confirmation for --export-secret-key

Christoph Hertel
Sun, 19 Nov 2000 22:53:11 +0100

Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

Hello. Yes, it's me again.

Why doesn't GnuPG ask for confirmation, when it is told to export the
secret key?

AFAIK, the weakest link in this whole public-key-cryptography is the
encrypted secret-key and its passphrase. That's why some people carry
their secret key on a floppy with them all the time.

Wouldn't it be an easy attack to just change the (e.g.)
pgp_export_command setting in the mutt config (or any other program with
automated gpg handling) of the victim from '--export' to
'--export-secret-keys' and ask the victim to mail his key to the
attacker (e.g. with the 'mail-key' function of mutt)?

There is no warning or anything else. While the attacker can start to
guess the passphrase, the victim doesn't even know it and can't revoke
the key or anything else.

PGP (GnuPG) encrypted mail welcome! (Key 0xBAC8E4D5)

Content-Type: application/pgp-signature
Content-Disposition: inline

Version: GnuPG v1.0.4 (GNU/Linux)
Comment: For info see



Archive is at - Unsubscribe by sending mail
with a subject of  "unsubscribe"  to