[svn] GnuPG - r4820 - trunk/doc

svn author wk cvs at cvs.gnupg.org
Thu Aug 28 16:57:26 CEST 2008 

Author: wk
Date: 2008-08-28 16:57:25 +0200 (Thu, 28 Aug 2008)
New Revision: 4820

Modified:
   trunk/doc/DETAILS
   trunk/doc/gpg.texi
Log:
Add a warning nite to --throw-keyds.


Modified: trunk/doc/DETAILS
===================================================================
--- trunk/doc/DETAILS	2008-08-27 17:01:29 UTC (rev 4819)
+++ trunk/doc/DETAILS	2008-08-28 14:57:25 UTC (rev 4820)
@@ -60,8 +60,8 @@
 		    be marked as ultimately trusted. 
 
             For X.509 certificates an 'u' is used for a trusted root
-            certificates (i.e. for the truct anchor) and and 'f' for
-            all other validated certificates.
+            certificate (i.e. for the trust anchor) and an 'f' for all
+            other valid certificates.
 
  3. Field:  length of key in bits.
 

Modified: trunk/doc/gpg.texi
===================================================================
--- trunk/doc/gpg.texi	2008-08-27 17:01:29 UTC (rev 4819)
+++ trunk/doc/gpg.texi	2008-08-28 14:57:25 UTC (rev 4820)
@@ -2264,12 +2264,15 @@
 
 @item --throw-keyids
 @itemx --no-throw-keyids
-Do not put the recipient key IDs into encrypted messages. This helps
-to hide the receivers of the message and is a limited countermeasure
-against traffic analysis. On the receiving side, it may slow down the
-decryption process because all available secret keys must be tried.
- at option{--no-throw-keyids} disables this option. This option is essentially
-the same as using @option{--hidden-recipient} for all recipients.
+Do not put the recipient key IDs into encrypted messages. This helps to
+hide the receivers of the message and is a limited countermeasure
+against traffic analysis. at footnote{Using a little social engineering
+anyone who is able to decrypt the message can check whether one of the
+other recipients is the one he suspects.}  On the receiving side, it may
+slow down the decryption process because all available secret keys must
+be tried.  @option{--no-throw-keyids} disables this option. This option
+is essentially the same as using @option{--hidden-recipient} for all
+recipients.
 
 @item --not-dash-escaped
 This option changes the behavior of cleartext signatures

More information about the Gnupg-commits mailing list