Am 08.01.2014 16:26, schrieb Hans-Christoph Steiner:
>
>
> On 01/08/2014 07:02 AM, Werner Koch wrote:
>> On Tue, 7 Jan 2014 15:32, h...@guardianproject.info said:
>>
>>> OpenPGP card as a PKCS11 keystore. It seems that things are close: Java can
>>> use NSS as a provider of PKCS11. I guess the
On 21/01/14 14:03, Michael Anders wrote:
>
>> You mean what you personally consider insecure defaults. Please let's not
>> confuse people by stating opinions as facts. You're entitled to your opinion,
>> though.
>>
>> HTH,
>>
>> Peter.
>>
>
> My opinion is that SHA1 should no longer be used.
Of
On Tue, 21 Jan 2014 17:39:13 +0100
Pete Stephenson wrote:
> I've found http://www.debian-administration.org/users/dkg/weblog/48 to be a
> reasonably sensible guide for setting stronger preferences. I also added
> Twofish and Blowfish after AES256 and AES, respectively.
>
> I've not heard of any
As already mentioned, you could decrypt the file to a ram disk -- the
/dev/shm directory should already be there, but if you're trying to
bypass creating an unnecessary file altogether, you need something
else.
I actually wrote a GUI frontend for this purpose (among others) a
while back. It's call
On Jan 21, 2014 5:32 PM, "Hauke Laging"
wrote:
>
> Am Di 21.01.2014, 16:06:36 schrieb Michael Anders:
>
> > I don't know if hash preference information is additionally attached
> > to keys. I would guess it is not, it wouldn't make sense to me.
>
> Unfortunately that's not a reliable guide.
>
>
ht
Am Di 21.01.2014, 16:06:36 schrieb Michael Anders:
> I don't know if hash preference information is additionally attached
> to keys. I would guess it is not, it wouldn't make sense to me.
Unfortunately that's not a reliable guide.
http://www.gnupg.org/documentation/manuals/gnupg-devel/GPG-Esoter
On Tue, 2014-01-21 at 14:19 +, Steve Jones wrote:
> How do I prevent gnupg from using SHA1? Also how do I update my key to not
> use SHA1 digests which it appears to be using, as well as listing SHA1 as my
> second favourite algorithm.
>
I found a description in the
web(
http://sparkslinux
On Tue, 21 Jan 2014 14:03:07 +0100
Michael Anders wrote:
> My opinion is that SHA1 should no longer be used.
>
> A link on SHA1 security:
>
> https://www.schneier.com/blog/archives/2005/02/cryptanalysis_o.html
How do I prevent gnupg from using SHA1? Also how do I update my key to not use
SHA
> You mean what you personally consider insecure defaults. Please let's not
> confuse people by stating opinions as facts. You're entitled to your opinion,
> though.
>
> HTH,
>
> Peter.
>
My opinion is that SHA1 should no longer be used.
A link on SHA1 security:
https://www.schneier.com/blog
On 21/01/14 10:45, Michael Anders wrote:
> Yes, there is a necessity to have good GUI based installers that don't
> need an experts assistance to get things right (and eventually change
> the insecure gpg defaults for that matter...)
You mean what you personally consider insecure defaults. Please
TL;DR: I think you might be helped by [4]. Do an "scd killscd" from
gpg-connect-agent, install and start pcscd, install the Python module pyscard
and run the script from [4]. By the way, if you have an OpenPGP v.1 card, you're
screwed, they self-destruct on 3 wrong Admin PINs.
On 21/01/14 02:37, P
>> Any way for two correspondents to set up gnupg within a few moments
>> without having to become expert?
>>
>> The usual gnupg materials are very dense.
>
>Ask an "expert" to do the setup. After that usage is simple.
In my opinion public license software is about empowering people.
If you ne
12 matches
Mail list logo
