gnupg clearsigning question

Alphax alphasigmax at
Thu Dec 28 14:04:18 CET 2006

David Shaw wrote:
> On Wed, Dec 27, 2006 at 01:25:34PM -0500, vedaal at wrote:
>> is it possible to construct a gnupg signature that is the same each 
>> time
>> for the same file (and same signing key and hash ) ?
>> would like to do something like this for use as a truecrypt keyfile:
>> the truecrypt volume is on a usb drive,
>> the outer volume would contain the gnupg keyrings,
>> the rest of the usb drive contains miscellenaous files,
>> one of these is used for a keyfile for the outer volume,
>> now,
>> what i would like to do,
>> is clearsign one of the many textfiles on the usb,
>> and use that clearsigned textfile as a keyfile for the hidden volume
>> the problem is,
>> that this changes each time it is signed ;-(((
>> is the only reason it changes because of the timestamp?
>> (and then would just resetting the computer clock to time time of 
>> the original signing work?
>> assuming it would be set to a minute or so before, and signed 
>> repeatedly until the timestamp was right to the second)
>> if the timestamp is the only thing making the signature different,
>> would it be possible to request a feature option where the 
>> timestamp is omitted?
>> (this wouldn't affect open-pgp compatibility)
> DSA signatures contain random data, so even if you hacked around the
> timestamp problem, the signature would not match.  RSA signatures do
> not contain random data.

Err, I thought it was the other way around, which is why RSA signatures
are bigger than DSA signatures... or is the RSA signature
packaging-thing something else?

        Death to all fanatics!
  Down with categorical imperative!
OpenPGP key:

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 542 bytes
Desc: OpenPGP digital signature
Url : /pipermail/attachments/20061228/679c05c2/attachment.pgp 

More information about the Gnupg-users mailing list