IDEA

Todd Zullinger tmz at pobox.com
Wed Jan 23 20:47:27 CET 2008


McDougall, Marshall (STEM) wrote:
> Hi All.
> 
> First post....be gentle :-}
> 
> I have a RHEL server and I am having difficulty decrypting a pgp
> encrypted file.  Near as I can tell, I need the IDEA cipher.  
> 
> [user at myserver]# gpg --decrypt myfile.txt 
> gpg: protection algorithm 1 (IDEA) is not supported
> gpg: the IDEA cipher plugin is not present
> gpg: please see http://www.gnupg.org/why-not-idea.html for more
> information
> gpg: encrypted with 1024-bit RSA key, ID C0A298D3, created 2004-07-13
>      "one_of_my_keys"
> gpg: public key decryption failed: unknown cipher algorithm
> gpg: decryption failed: secret key not available
> 
> I roamed around the GNUPG site and found the "idea.c.gz" downloads, but
> the instructions allude to directories that don't exist on my server.
> Has anyone added IDEA to an existing canned redhat installation?  I am
> open to any suggestion.  Thanks.

You can rebuild the gnupg srpm and add idea.  A few small changes to
the spec file (like in the attached diff) should do what you want.

A better solution would be to have sender encrypt the file to you
using a cipher that you can use without any patents or other
encumbrances.  Does your key have a cipher pref for IDEA?  If so, you
should fix that so other people don't encrypt things to you that you
can't easily decrypt.  You can view your prefs with:

$ gpg --edit-key C0A298D3 showpref quit

-- 
Todd        OpenPGP -> KeyID: 0xBEAF0CE3 | URL: www.pobox.com/~tmz/pgp
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
I never met a morphosis I didn't like.

-------------- next part --------------
--- gnupg.spec~	2007-03-01 07:47:37.000000000 -0500
+++ gnupg.spec	2008-01-23 14:40:16.000000000 -0500
@@ -1,12 +1,13 @@
 Summary: A GNU utility for secure communication and data storage.
 Name: gnupg
 Version: 1.4.5
-Release: 13
+Release: 13.1
 License: GPL
 Group: Applications/System
 Source0: ftp://ftp.gnupg.org/gcrypt/gnupg/gnupg-%{version}.tar.bz2
 Source1: ftp://ftp.gnupg.org/gcrypt/gnupg/gnupg-%{version}.tar.bz2.sig
 Source2: gnupg-shm-coprocessing.expect
+Source3: ftp://ftp.gnupg.dk/pub/contrib-dk/idea.c.gz
 Patch0: gnupg-1.4.1-gcc.patch
 Patch1: gnupg-1.4.2-curl.patch
 Patch2: gnupg-1.4.5-CVE-2006-6169.patch
@@ -42,6 +43,7 @@
 %patch4 -p0 -b .CVE-2006-6235
 popd
 %patch5 -p2 -b .multiple-message
+gunzip -c %{SOURCE3} > cipher/idea.c
 autoreconf
 
 %build
@@ -109,6 +111,9 @@
 %{_mandir}/man7/*
 
 %changelog
+* Wed Jan 23 2008 Todd Zullinger <tmz at pobox.com> - 1.4.5-13.1
+- include the IDEA cipher
+
 * Thu Mar  1 2007 Nalin Dahyabhai <nalin at redhat.com> - 1.4.5-13
 - incorporate patch from Werner to work around clients which
   can't tell that multiple plain messages have been processed (#230457)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 542 bytes
Desc: not available
URL: </pipermail/attachments/20080123/42ce6c9f/attachment.pgp>


More information about the Gnupg-users mailing list