG would allow this people like us could promote GnuPG for that in Computer Graphics communities and in other places, which are much bigger than encryption communities. GnuPG is world standard for email and probably file encryption, so why not for image encryption too? :-) At least it would not hurt to have such feature in GnuPG. ;-) Regards Stefan pgpmbLQE8L6li.pgp Description: Digitale Signatur von OpenPGP ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Feature proposal - image encryption
Hello Stefan. Am Sonntag, den 06.01.2019, 12:33 +0100 schrieb Stefan Claas: > On Sun, 6 Jan 2019 11:11:42 +0100, Stefan Claas wrote: > > Hi Werner and all, > > > > while looking for solutions to encrypt images, so that > > they are still viewable, i thought why not asking if such > > a feature could be implemented in the future in GnuPG. > > > > Here is a sample image, encrypted with the free Software > > ImageMagick, using the AES Cipher. > > > > https://postimg.cc/LJt8NRW2 > > And while thinking about a compromised Computer... > > Maybe it would be also very nice if the Pinentry program > would allow in the future also mouse input via an additional > virtual keyboard, like for example the software for the > Kanguru Defender 3000 USB stick has. Thus in case of such > a scenario one would simply draw a message, in let's say > the free Gimp software, encrypt the image and voilá a secret > message could still be created and send, imho. A virtual keyboard does not mitigate the vulnerability to key loggers or similar sniffing technologies. One could still be able to observe the data exchange between processes as long they are not isolated. I don't think GPG should start to mangle with other data formats. ImageMagick does the trick. Why should we invent the wheel a second time? Regards, Dirk -- Dirk Gottschalk Paulusstrasse 6-8 52064 Aachen, Germany GPG: DDCB AF8E 0132 AA54 20AB B864 4081 0B18 1ED8 E838 Keybase.io: https://keybase.io/dgottschalk GitHub: https://github.com/Dirk1980ac signature.asc Description: This is a digitally signed message part ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Feature proposal - image encryption
On Sun, 6 Jan 2019 11:11:42 +0100, Stefan Claas wrote: > Hi Werner and all, > > while looking for solutions to encrypt images, so that > they are still viewable, i thought why not asking if such > a feature could be implemented in the future in GnuPG. > > Here is a sample image, encrypted with the free Software > ImageMagick, using the AES Cipher. > > https://postimg.cc/LJt8NRW2 And while thinking about a compromised Computer... Maybe it would be also very nice if the Pinentry program would allow in the future also mouse input via an additional virtual keyboard, like for example the software for the Kanguru Defender 3000 USB stick has. Thus in case of such a scenario one would simply draw a message, in let's say the free Gimp software, encrypt the image and voilá a secret message could still be created and send, imho. Regards Stefan ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Removing expired keys
> Didn't look very hard, did you? :) Before anyone accuses me of being less than helpful: Jerry asked this same question two years ago, got an answer on-list, verified that it solved his problem, and then just now asked the same question, got an answer from the same person, and was referred to the earlier thread. A touch of mild ribbing seems to be in order. :) ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Removing expired keys
> or from the command line? I have tried Googling, but nothing useful > ever appeared. Didn't look very hard, did you? :) https://lists.gnupg.org/pipermail/gnupg-users/2017-February/057820.html ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Feature proposal - image encryption
Hi Werner and all, while looking for solutions to encrypt images, so that they are still viewable, i thought why not asking if such a feature could be implemented in the future in GnuPG. Here is a sample image, encrypted with the free Software ImageMagick, using the AES Cipher. https://postimg.cc/LJt8NRW2 Regards Stefan ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users