simplifying the use of --throw-keyid option

David Shaw dshaw@jabberwocky.com
Thu Apr 3 02:31:02 2003


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Thu, Apr 03, 2003 at 12:43:48AM +0200, Johan Wevers wrote:
> David Shaw wrote:
> 
> > The development branch has better handling of such messages.  Instead
> > of prompting for each secret key, it prompts for a single passphrase
> > and tries it against all keys.  This will be in 1.4.
> 
> And what happens if you have 2 secret keys with the same passphrase and the
> first key that is tried with that passphrase is not the one the message is
> encrypted to? Are the other keys then still tried?

All keys are tried until one successfully decrypts the message.  In
the example you give, even though an earlier secret key has the same
passphrase, GnuPG will continue processing until it hits the right
key.

David
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2rc1 (GNU/Linux)
Comment: http://www.jabberwocky.com/david/keys.asc

iD8DBQE+i4DW4mZch0nhy8kRApUBAJ4tMtO8IIQUyFPw398s4It7d0BZ3QCghjOb
LJExnUV92yEkgHSQMeIgB9A=
=fowb
-----END PGP SIGNATURE-----