set type digest mode? plus other query // sorry, bad hushmail wrap wrecked sig

vedaal at hush.com vedaal at hush.com
Fri Oct 24 16:59:07 CEST 2008 

hushmail wrapped the signed cleartext and invalidated the sig,

here it's tried again ;-|

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Robert J. Hansen rjh at sixdemonbag.org
wrote on Fri Oct 24 12:54:55 CEST 2008:
#
>Kevin Hilton wrote:
>> Who was behind the pgp 6.5.8 ckt release?
#
Imad Faiad was responsible for most of it,
Disastry checked and wrote the code for the new revisions,
i made suggestions as to the features,
and did the bug testing
#
>http://sixdemonbag.org/cryptofaq.xhtml#ckt
#
there was only one bug, (btw, which i found),
that affected all GUI versions of 6.5.8, not just ckt,
and it involved a system crash when 6.5.8 tried to verify
a clear-signed text with two simultaneous signatures,
#
i reported this to the open-pgp group,
and to Imad, and it WAS corrected in the next ckt version,
#
the bug was not any worse than the bug in gnupg 1.0.6,
which crashed when importing a v3 key that started with a zero 
octet,
(immediately corrected in 1.0.7)
bugs happen ;-((
but as long as they are acknowledged and corrected,
the program is improved and moves on
#
>> How does this piece of antiquated software compare to modern
>> day gnupg as far as ciphers used, digests used, etc.
#
>IMO, badly. YMMV.
#
IMO,
ckt can use all ciphers used by gnupg except Camellia,
and can use all hashes used by gnupg,
#
its major development was when NAI made pgp 7 closed-source,
and there was no other open-source PGP  
that kept up with the advances of gnupg and pgp
#
it is an EXCELLENT intuitive GUI,
and if Disastry were alive,
(and if PGP followed my proposal,
to *hire* Imad and Disastry as part of their development team,
it could have become a superb user-friendly PGP build
that would be fully compatible with gnupg)
#
all that being said,
the way it stands now,
i would *NOT* recommend it,
because of the following:
#
[1] any ckt V4 rsa keys generated,
have the rsa subkey as both sign and encrypt,
and there is (as yet, afaik,) no way
that gnupg can be used to get such a key to cross-certify the 
primary key,
and since the subkey will be used by default by gnupg to sign,
gnupg will give error messages about the verification
#
[2] the pgp disk program has become incompatible with symantec, 
(since win98)
and a pgpdisk cannot be mounted unless norton anti-virus is turned 
off
#
[3] there is no support for the newer DH/DSA keys generated by gnupg
#
[4] the VPN software is incompatible with anything later than win98,
and should not be installed
#
[5] potentially major legal hassles from the PGP corporation
#
#
this is being double-signed so that people using any (non-CKT) GUI
of 6.5.8, can see it crash on *any* windows platform
#
#
vedaal
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Acts of Kindness better the World, and protect the Soul
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=p3lK
-----END PGP SIGNATURE-----


any ads or links below this message are added by hushmail without 
my endorsement or awareness of the nature of the link

--
Need cash? Apply now for a credit loan with fast approval.
http://tagline.hushmail.com/fc/Ioyw6h4d9Gyqaavx5tPd3S2yzh95ubimI30oOdbHUu04Vmfqk5No6b/

More information about the Gnupg-users mailing list