simplifying the use of --throw-keyid option

David Shaw dshaw@jabberwocky.com
Mon Apr 7 16:15:01 2003


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Fri, Apr 04, 2003 at 04:55:28AM +0200, Malte Gell wrote:
> Am Mittwoch, 2. April 2003 15:43 schrieb David Shaw:
> > On Wed, Apr 02, 2003 at 03:39:35AM +0200, Malte Gell wrote:
> > > if one gets a message encrypted with the --throw-keyid option the
> > > receiver's GnuPG has to try all available secret keys and this can
> > > be a bit annoying if one has several secret keys.
> > > So, wouldn't it be a nice idea to have a new option
> > > "--encrypted-with" to simplify this ?
> >
> > The development branch has better handling of such messages.  Instead
> > of prompting for each secret key, it prompts for a single passphrase
> > and tries it against all keys.  This will be in 1.4.
> 
> This sounds like a good solution and if you have tested it with your 63 
> secret keys as you mentioned...;-)
> BTW, can the use of the --throw-keyid option cause any compatibility 
> problems with older GnuPG (1.0.6/7) versions or PGP 6.x/7.x/8.x ? Or 
> can all PGP derivatives handle data encrypted this way ?

GnuPG can handle it.  No version of official PGP can handle it, but
Disastry's hacked 2.6.3 can.

David
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2rc1 (GNU/Linux)
Comment: http://www.jabberwocky.com/david/keys.asc

iD8DBQE+kYgQ4mZch0nhy8kRAju0AKCHspw5khKwDiLrowp5DTJh6MxpEQCeMe7N
FwLrYrE/JBvkiPtKJCHeO00=
=sOju
-----END PGP SIGNATURE-----