No Hidden-Recipient support in GPGME?
Arturo 'Buanzo' Busleiman
buanzo at buanzo.com.ar
Thu Aug 28 14:26:59 CEST 2008
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Werner Koch wrote:
> What we could add far easier is an encryption flags which sets the
> --throw-keyid option of gpg and thus all recipients would be hidden.
That would work too! Jacob Appelbaum and I are working on the Web-of-Trust solution to the OpenPGP
for HTTP Bootstrapping issue, and we discovered that --throw-keyids would be great as a simple
counter-measure against traffic analysis.
Yours,
- --
Arturo "Buanzo" Busleiman
Independent Linux and Security Consultant - SANS - OISSG - OWASP
http://www.buanzo.com.ar/pro/eng.html
Mailing List Archives at http://archiver.mailfighter.net
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFItpmTAlpOsGhXcE0RCpauAJ0Vy7pE3rTMu+7ztTjD0ZyOj1blrQCfU0J1
Oe50kVIcdplmF0XKsWuESto=
=xhxu
-----END PGP SIGNATURE-----
More information about the Gnupg-devel
mailing list