Re: encrypting messages

[Christopher Warrington]

On 2020-03-27 at  5:33 PM, Andrew Savchenko  wrote:
> It is *technically* possible to use GPG in symmetric mode for messaging 
> purposes.
> 
> ```
> $ echo "Hello World" > cleartext
> $ gpg -o encrypted -c cleartext
> ```
> 
> ...Then one needs to wrap the routine above into something palatable for
> e-mail usage. I could imagine doing it with (neo)mutt et al., but not
> with TheBat.

This prompted me to dig into the Open PGP RFC. It looks like there IS
way to use a symmetric key [1] [2]. So, I guess there is a standard.
:-)

I've never used it, nor do I know if The Bat! can use this mode let
alone it's compatibility with other email clients.

[1]: https://tools.ietf.org/html/rfc4880#section-3.7.2.2
[2]: https://tools.ietf.org/html/rfc4880#section-5.3

-- 
Christopher Warrington 


Current version is 8.0.18 | 'Using TBUDL' information:
http://www.silverstones.com/thebat/TBUDLInfo.html

Re: encrypting messages

[Christopher Warrington]

On 2020-03-23 at 12:55:15 PM, Achdut18  wrote:

Before I go on and answer your more detailed questions, I urge you to
think about the threat model that you and your colleague have.

As with all things in security--whether online or offline--you will
want to figure out which threats you care about and how much you're
willing to do to protect against and mitigate occurrences of those
threats.

After understanding that, the two of you can then research/ask more
specific follow up questions.

Some questions to get you started:

* What assets need to be protected?

* Who are your potential adversaries?

* What are their capabilities?

* What is the probability and impact of various adverse events?

* What events do you care about trying to counter before they happen?
  Which ones do you only care about mitigating after an occurrence?

* What are the myriad ways you could safeguard/minimize/mitigate
  against these threats?

* What trade-off between spending money, convenience, and robustness
  are you willing to make?

* What level of testing/validation do you need?

* How will you learn and re-assess after you have more experience?
  
Hope this helps, but I won't be offended if the response is akin to,
"Thanks, but that's a lot of work, and we don't care that much." :-)
That's implicitly going though the exercise, so my work here is done.
:-)

Perhaps email isn't the right medium for your communications. Perhaps
your colleague is adding complexity and risk where it isn't needed.

> What I would like to be able to do is send password-protected
> messages that can only be opened by the receiving party who has the
> password. Is that what this process does?

Neither S/MIME encryption nor Open PGP encryption password protect a
message. (Encryption doesn't require password protection, and
password protection doesn't imply encryption.)

S/MIME and Open PGP use asymmetric cryptography (public & private
keys). There is no "shared secret" or password between the two of you.

A shared password would be a use of symmetric cryptography. I'm not
aware of an email encryption standard that uses symmetric cryptography.

> So, in order to send password-protected messages, do I select
> "Enable S/MIME" (which is already selected), and then "encrypt when
> completed"?

Irrelevant. See above about how this doesn't password protect a
message. :-)

When encryption is enabled, it ends up encrypting the message with the
public key of the intended recipients. In this process, there is an
assumption that proper identity verification has been performed. This
is incredibly hard to get right, particularly at scale.

The intended recipients can then use the corresponding private
keys--and ONLY the corresponding private keys--to decrypt the message.

If the private key is lost, then the message cannot be decrypted.
E.g., your colleague won't be able to call you on the phone to ask for
a password reminder.

> If so, will this only impact the message being sent and no other
> subsequent message?

IIRC, it only affects the message being sent. You may be able to
adjust the defaults here, but I haven't used this in a long time.

> I send a message that is encrypted, how will the recipient, who does
> not use The Bat, decrypt it?

They will need to use their email client's S/MIME functionality.

> The instructions for "Open PGP" states "First of all you should
> download, install and set up the preferred OpenPGP program."  
> WHAT(!) program?

There are a number of supported programs. If you want to download one
for free, take a look at https://gnupg.org/download/index.html. AFAIK,
the old commercial PGP program is no longer offered for sale.

Note, however, that Open PGP is different and not compatible with
S/MIME. You'll need to pick one of the two methods for both of you.

> Do I need to do this if all I am doing is encrypting a single
> message to a single recipient?

Yes.

> Finally, I am currently using ver 7.4.16, and it has worked fine for
> me. Is there any need to upgrade in order to accomplish what I want
> to do vis a vis password protection of specific messages?

Shouldn't  need  to.  I  remember  using either OpenPGP or GNU Privacy
Guard with The Bat! 3.x many years ago.

Though, see above: none of this password protects a message. :-)

-- 
Christopher Warrington 


Current version is 8.0.18 | 'Using TBUDL' information:
http://www.silverstones.com/thebat/TBUDLInfo.html

Re: encrypting messages

[Achdut18]

HI, 

Last summer I posted a query about how to encrypt messages.   The response left 
me more confused than when I started, so, I decided to carry on, as usual.  


M> On Tuesday 4 June 2019 at 3:08:56 AM, in
M> , Avram Sacks wrote:-


>> If I went to send an encrypted message to a client.  What are the
>> steps that would permit me to do that?

>> I apologize, in advance, if this is discussed in a help file, but I
>> could not find a coherent discussion.

MFPA responded:

M> Did you try, under Privacy and Security, The section called OpenPGP or
M> the section called S/MIME? They are not the clearest but are worth a
M> read. And maybe do a little research on the internet. Then come back
M> with more specific questions.


However, I now have a colleague who insists on using a web-based portal for 
messages that is driving me crazy and prevents me from using The Bat! as a 
repository for client correspondence with our mutual client.  So, I want to 
counter with an offer to use The Bat's features that would allow for message 
encryption.   So, I am going to try and give this another shot. 

I am not a Luddite, but The Bat's instructions were clearly written by someone 
who makes too many assumptions about the reader's understanding.

What I would like to be able to do is send password-protected messages that can 
only be opened by the receiving party who has the password.  Is that what this 
process does?  Secondly, since I am the only one who used my computer, and it's 
location is secure, I have not encrypted my message base and do not wish to do 
so, now.  

So, in order to send password-protected messages, do I select "Enable S/MIME" 
(which is already selected), and then "encrypt when completed"?  

If so, will this only impact the message being sent and no other subsequent 
message?   
  
In order to avoid having encrypted messages in my send folder, do I then need 
to open the message and decrypt it and then save the decrypted message?

I send a message that is encrypted, how will the recipient, who does not use 
The Bat, decrypt it?

The instructions for "Open PGP" states "First of all you should download, 
install and set up the preferred OpenPGP program."   WHAT(!) program?   Do I 
need to do this if all I am doing is encrypting a single message to a single 
recipient?

Finally, I am currently using ver 7.4.16, and it has worked fine for me.   Is 
there any need to upgrade in order to accomplish what I want to do vis a vis 
password protection of specific messages?

Thanks


-- 
Avi

Avram Sacks, using The Bat! Pro ver. 7.4.16 on Win 7 Pro



Current version is 8.0.18 | 'Using TBUDL' information:
http://www.silverstones.com/thebat/TBUDLInfo.html

Re: encrypting messages

[MFPA]

Hi


On Tuesday 4 June 2019 at 3:08:56 AM, in
, Avram Sacks wrote:-


> What is S/MIME?
> What is OpenPGP?

They are standards for signing and encrypting.

In both cases you generate a key or certificate. Sometimes called a
key pair because it actually consists of a public part you share and a 
private part you keep safe.

S/MIME uses Certificate Authorities (CA). You send them your
certificate to sign as certificates that are only self-signed are not
generally trusted. The CA may charge for the service and may carry out 
identity checks. It is likely a CA that doesn't charge will just check 
you can receive email at the address stated on the certificate.

OpenPGP uses a "web of trust" where users can sign each other's keys.



> Currently the bar reads "S/MIME + OpenPGP (auto)"

That means that S/MIME and OpenPGP are both enabled and that PGP/MIME
is set to "Auto". You can change these settings from the context menu
that appears if you click that part of the status bar or select
Privacy from the menu at the top.


> What is happening automatically?

If you are not actually signing or encrypting with an OpenPGP
implementation, nothing.

I think setting PGP/MIME to "Auto" allows TB! to automatically choose
which method of OpenPGP to use, inline or PGP/MIME. This relates to
how the signed or message is structured within the message source, and
to whether the PGP begin/end lines and signature are concealed or
visible in the message text. I don't recall seeing a description of 
how TB! makes this decision.



> There are also a picture of a locak and a green "Sign when
> complete" button to the right of the S/MIME + Open PGP (auto) bar.   What do 
> those buttons do?

You can select "Sign when Completed" or "Encrypt when completed". 

If you have a private key (also called a certificate) linked to your
email address, you can sign outgoing messages. If you have a public
key (certificate) linked to the recipient's email address, you can
encrypt the message you are sending.



> If I went to send an encrypted message to a client.  What are the
> steps that would permit me to do that?

> I apologize, in advance, if this is discussed in a help file, but I
> could not find a coherent discussion.

Did you try, under Privacy and Security, The section called OpenPGP or
the section called S/MIME? They are not the clearest but are worth a
read. And maybe do a little research on the internet. Then come back
with more specific questions.


-- 
Best regards

MFPA  

He's an environmentalist - his arguments are 100% recycled

Using The Bat! v8.8.2.5 (BETA) on Windows 10.0 Build 17134  



Current version is 8.0.18 | 'Using TBUDL' information:
http://www.silverstones.com/thebat/TBUDLInfo.html

Re: encrypting messages

[Avram Sacks]

Please explain how this works.   

What is S/MIME?
What is OpenPGP?

Currently the bar reads "S/MIME + OpenPGP (auto)"

What is happening automatically?

There are also a picture of a locak and a green "Sign when complete" button to 
the right of the S/MIME + Open PGP (auto) bar.   What do those buttons do?

If I went to send an encrypted message to a client.  What are the steps that 
would permit me to do that?

I apologize, in advance, if this is discussed in a help file, but I could not 
find a coherent discussion.

Thanks.

Avi

Avram L. Sacks
Attorney at Law
3809 Enfield Avenue
Skokie, IL  60076
av...@asackslaw.com
773-206-0276 



Friday, May 24, 2019, 3:13:03 PM, you wrote:

M> Hi


M> On Wednesday 22 May 2019 at 6:59:30 AM, in
M> , Avram Sacks wrote:-


>> For what it is worth, the bar at the bottom of the
>> message window,
>> on the far right reads "S/MIME + OpenPGP (auto)."   
>> Does this have
>> anything to do with what I want to do?  

M> Yes.


-- 
Avi

Avram Sacks, using The Bat! Pro ver. 7.1.18 on Win 7 Pro 



Current version is 8.0.18 | 'Using TBUDL' information:
http://www.silverstones.com/thebat/TBUDLInfo.html

Re: encrypting messages

[MFPA]

Hi


On Wednesday 22 May 2019 at 6:59:30 AM, in
, Avram Sacks wrote:-


> For what it is worth, the bar at the bottom of the
> message window,
> on the far right reads "S/MIME + OpenPGP (auto)."   
> Does this have
> anything to do with what I want to do?  

Yes.

-- 
Best regards

MFPA  

Hard work never killed anyone, but why take a risk?

Using The Bat! v8.8.2.5 (BETA) on Windows 10.0 Build 17134  



Current version is 8.0.18 | 'Using TBUDL' information:
http://www.silverstones.com/thebat/TBUDLInfo.html

Re: Encrypting Messages with PGP

[A . Curtis Martin]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

  On Wed, 11 Oct 2000 07:27:45 -0700, Nick Andriash wrote:

NA> After further reading Marck, I have to agree with you and Allie on
NA> this. Apparently, if you want to force the PGP Recipient Dialogue
NA> box to appear, hold down the SHIFT key while hitting the send
NA> button. This will avail you of the option to use Conventional
NA> Encryption and/or the Secure Viewer.

NA> You mention that the dialogue box appears for you every time, but
NA> perhaps Allie wouldn't mind trying this method to see if it works.

No, using the  key while hitting send to invoke the dialog
doesn't work here.

NA> If I recall correctly, the encryption was done before the message
NA> was sent if you used the "Privacy/PGP/Encrypt Entire Text" option
NA> from the Message Toolbar, so perhaps one would have to enable PGP
NA> via the Account Properties, and check the box for encryption. This
NA> would cause the message to be encrypted *after* you hit the send
NA> button,

Actually in the editor window, I enable PGP and select 'encrypt when
complete' in the Privacy menu to get the message encrypted upon sending.

NA> and thus by holding down the SHIFT button in this case *should*
NA> bring up the PGP Recipient Selection dialogue box.

It doesn't for me.

- --
A. Curtis Martin..
Moderator TBUDL/TBBETA  |  PGP Key ID: 0xEE079937
PGP Key: mailto:[EMAIL PROTECTED]?Subject=SendAlliePGPKey
- ---
** "Even in this corner of the galaxy, Captain, 2+2=4 ... Spock "

Using TB! v1.47 Beta/7 «» Win2k Pro SP1

-BEGIN PGP SIGNATURE-
Version: PGP 6.5.8

iQA/AwUBOeR7SvAXeSHuB5k3EQI1AwCgoSUX/DoVheGvZlHL9rZ34vijiwEAnRvf
jgZVVTA8ahuiqwJJ4CCg4nTs
=t532
-END PGP SIGNATURE-

-- 
--
View the TBUDL archive at http://tbudl.thebat.dutaint.com
To send a message to the list moderation team double click here:
   
To Unsubscribe from TBUDL, double click here and send the message:
   
--

You are subscribed as : archive@jab.org

Re: Encrypting Messages with PGP

[A . Curtis Martin]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

  On Wed, 11 Oct 2000 15:28:53 +0100, Marck D. Pearlstone wrote:

NA>> Well that seems strange, because that was not my experience when
NA>> using TB! and 6.5.8  I can't see anything in your setup that was
NA>> any different in how I had PGP's options set. I don't understand
NA>> why you get the dialogue box, and I... and others... don't/did
NA>> not. :o(

MDP> I think that the answer is that I have multiple keys on my keyring
MDP> that bear my email address. I'm sure that, if I had only one, I
MDP> would not see the dialog box.

Hmmm. I have an RSA as well as a DH/DSS key and don't always get the
dialog. I guess that the disabled DH/DSS key that you have is the reason
behind the dialog appearing for you all the time. It's interesting that
this is so even though you've defined a default key to use. It seems
that TB! cannot decide which of the DH/DSS keys to use and hence the
dialog appears.

- --
A. Curtis Martin..
Moderator TBUDL/TBBETA  |  PGP Key ID: 0xEE079937
PGP Key: mailto:[EMAIL PROTECTED]?Subject=SendAlliePGPKey
- ---
** "Procrastination: The art of keeping up with yesterday. "

Using TB! v1.47 Beta/7 «» Win2k Pro SP1

-BEGIN PGP SIGNATURE-
Version: PGP 6.5.8

iQA/AwUBOeR8H/AXeSHuB5k3EQI9RACfZebVScgvCTqDq+Q+kxzJS0FHG6UAoKLK
d5KX6lSRVIkGcHaiYjoeFJUm
=4jLD
-END PGP SIGNATURE-

-- 
--
View the TBUDL archive at http://tbudl.thebat.dutaint.com
To send a message to the list moderation team double click here:
   
To Unsubscribe from TBUDL, double click here and send the message:
   
--

You are subscribed as : archive@jab.org

Re: Encrypting Messages with PGP

[Marck D. Pearlstone]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Hi Nick,

On 11 October 2000 at 07:07:42 GMT -0700 (which was 15:07 where I
live) Nick Andriash wrote and made these points on the subject
of "Encrypting Messages with PGP":

>> That's it - and I always get (and always have got) the key
>> selection box when encrypting messages. This comes up before the
>> pass-phrase entry window IIRC.

NA> Well that seems strange, because that was not my experience when
NA> using TB! and 6.5.8  I can't see anything in your setup that was
NA> any different in how I had PGP's options set. I don't understand
NA> why you get the dialogue box, and I... and others... don't/did
NA> not. :o(

I think that the answer is that I have multiple keys on my keyring
that bear my email address. I'm sure that, if I had only one, I would
not see the dialog box.

- --
Cheers,
.\\arck
 
[Marck D. Pearlstone | Moderator TBUDL / TBBETA  ]
[ PGP Key ID: 0x929DCDA0 | www: http://www.silverstones.com  ]
[ PGP Key:  ]

 Boycott shampoo...  Demand REAL poo!
 
 TB! v1.47 Beta/7 S/N 14F4B4B2 on Windows NT 5.0 Build 2195 Service Pack 1

-BEGIN PGP SIGNATURE-
Version: PGP 6.5.8 Secured
Comment: PGP Sealed for freshness

iQA/AwUBOeR5JTnkJKuSnc2gEQKpywCgygcrJKztbjASKVsNV1uLN8DYxJMAoOk9
RDjR93+9eaw/eoMiDn5mchAl
=VoVd
-END PGP SIGNATURE-

-- 
--
View the TBUDL archive at http://tbudl.thebat.dutaint.com
To send a message to the list moderation team double click here:
   
To Unsubscribe from TBUDL, double click here and send the message:
   
--

You are subscribed as : archive@jab.org

Re: Encrypting Messages with PGP

[Nick Andriash]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On October 11, 2000 Marck D. Pearlstone Wrote:

> I don't think it's a bug - I think it is how it is supposed to work.

After further reading Marck, I have to agree with you and Allie on this.
Apparently, if you want to force the PGP Recipient Dialogue box to
appear,
hold down the SHIFT key while hitting the send button. This will avail
you
of the option to use Conventional Encryption and/or the Secure Viewer.

You mention that the dialogue box appears for you every time, but perhaps
Allie wouldn't mind trying this method to see if it works. If I recall
correctly, the encryption was done before the message was sent if you
used
the "Privacy/PGP/Encrypt Entire Text" option from the Message Toolbar, so
perhaps one would have to enable PGP via the Account Properties, and
check
the box for encryption. This would cause the message to be encrypted
*after* you hit the send button, and thus by holding down the SHIFT
button
in this case *should* bring up the PGP Recipient Selection dialogue box.

Amazing what you find out when reading the manual. 


Nick


N.J. Andriash [ TB! v1.47B7 | PGP 7.0 | Win 98 SE ]
 Vancouver, B.C. Canada | PGP Key ID:  0x7BA3FDCE  
___
 

-BEGIN PGP SIGNATURE-
Version: PGP 7.0
Comment: Join PGP-Basics at http://www.egroups.com/group/PGP-Basics

iQA/AwUBOeR43MUChHR7o/3OEQIw1wCg98VOld4okTM5Xy2cYqbXBEWBqEcAn1jw
xe7payHGllctRW+9s4b4sCxF
=chBA
-END PGP SIGNATURE-

-- 
--
View the TBUDL archive at http://tbudl.thebat.dutaint.com
To send a message to the list moderation team double click here:
   
To Unsubscribe from TBUDL, double click here and send the message:
   
--

You are subscribed as : archive@jab.org

Re: Encrypting Messages with PGP

[A . Curtis Martin]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

  On Wed, 11 Oct 2000 07:04:51 -0700, Nick Andriash wrote:

NA> You make a good point there Allie, but what if you have more than
NA> one Public Key associated with a given recipient... will TB!/6.5.8
NA> produce the dialogue box giving you a choice of which Public Key to
NA> use?

Yes it will, if the addresses associated with the keys are the same or
doesn't correspond with the current intended address.

NA> What if you were sending the message to a colleague in the next
NA> office, and only wanted to use conventional encryption,

If you have a PGP key for the recipient, why would you wish to use
conventional encryption? If you don't have a key for the person in the
next office, the dialog will appear.

NA> or use the secure viewer?

Is this for message decryption?  If so, I use PGP tray when I wish to
use the secure viewer. I assign a hot-key to it. I use the TB!
decryption shortcut if I wish to decrypt the message the TB! way and I
use the PGP Tray hot-key if I wish to use the secure viewer.

- --
A. Curtis Martin..
Moderator TBUDL/TBBETA  |  PGP Key ID: 0xEE079937
PGP Key: mailto:[EMAIL PROTECTED]?Subject=SendAlliePGPKey
- ---
** "One man's constant is another man's variable. - Perlis "

Using TB! v1.47 Beta/7 «» Win2k Pro SP1

-BEGIN PGP SIGNATURE-
Version: PGP 6.5.8

iQA/AwUBOeR22vAXeSHuB5k3EQIasACgzcvpftdYvLvsSKNhqMJi+QgNHlUAn2eD
fZPzlu91PqexxUWeo4F4e0aL
=WXbz
-END PGP SIGNATURE-

-- 
--
View the TBUDL archive at http://tbudl.thebat.dutaint.com
To send a message to the list moderation team double click here:
   
To Unsubscribe from TBUDL, double click here and send the message:
   
--

You are subscribed as : archive@jab.org

Re: Encrypting Messages with PGP

[Nick Andriash]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On October 11, 2000 Marck D. Pearlstone Wrote:

> That's it - and I always get (and always have got) the key selection
> box when encrypting messages. This comes up before the pass-phrase
> entry window IIRC.

Well that seems strange, because that was not my experience when using
TB!
and 6.5.8  I can't see anything in your setup that was any different in
how I had PGP's options set. I don't understand why you get the dialogue
box, and I... and others... don't/did not. :o(


Nick


N.J. Andriash [ TB! v1.47B7 | PGP 7.0 | Win 98 SE ]
 Vancouver, B.C. Canada | PGP Key ID:  0x7BA3FDCE  
___
 

-BEGIN PGP SIGNATURE-
Version: PGP 7.0
Comment: Join PGP-Basics at http://www.egroups.com/group/PGP-Basics

iQA/AwUBOeR0KsUChHR7o/3OEQLWUACg1VST62uFzx2JHzHXLQq3IdrPJNEAoLDG
J8UbnqsfcKO83D5CghKzy99w
=ysEZ
-END PGP SIGNATURE-

-- 
--
View the TBUDL archive at http://tbudl.thebat.dutaint.com
To send a message to the list moderation team double click here:
   
To Unsubscribe from TBUDL, double click here and send the message:
   
--

You are subscribed as : archive@jab.org

Re: Encrypting Messages with PGP

[Nick Andriash]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On October 11, 2000 A. Curtis Martin Wrote:

> No problem, but hang on there a minute Nick. If I wish to encrypt the
> message to multiple recipients, when I address the message to the other
> recipients, the encryption to the other recipients is also done
> automatically (unless uncertainties with the other recipients key as I
> outlined before arise). I can't think of any practical reason why I'd
> want to encrypt a message to someone to whom the message will not be
> sent to.

You make a good point there Allie, but what if you have more than one
Public Key associated with a given recipient... will TB!/6.5.8 produce
the
dialogue box giving you a choice of which Public Key to use?

What if you were sending the message to a colleague in the next office,
and only wanted to use conventional encryption, or use the secure viewer?
How would you avail yourself of those features?


Nick


N.J. Andriash [ TB! v1.47B7 | PGP 7.0 | Win 98 SE ]
 Vancouver, B.C. Canada | PGP Key ID:  0x7BA3FDCE  
___
 

-BEGIN PGP SIGNATURE-
Version: PGP 7.0
Comment: Join PGP-Basics at http://www.egroups.com/group/PGP-Basics

iQA/AwUBOeRzf8UChHR7o/3OEQIBTgCgwy5UCutgB0kf6c3WddR29FwiJZkAn0m5
Wf/abvmkvPz+PCjv9dLKbdwz
=6AH0
-END PGP SIGNATURE-

-- 
--
View the TBUDL archive at http://tbudl.thebat.dutaint.com
To send a message to the list moderation team double click here:
   
To Unsubscribe from TBUDL, double click here and send the message:
   
--

You are subscribed as : archive@jab.org

Re: Encrypting Messages with PGP

[A . Curtis Martin]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

  On Wed, 11 Oct 2000 11:24:48 +0200, Krister Ekstrom wrote:

KE> I have similar problems as Nick describes with pgp v6.5.8. I've just
KE> switched to the ckt build of pgp 6.5.8 and have yet to post a
KE> message which is encrypted to see if i have the same problems. But
KE> one thing i wonder is is this the same when you post a new msg as
KE> when you reply?

Yes it is the same. The same reasons for the key selection pop-up dialog
appearing apply for both new and reply messages.

KE> I've only replied to encrypted messages, and then the bat chooses
KE> the recipients key.

This is because you have a single key associated with the recipient
address. There's no other key to choose from, hence the dialog doesn't
appear.

- --
A. Curtis Martin..
Moderator TBUDL/TBBETA  |  PGP Key ID: 0xEE079937
PGP Key: mailto:[EMAIL PROTECTED]?Subject=SendAlliePGPKey
- ---
** "Did you expect mere proof to sway my opinion? "

Using TB! v1.47 Beta/7 «» Win2k Pro SP1

-BEGIN PGP SIGNATURE-
Version: PGP 6.5.8

iQA/AwUBOeRHr/AXeSHuB5k3EQIZ7ACfc/V8Y9OXQicSGHlbcupeT2lM1FUAoOhx
tZzvVYCsXP4qtzrb4TDkoXRh
=zC7p
-END PGP SIGNATURE-

-- 
--
View the TBUDL archive at http://tbudl.thebat.dutaint.com
To send a message to the list moderation team double click here:
   
To Unsubscribe from TBUDL, double click here and send the message:
   
--

You are subscribed as : archive@jab.org

Re: Encrypting Messages with PGP

[Krister Ekstrom]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Hi!

on Wednesday, October 11, 2000 02:21:04, our bat friend Marck D. Pearlstone typed:


NA>> Can someone please verify that for me, and if that is the case, I
NA>> want to put in a feature request to Stef and Max. PGP is designed
NA>> to give you that dialogue box during encryption, allowing for
NA>> multiple recipients, so I would consider TB!'s PGP implementation
NA>> missing a feature... or perhaps classify it even as a bug.

MDP> Any other comments? Who sees what I see? Who sees what Nick sees (or
MDP> doesn't see as the case may be)?

I have similar problems as Nick describes with pgp v6.5.8. I've just
switched to the ckt build of pgp 6.5.8 and have yet to post a message
which is encrypted to see if i have the same problems. But one thing i
wonder is is this the same when you post a new msg as when you reply?
I've only replied to encrypted messages, and then the bat chooses the
recipients key.




- --
/Krister

email: [EMAIL PROTECTED]
Icq: 902032
Obtain my pgp keys by sending a mail to this address: 
mailto:[EMAIL PROTECTED]?subject=Send_pgp_keys



Using The Bat 1.46c under Windows 98, V4 10, build   A

-BEGIN PGP SIGNATURE-
Version: PGP 6.5i

iQA/AwUBOeQj7jg5SXqDEzkLEQIPRACdGwoSp8864JDBXffNnapIo9M6/QwAnjT8
LznJIePygYHo3Se0Oahid6Sl
=6jNA
-END PGP SIGNATURE-

-- 
--
View the TBUDL archive at http://tbudl.thebat.dutaint.com
To send a message to the list moderation team double click here:
   
To Unsubscribe from TBUDL, double click here and send the message:
   
--

You are subscribed as : archive@jab.org

Re: Encrypting Messages with PGP

[Marck D. Pearlstone]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Hi Nick,

On 11 October 2000 at 20:23:26 GMT -0700 (which was 04:23 where I
live) Nick Andriash wrote and made these points on the subject
of "Encrypting Messages with PGP":

>> IOW's the box seems to pop up only when there is some uncertainty
>> as to which key to use.

This makes sense, because I have a default key *and* an RSA key which
I don't use (plus a disabled DH/DSS key which was once in use).

NA> Thanks for the confirmation Allie. The mere fact that the dialogue
NA> box doesn't appear under all conditions, is deserving of a report
NA> to RitLABS which I have just sent off. Not sure if others have
NA> sent one in, but I didn't think it would do any harm to send mine
NA> in.

I don't think it's a bug - I think it is how it is supposed to work.

NA> Being able to choose multiple recipients is a feature of PGP's
NA> encryption process, so not having that choice when using TB! is a
NA> clear indication that the problem rests with the plug-in.

If you have one key and only one key for each address specified, what
is the purpose in offering a further choice of encryption keys? Why
would you want it to do that if the message has one recipient with a
single known key for that target address and one sender with a single
know key for that sender's address? Under what circumstances would
that cause a problem?

You can force the issue by generating a secondary key for your own
address and not publishing it. That will ensure that the dialog box
always appears (as it does here). *I* wish it wouldn't sometimes !

- --
Cheers,
.\\arck
 
[Marck D. Pearlstone | Moderator TBUDL / TBBETA  ]
[ PGP Key ID: 0x929DCDA0 | www: http://www.silverstones.com  ]
[ PGP Key:  ]

 Stress is when you wake up screaming & you
realize you haven't fallen asleep yet.
 
 TB! v1.47 Beta/7 S/N 14F4B4B2 on Windows NT 5.0 Build 2195 Service Pack 1

-BEGIN PGP SIGNATURE-
Version: PGP 6.5.8 Secured
Comment: PGP Sealed for freshness

iQA/AwUBOeQsaTnkJKuSnc2gEQKUcwCg2YlxZzTIJ9O2vTg5EHH+BFl7p1EAoOM1
CqYvSPzF1VrYoHTZ4aTIQlDc
=sI8z
-END PGP SIGNATURE-

-- 
--
View the TBUDL archive at http://tbudl.thebat.dutaint.com
To send a message to the list moderation team double click here:
   
To Unsubscribe from TBUDL, double click here and send the message:
   
--

You are subscribed as : archive@jab.org

Re: Encrypting Messages with PGP

[Marck D. Pearlstone]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Hi Nick,

On 11 October 2000 at 17:50:57 GMT -0700 (which was 01:50 where I
live) Nick Andriash wrote and made these points on the subject
of "Encrypting Messages with PGP":

>> That's not what I see. I get a selection dialog showing the two
>> keys which TB/PGP is intending to use (the recipient's and my
>> default key) in a small lower panel and allowing me to select any
>> others from my keyring in a larger listbox above.

NA> Hmmm... as far as I can recollect, I never saw that dialogue box,
NA> and now a few Members of PGP-Basics are saying the same thing. I
NA> wonder... did you cache your passphrase? Perhaps *not* caching the
NA> passphrase for encrypting forced the dialogue box? 

I do cache my passphrase - for 24 hours (less 1 second). So it's not
that. I'm using PGP 6.5.8 with the 6.5 TB DLL. Let's see; what options
do I have set under PGP? General - all on with both caching settings
at ~24 hour, 8 wiping passes. Files - where they are. Email - nothing
checked. Hotkeys - none. Servers - bizarre (I have to point all of
them at my local proxy server on consecutive ports and *it* maps them
to the appropriate servers), synchronisation upon Encrypting and
Verification only. CA - mostly empty with type set to Net Tools PKI
Server. Advanced - CAST, all three algorithms allowed; Trust Model,
only "Warn when encrypting to keys with an ADK" enabled; Export format
- - complete.

That's it - and I always get (and always have got) the key selection
box when encrypting messages. This comes up before the pass-phrase
entry window IIRC.

- --
Cheers,
.\\arck
 
[Marck D. Pearlstone | Moderator TBUDL / TBBETA  ]
[ PGP Key ID: 0x929DCDA0 | www: http://www.silverstones.com  ]
[ PGP Key:  ]

 Who are these kids and why are they calling me Mom?
 
 TB! v1.47 Beta/7 S/N 14F4B4B2 on Windows NT 5.0 Build 2195 Service Pack 1

-BEGIN PGP SIGNATURE-
Version: PGP 6.5.8 Secured
Comment: PGP Sealed for freshness

iQA/AwUBOeQqJDnkJKuSnc2gEQKKXgCg9JqDW0DCf57bxvekiP12RJ6mmHgAoLUf
Zbvon7cHCUwwBA+t8kh7UiK5
=MhdD
-END PGP SIGNATURE-

-- 
--
View the TBUDL archive at http://tbudl.thebat.dutaint.com
To send a message to the list moderation team double click here:
   
To Unsubscribe from TBUDL, double click here and send the message:
   
--

You are subscribed as : archive@jab.org

Re: Encrypting Messages with PGP

[A . Curtis Martin]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

  On Tue, 10 Oct 2000 20:23:26 -0700, Nick Andriash wrote:

NA> Being able to choose multiple recipients is a feature of PGP's encryption
NA> process, so not having that choice when using TB! is a clear indication
NA> that the problem rests with the plug-in.

NA> Thanks again for your input.

No problem, but hang on there a minute Nick. If I wish to encrypt the
message to multiple recipients, when I address the message to the other
recipients, the encryption to the other recipients is also done
automatically (unless uncertainties with the other recipients key as I
outlined before arise). I can't think of any practical reason why I'd
want to encrypt a message to someone to whom the message will not be
sent to.

- --
A. Curtis Martin..
Moderator TBUDL/TBBETA  |  PGP Key ID: 0xEE079937
PGP Key: mailto:[EMAIL PROTECTED]?Subject=SendAlliePGPKey
- ---
** "Ignorance can be cured. Stupid is forever. "

Using TB! v1.47 Beta/7 «» Win2k Pro SP1

-BEGIN PGP SIGNATURE-
Version: PGP 6.5.8

iQA/AwUBOePiXfAXeSHuB5k3EQLfPACgim+jvwwSycL8aGHffc34NZFDLRcAnj5T
Vbp7P1Q98zzuqvA/kmVXDAQH
=cQjx
-END PGP SIGNATURE-

-- 
--
View the TBUDL archive at http://tbudl.thebat.dutaint.com
To send a message to the list moderation team double click here:
   
To Unsubscribe from TBUDL, double click here and send the message:
   
--

You are subscribed as : archive@jab.org

Re: Encrypting Messages with PGP

[Nick Andriash]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On October 10, 2000 A. Curtis Martin Wrote:

> IOW's the box seems to pop up only when there is some uncertainty as to
> which key to use.

Thanks for the confirmation Allie. The mere fact that the dialogue box
doesn't appear under all conditions, is deserving of a report to RitLABS
which I have just sent off. Not sure if others have sent one in, but I
didn't think it would do any harm to send mine in.

Being able to choose multiple recipients is a feature of PGP's encryption
process, so not having that choice when using TB! is a clear indication
that the problem rests with the plug-in.

Thanks again for your input.


Nick


N.J. Andriash [ TB! v1.47B7 | PGP 7.0 | Win 98 SE ]
 Vancouver, B.C. Canada | PGP Key ID:  0x7BA3FDCE  
___
 
-BEGIN PGP SIGNATURE-
Version: PGP 7.0
Comment: Join PGP-Basics at http://www.egroups.com/group/PGP-Basics

iQA/AwUBOePdK8UChHR7o/3OEQLCuACg421ZwZZrWu0VlHB3567/CsvueIQAn3je
PiEdJInUEfioI+QluDerwnjb
=/G2k
-END PGP SIGNATURE-

-- 
--
View the TBUDL archive at http://tbudl.thebat.dutaint.com
To send a message to the list moderation team double click here:
   
To Unsubscribe from TBUDL, double click here and send the message:
   
--

You are subscribed as : archive@jab.org

Re: Encrypting Messages with PGP

[A . Curtis Martin]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

  On Wed, 11 Oct 2000 01:21:04 +0100, Marck D. Pearlstone wrote:

NA>> If I remember correctly when I was using PGP 6.5.8 via TB!'s
NA>> plug-in, no such dialogue box appeared, and the message was simply
NA>> encrypted to whomever it was addressed to (along with your default
NA>> key if you set the options as such), with no opportunity to add
NA>> recipients.

MDP> That's not what I see. I get a selection dialog showing the two keys
MDP> which TB/PGP is intending to use (the recipient's and my default key)
MDP> in a small lower panel and allowing me to select any others from my
MDP> keyring in a larger listbox above.

I only get the box with a choice of which keys to use in the following
situations:

a) When I have more than one of the same key type, using the same name
or e-mail address, for the message recipient.

b) When I'm trying to encrypt mail for a recipient whose public key is
not associated with the current To: address.

c) When the key for signing is found to be invalid.

Otherwise the message is automatically encrypted without the key choice
dialog popping up. When I encrypt a message to you Marck, the dialog
doesn't appear. Same for Nick.

IOW's the box seems to pop up only when there is some uncertainty as to
which key to use.

- --
A. Curtis Martin..
Moderator TBUDL/TBBETA  |  PGP Key ID: 0xEE079937
PGP Key: mailto:[EMAIL PROTECTED]?Subject=SendAlliePGPKey
- ---
** "Shift happpens. - Doppler "

Using TB! v1.47 Beta/7 «» Win2k Pro SP1

-BEGIN PGP SIGNATURE-
Version: PGP 6.5.8

iQA/AwUBOePQiPAXeSHuB5k3EQKziQCfbwRhwxGv9q8H/mT7w8R5wxT4zcUAoO5D
cnCUjuoAGsllKb83ET/77tB9
=iTvh
-END PGP SIGNATURE-

-- 
--
View the TBUDL archive at http://tbudl.thebat.dutaint.com
To send a message to the list moderation team double click here:
   
To Unsubscribe from TBUDL, double click here and send the message:
   
--

You are subscribed as : archive@jab.org

Re: Encrypting Messages with PGP

[Gary]

Hi Marck,

On Tuesday, October 10, 2000, 7:21 PM, you wrote in part about
"Encrypting Messages with PGP":

M> That's not what I see. I get a selection dialog showing the two keys
M> which TB/PGP is intending to use (the recipient's and my default key)
M> in a small lower panel and allowing me to select any others from my
M> keyring in a larger listbox above.

M> Any other comments? Who sees what I see? Who sees what Nick sees (or
M> doesn't see as the case may be)?

Just got back into town after being gone for a number of days.  I see
exactly what Marck sees.

-- 
 
Best regards,
 Gary  

Today's thought: Poor planning on your part does not constitute an emergency on my 
part.  

PGP Public Key: mailto:[EMAIL PROTECTED]?subject=SendPGPKey



-- 
--
View the TBUDL archive at http://tbudl.thebat.dutaint.com
To send a message to the list moderation team double click here:
   
To Unsubscribe from TBUDL, double click here and send the message:
   
--

You are subscribed as : archive@jab.org

Re: Encrypting Messages with PGP

[Nick Andriash]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On October 10, 2000 Marck D. Pearlstone Wrote:

> That's not what I see. I get a selection dialog showing the two keys
> which TB/PGP is intending to use (the recipient's and my default key)
> in a small lower panel and allowing me to select any others from my
> keyring in a larger listbox above.

Hmmm... as far as I can recollect, I never saw that dialogue box, and now
a few Members of PGP-Basics are saying the same thing. I wonder... did you
cache your passphrase? Perhaps *not* caching the passphrase for encrypting
forced the dialogue box? 


Nick


N.J. Andriash [ TB! v1.47B7 | PGP 7.0 | Win 98 SE ]
 Vancouver, B.C. Canada | PGP Key ID:  0x7BA3FDCE  
___
 
-BEGIN PGP SIGNATURE-
Version: PGP 7.0
Comment: Join PGP-Basics at http://www.egroups.com/group/PGP-Basics

iQA/AwUBOeO5b8UChHR7o/3OEQIR5QCgz07k2HiISPV/3RksMp0WCEP2qtkAnRnN
+Sjq7pLdRy1XR41R2ZrC8yPm
=DomY
-END PGP SIGNATURE-

-- 
--
View the TBUDL archive at http://tbudl.thebat.dutaint.com
To send a message to the list moderation team double click here:
   
To Unsubscribe from TBUDL, double click here and send the message:
   
--

You are subscribed as : archive@jab.org

Re: Encrypting Messages with PGP

[Marck D. Pearlstone]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Hi Nick,

On 11 October 2000 at 16:36:54 GMT -0700 (which was 00:36 where I
live) Nick Andriash wrote and made these points on the subject
of "Encrypting Messages with PGP":

NA> If I remember correctly when I was using PGP 6.5.8 via TB!'s
NA> plug-in, no such dialogue box appeared, and the message was simply
NA> encrypted to whomever it was addressed to (along with your default
NA> key if you set the options as such), with no opportunity to add
NA> recipients.

That's not what I see. I get a selection dialog showing the two keys
which TB/PGP is intending to use (the recipient's and my default key)
in a small lower panel and allowing me to select any others from my
keyring in a larger listbox above.

NA> Can someone please verify that for me, and if that is the case, I
NA> want to put in a feature request to Stef and Max. PGP is designed
NA> to give you that dialogue box during encryption, allowing for
NA> multiple recipients, so I would consider TB!'s PGP implementation
NA> missing a feature... or perhaps classify it even as a bug.

Any other comments? Who sees what I see? Who sees what Nick sees (or
doesn't see as the case may be)?

- --
Cheers,
.\\arck
 
[Marck D. Pearlstone | Moderator TBUDL / TBBETA  ]
[ PGP Key ID: 0x929DCDA0 | www: http://www.silverstones.com  ]
[ PGP Key:  ]

 Headline - Deer Kill 17,000
 
 TB! v1.47 Beta/7 S/N 14F4B4B2 on Windows NT 5.0 Build 2195 Service Pack 1

-BEGIN PGP SIGNATURE-
Version: PGP 6.5.8 Secured
Comment: PGP Sealed for freshness

iQA/AwUBOeOydjnkJKuSnc2gEQKO3QCdE/nDX60gOLcb63i2RjwSqU+x3CEAn2YT
6BiqEwPQ7YAelBPvZVEoZztl
=sn/m
-END PGP SIGNATURE-

-- 
--
View the TBUDL archive at http://tbudl.thebat.dutaint.com
To send a message to the list moderation team double click here:
   
To Unsubscribe from TBUDL, double click here and send the message:
   
--

You are subscribed as : archive@jab.org