gnupg clearsigning question
alphasigmax at gmail.com
Thu Dec 28 14:04:18 CET 2006
David Shaw wrote:
> On Wed, Dec 27, 2006 at 01:25:34PM -0500, vedaal at hush.com wrote:
>> is it possible to construct a gnupg signature that is the same each
>> for the same file (and same signing key and hash ) ?
>> would like to do something like this for use as a truecrypt keyfile:
>> the truecrypt volume is on a usb drive,
>> the outer volume would contain the gnupg keyrings,
>> the rest of the usb drive contains miscellenaous files,
>> one of these is used for a keyfile for the outer volume,
>> what i would like to do,
>> is clearsign one of the many textfiles on the usb,
>> and use that clearsigned textfile as a keyfile for the hidden volume
>> the problem is,
>> that this changes each time it is signed ;-(((
>> is the only reason it changes because of the timestamp?
>> (and then would just resetting the computer clock to time time of
>> the original signing work?
>> assuming it would be set to a minute or so before, and signed
>> repeatedly until the timestamp was right to the second)
>> if the timestamp is the only thing making the signature different,
>> would it be possible to request a feature option where the
>> timestamp is omitted?
>> (this wouldn't affect open-pgp compatibility)
> DSA signatures contain random data, so even if you hacked around the
> timestamp problem, the signature would not match. RSA signatures do
> not contain random data.
Err, I thought it was the other way around, which is why RSA signatures
are bigger than DSA signatures... or is the RSA signature
packaging-thing something else?
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 542 bytes
Desc: OpenPGP digital signature
Url : /pipermail/attachments/20061228/679c05c2/attachment.pgp
More information about the Gnupg-users