Re: PK-Encrypt-only
On Wed, Nov 30, 2005 at 08:33:07AM -0700, Kurt Fitzner wrote: > I am contemplating a change to my GnuPG Explorer Extension, but I need > some background information. > > I know that encrypting a file without signing it is commonly done with > symmetrical encryption. My question is, do people commonly use GnuPG to > encrypt a file without signing it using PK-encryption? > > Personally, I don't think this would be very common at all. I mean, I > can come up with conceptual reasons why someone might want to encrypt a > file to someone else's key without signing the file, but in practice I > would think it would be very rare. > > I would appreciate knowing if this is something that is commonly done, > or if it is very rare. This is routinely done when file is encrypted for storage - instead of using password which might get forgotten and is problematic for shring, file is encrypted with keys of persons that are allowed to decrypt it, then stored. This is done for files like backups, source code archives, etc. Alex -- mors ab alto 0x46399138 ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: --openpgp, MDC and similar flags
On Tue, 29 Nov 2005, Christoph Anton Mitterer wrote: > ... as you can see, MDC is set. Referring to > http://lists.gnupg.org/pipermail/gnupg-users/2003-May/018442.html and > RFC2440 I assume that MDC is still not part of the standard. Why is it > activated in my key? (Of course this is a good thing, but I just wonder > that if "openpgp" did not work for MDC, other things might be > "incompatible", too) > > > 2) What other things does GPG that are beyond RFC2440? > 3) Are there any other flags like MDC? I know about keyserver-no-modify > but that is documented in RFC2440. GnuPG is staying up to date with the changes that have been proposed after RFC2440 was released. The IETF OpenPGP working group is now in its last steps to release a new internet draft, the current snapshot of their work is 2440bis-15. http://www.ietf.org/internet-drafts/draft-ietf-openpgp-rfc2440bis-15.txt MDC and back signatures (0x19) are specified there. HTH, Peter -- PGP signed and encrypted | .''`. ** Debian GNU/Linux ** messages preferred.| : :' : The universal | `. `' Operating System http://www.palfrader.org/ | `-http://www.debian.org/ ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: PK-Encrypt-only
On Wed, 30 Nov 2005 08:33:07 -0700, Kurt Fitzner said: > I know that encrypting a file without signing it is commonly done with > symmetrical encryption. My question is, do people commonly use GnuPG to > encrypt a file without signing it using PK-encryption? In email I use it when I have no access to my signing key. On a more regular basis I use it to encrypt senstive parts of a backups as well as confidential information stored in databases. Salam-Shalom, Werner ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users