Re: [SLUG] OT: GPG for Windows (Outlook)?
On Fri, 15 Jul 2005 11:32 pm, Ken Foskey wrote: > On Fri, 2005-07-15 at 09:58 +1000, James Gray wrote: > > Hi All, > > > > Slightly off-topic, but I figured there's probably someone here who has > > done this. First, a little background. Our corporate mail filter > > system blocks password protected zip files. The rationale is that if > > we can't check it for viruses, you don't get to see it either. > > However, there *IS* an exception - if your message is encrypted > > (GPG/PGP, etc) we will let it through - it's very unlikely to be > > virused (yet). > > As you know there is gpg available for download off the gnupg.org site. > > There is also a batch program that will email a file, fairly simple I > can find the link from work. > > So if you want you could set them up with gpg and windows batch script > that they double click and run the emails all the files out of a > specific directory. This probably would not be incredibly hard. > > The trick then is can you actually get them to install the software. > > I did a quick google and found this: > http://www3.gdata.de/gpg/ > > Ken Hi Ken, Thanks for that. I found that Outlook plug-in but it seems to have been fairly static since 2002. I guess it shouldn't matter really if it's just a front-end. I'm investigating it as a possibility for our local users. As for the suggestion, thank you :) It's very close to what we ended up doing. I put them onto the WinPT package over at SourceForge and managed to get them to encrypt the file we needed with my public key and their private key etc. Worked well :) So well in fact, I got an e-mail from them today saying they are rolling out WinPT across their network and providing training - passworded zips are gone apparently ;) Woot! The things that impressed them were: - simplicity - security (both in transit and at the destination) - only the intended recipient can decrypt the file - any changes in transit result in failed signatures (no file is better than a corrupt one; it was a bunch of serial numbers for their products) So another win for F/OSS! Yay for WinPT and yay for me :) Thanks again Ken. Regards, James -- Your aim is high and to the right. pgpogoRMalCtv.pgp Description: PGP signature -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] OT: GPG for Windows (Outlook)?
On Fri, Jul 15, 2005 at 12:13:29 +1000, James Gray wrote: > But on a side note, we managed to transmit about 512GB of data from Sydney > to our data centre in Boston in about 3 days on one occasion (that's about > 16.67Mbps sustained for 3 days)amazing what you can do with an express > courier and a pile of DLT's! "Never underestimate the bandwidth of a station wagon full of tapes." http://www.bbc.co.uk/dna/h2g2/A678576 http://www.bpfh.net/sysadmin/never-underestimate-bandwidth.html Cheers, John -- "I thought hamsters were disposable consumer products, bought in sixpacks for practical and economical reasons?" -- Jan Ingvoldstad -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] OT: GPG for Windows (Outlook)?
On Fri, Jul 15, 2005 at 01:05:09AM +0100, Dave Airlie wrote: > Dare I suggest an sftp or ftp site? we use one here for transferring > sensitive files with external contractors.. I second this option. There's even a nice gui (winscp) for them. Matt -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] OT: GPG for Windows (Outlook)?
On Fri, 15 Jul 2005 10:13 am, Rowling, Jill wrote: > If your external source insists on the passworded zip then it depends on > how often you need to do this. > If you need to do it often enough, then the mail filter needs to be > altered for that user/source combo. Hell no. Then the external party can send us anything in a passworded zip and we'd be none the wiser (I don't trust *anyone* that much :P). Not an option in our case. Besides this is an infrequent thing, so I was hoping to avoid punching holes in our security (permanently) to allow for these corner cases. > Sometimes you have to negotiate with the sender instead. There are > free-as-in-beer versions of gpg for windows (google for it) which both > users can install at each end, and they just need to agree on a password. > They will work with outlook. We've managed to coax them into encrypting the file with GPG (WinPT I think) then sending the encrypted file, "in the clear" using my GPG key to encrypt. Once I get the file, I'll decrypt it, scan it for viruses etc, then forward it to the internal user via the LAN. > For a one-off they can courier a cdrom to each other, far cheaper than > changing the whole system. Indeed. External user is in Brisvegas, we are in Sydney, and the files need be in our system before CoB today. It's a bit of a logistics hurdle for the courier option. But on a side note, we managed to transmit about 512GB of data from Sydney to our data centre in Boston in about 3 days on one occasion (that's about 16.67Mbps sustained for 3 days)amazing what you can do with an express courier and a pile of DLT's! James -- There is, however, a strange, musty smell in the air that reminds me of something...hmm...yes...I've got it...there's a VMS nearby, or I'm a Blit. -- Larry Wall in Configure from the perl distribution pgpk0bxsRyAU2.pgp Description: PGP signature -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
RE: [SLUG] OT: GPG for Windows (Outlook)?
GnuPP offers a Win32 package with GnuPG, GPA and WinPT. There is an optional MS Outlook plug-in in the download page: http://www.gnupp.org/download.html Carlo -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of James Gray Sent: Friday, 15 July 2005 9:59 AM To: SLUG Subject: [SLUG] OT: GPG for Windows (Outlook)? Hi All, Slightly off-topic, but I figured there's probably someone here who has done this. First, a little background. Our corporate mail filter system blocks password protected zip files. The rationale is that if we can't check it for viruses, you don't get to see it either. However, there *IS* an exception - if your message is encrypted (GPG/PGP, etc) we will let it through - it's very unlikely to be virused (yet). Now, the situation at hand: a user needs to get some sensitive data (files) from an external source but the external source insists the only way to do this securely is with a passworded zip. This is creating a problem (see above). Now, I use GPG+Kmail and can encrypt/sign/decrypt messages etc in a tightly integrated interface. Life is good - the mail filter gives me no grief. My Question to the group: is there some sort of plug-in for Outlook (F/OSS preferred) users that provides similar integration. I've looked at PGP but the external user (the sender) doesn't want to spend that much $$$ on it, so I'm back to square one. I told them to run Linux too - but I was laughed at (idiots). Any help or suggestions are welcome :) Cheers, James -- QOTD: "It's not the despair... I can stand the despair. It's the hope." _ This message has been checked for all known viruses by the MessageLabs Virus Scanning Service. For further information visit http://www.Hi-Speed.net.au This email has been scanned for all viruses by the MessageLabs SkyScan service. For more information on a proactive anti-virus service working around the clock, around the globe, visit http://www.hi-speed.net.au -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
RE: [SLUG] OT: GPG for Windows (Outlook)?
If your external source insists on the passworded zip then it depends on how often you need to do this. If you need to do it often enough, then the mail filter needs to be altered for that user/source combo. Sometimes you have to negotiate with the sender instead. There are free-as-in-beer versions of gpg for windows (google for it) which both users can install at each end, and they just need to agree on a password. They will work with outlook. For a one-off they can courier a cdrom to each other, far cheaper than changing the whole system. -Original Message- From: James Gray [mailto:[EMAIL PROTECTED] Sent: Friday, 15 July 2005 9:59 AM To: SLUG Subject: [SLUG] OT: GPG for Windows (Outlook)? -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html -- IMPORTANT NOTICES This email (including any documents referred to in, or attached, to this email) may contain information that is personal, confidential or the subject of copyright or other proprietary rights in favour of Aristocrat, its affiliates or third parties. This email is intended only for the named addressee. Any privacy, confidence, copyright or other proprietary rights in favour of Aristocrat, its affiliates or third parties, is not lost because this email was sent to you by mistake. If you received this email by mistake you should: (i) not copy, disclose, distribute or otherwise use it, or its contents, without the consent of Aristocrat or the owner of the relevant rights; (ii) let us know of the mistake by reply email or by telephone (+61 2 9413 6300); and (iii) delete it from your system and destroy all copies. Any personal information contained in this email must be handled in accordance with applicable privacy laws. Electronic and internet communications can be interfered with or affected by viruses and other defects. As a result, such communications may not be successfully received or, if received, may cause interference with the integrity of receiving, processing or related systems (including hardware, software and data or information on, or using, that hardware or software). Aristocrat gives no assurances in relation to these matters. If you have any doubts about the veracity or integrity of any electronic communication we appear to have sent you, please call +61 2 9413 6300 for clarification. -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
Re: [SLUG] OT: GPG for Windows (Outlook)?
> > Now, the situation at hand: a user needs to get some sensitive data (files) > from an external source but the external source insists the only way to do > this securely is with a passworded zip. This is creating a problem (see > above). Now, I use GPG+Kmail and can encrypt/sign/decrypt messages etc in a > tightly integrated interface. Life is good - the mail filter gives me no > grief. > Dare I suggest an sftp or ftp site? we use one here for transferring sensitive files with external contractors.. Dave. -- David Airlie, Software Engineer http://www.skynet.ie/~airlied / airlied at skynet.ie Linux kernel - DRI, VAX / pam_smb / ILUG -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html