Starting with gnupg
John W. Moore III
jmoore3rd at bellsouth.net
Sat Aug 2 14:34:07 CEST 2008
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Jean-David Beyer wrote:
> But if he somehow got your private key, I do not believe he
> would need your passphrase.
YES! S/He _would_ need the passphrase even if in possession of the
Private/Secret Key. The passphrase is the "key" that unlocks the Secret
Key which is why there is so much emphasis placed on making sure Your
passphrase is a strong one that cannot easily be guessed or 'Social
Engineered'.
Should an adversary come into possession of the Secret Key they would
then need to brute force attack the passphrase. <SIGH>
JOHN ;)
Timestamp: Saturday 02 Aug 2008, 08:33 --400 (Eastern Daylight Time)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10-svn4799: (MingW32)
Comment: Public Key at: http://tinyurl.com/8cpho
Comment: Gossamer Spider Web of Trust: https://www.gswot.org
Comment: Homepage: http://tinyurl.com/yzhbhx
iQEcBAEBCgAGBQJIlFQ9AAoJEBCGy9eAtCsPI6wH/3sA85ldBEzOfhigiFaQT6Lb
hDTEhUKA72byjUAdBPtTRAqZ9zUCmppT0WX+/cPWBODHVLgJF2FfWc4Z+SWjTaXn
qjwsgU4zwiDwaNa6XiPV8kqypENuxLc7y7q3xsTdc/pr1ZT4z6kuhWcXJ3Gr6xmh
psAao5Af0DD44MRVcQPD6b8dyHhuLmGCwlJIhd+feLwrkI0AHqytCbjQHPwaRd3U
CAL2NtlWesBYsSBFw0KM1WbA50UebCTQM3GPDzNDi9w6QP0mCg2dg+CCmqhmqXnO
zRRgJNabH7R6OQ6Ok4BjRKpS8Czx/SrcUMNDi7sOOLKSpQtls8tPGMrK5n/7qXs=
=zml0
-----END PGP SIGNATURE-----
More information about the Gnupg-users
mailing list