Re: Key Used to Lookup Symmetric Passphrase.

2017-02-04 Thread Peter Lebbing 
I'd like to point out that one way of solving this completely
differently is to encrypt to a private key on your keyring rather than
using symmetric mode. Then GnuPG can trivially recognise it all can be
decrypted with cached data.

It doesn't have to be your usual OpenPGP key, you could create a key
specifically for this purpose (and set it to ownertrust never if you
will never use it to do Web of Trust stuff, just to make this fact clear
to GnuPG).

HTH,

Peter.

-- 
I use the GNU Privacy Guard (GnuPG) in combination with Enigmail.
You can send me encrypted mail if you want some privacy.
My key is available at 

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Key Used to Lookup Symmetric Passphrase.

2017-02-04 Thread Ralph Corderoy 
Hi,

I wrote:
> What's the key being used to look up the symmetric passphrase?  Is it
> something random stored in *.gpg and thus survives the rename?

So I used `gpg --debug-level guru -d foo.gpg' and see the

GET_PASSPHRASE --data --repeat=0 -- S08635B195E745ED6 X X 
Enter+passphrase%0A

and from that found the code that shows S086... is eight bytes of random
salt used for the symmetric encryption.

> How can I list these in the manner of -k and -K?

That question remains.  Also, say I have three files symmetrically
encrypted at different times with the same passphrase.  I'd like the
salt used on encryption to be the same for all three so I can decrypt
them as needed but only tell gpg-agent the passphrase once.

I'm guessing this can't currently be done and would welcome education
on why not.  :-)

-- 
Cheers, Ralph.
https://plus.google.com/+RalphCorderoy

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Key Used to Lookup Symmetric Passphrase.

2017-02-03 Thread Ralph Corderoy 
Hi,

I'm using gnupg 2.1.18-1 on Arch Linux.  `gpg -c foo' asks for a
passphrase.  I enter `p-foo' twice.  For file bar it's `p-bar'.  `gpg -d
foo.gpg' doesn't prompt, which is good, getting the passphrase from the
agent.  Ditto bar.gpg.  If I rename foo.gpg to xyzzy.gpg it still
doesn't prompt, finding the correct passphrase.  What's the key being
used to look up the symmetric passphrase?  Is it something random stored
in *.gpg and thus survives the rename?  How can I list these in the
manner of -k and -K?

Very happy to read documentation on it, but haven't spotted anything so
far.

Cheers, Ralph.

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users