Non-cipher preferences (Was: Re: --override-session-key $PASS simple brute force attack vulnerability?)

Brian M. Carlson karlsson@hal-pc.org
Wed Jul 17 22:11:02 2002 

--HqPpMaT+a6TeY/Q4
Content-Type: multipart/mixed; boundary="bGopQmzlzQgFk3Fg"
Content-Disposition: inline


--bGopQmzlzQgFk3Fg
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Wed, Jul 17, 2002 at 12:09:47PM -0400, David Shaw wrote:
> On Wed, Jul 17, 2002 at 04:06:43AM +0000, Brian M. Carlson wrote:
> > On Tue, Jul 16, 2002 at 11:06:42PM -0400, David Shaw wrote:
> > > On Wed, Jul 17, 2002 at 12:01:47AM +0000, Brian M. Carlson wrote:
> > > > On Tue, Jul 16, 2002 at 06:57:01PM -0400, David Shaw wrote:
> > >=20
> > > > > If the user selects "showpref", GnuPG shows what the preferences =
are
> > > > > *in effect*.  That is, including 3DES/SHA1/Uncompressed if they a=
re
> > > > > not already present.  This is because GnuPG is going to act on th=
ose
> > > > > pseudo-preferences whether or not they are physically present.
> > > > =20
> > > > > If the user selects "pref", GnuPG shows what the preferences are =
*on
> > > > > the key*.  If the key owner hates SHA1, then they can leave it ou=
t and
> > > > > it won't sully their display.  Either way, it doesn't change that
> > > > > GnuPG is going to use the implied preferences if all else fails.
> > > >=20
> > > > This should be documented.
> > >=20
> > > Hey, give me a chance.  1.2 isn't even released yet.  You're using the
> > > development version ;)
> >=20
> > I can deal with that.
>=20
> You could write that bit for the documentation too you know... :)

Done.

You won't need a copyright assignment. The patch is in the public
domain.

bb7793f7ed0b8bb85f2a010fda4b3e4f *gpg.sgml.patch
=20
--=20
Brian M. Carlson <karlsson@hal-pc.org> <http://decoy.wox.org/~bmc> 0x560553=
E7
Life is a game.  Money is how we keep score.
-- Ted Turner

--bGopQmzlzQgFk3Fg
Content-Type: text/plain; charset=us-ascii
Content-Disposition: attachment; filename="gpg.sgml.patch"

--- gpg.sgml.orig	Tue Jun 25 21:51:56 2002
+++ gpg.sgml	Wed Jul 17 20:02:57 2002
@@ -396,11 +396,12 @@
     <varlistentry>
     <term>pref</term>
     <listitem><para>
-List preferences.</para></listitem></varlistentry>
+Lists the preferences on the key only.</para></listitem></varlistentry>
     <varlistentry>
     <term>showpref</term>
     <listitem><para>
-More verbose preferences listing.</para></listitem></varlistentry>
+More verbose preferences listing. Shows the preferences in effect.
+</para></listitem></varlistentry>
     <varlistentry>
     <term>setpref &ParmString;</term>
     <listitem><para>

--bGopQmzlzQgFk3Fg--

--HqPpMaT+a6TeY/Q4
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.1.90 (GNU/Linux)
Comment: Ubi libertas, ibi patria.

iQFKBAEBAwA0BQI9Nc+yLRpodHRwOi8vZGVjb3kud294Lm9yZy9+Ym1jL29wZW5w
Z3AvcG9saWN5LnRleAAKCRDlkf/JVgVT59e1CACOXv8+cswGBiJJB7LM6ofBgjsl
dWrrlU9Kh1czJiijQ4Ou+9DbJc+EKaajw5ZVw+iXRUQXGs4Vv8m0P6oI0GRhajKt
LzOkyOYUcEOESL77V+ykte5ZdxQcq2odQipaE+3yXKTSqV0pP+xvEmNi5R1TKm1J
NpjwJE0AmiLOMJeU3bLnvMaV9z5fVipH35nfq/cRlsgolO549bJ3Y6cm3gvkjlrt
yR8lRiDHYImCuUCtUT0F0NorEzpyzv9e0uaGySiOe3FWgaQIKq1xllbvzfwqJ87k
e3SPgd+5+INs/w/O1Lj1yy338o0WsiYv6fYsPRNhBF7qpS4k88H4GBDJMQaU
=kSSx
-----END PGP SIGNATURE-----
Signature policy: http://decoy.wox.org/~bmc/openpgp/policy.tex

--HqPpMaT+a6TeY/Q4--