Any UNIX API for GPG available?

Brian Mearns mearns.b at gmail.com
Wed Jun 24 21:19:46 CEST 2009


On Wed, Jun 24, 2009 at 2:33 PM, Morten Gulbrandsen<classpath at arcor.de> wrote:
[clipped 6/24/2009 3:11:09 PM by Brian Mearns]
> Dear Brian
>
> This is the core math of  OpenPGP
>
> bash-3.00$ gpg  --version
>
> Supported algorithms:
>
>
> Pubkey: RSA, RSA-E, RSA-S, ELG-E, DSA
> Cipher: 3DES, CAST5, BLOWFISH, AES, AES192, AES256, TWOFISH
> Hash: MD5, SHA1, RIPEMD160, SHA256, SHA384, SHA512, SHA224
> Compression: Uncompressed, ZIP, ZLIB, BZIP2
>
>
> ===
>
>
> If used apart from manually invoked messages and files,
> and without the use of a proper passphrase, manually keyed.
>
> I don't think it would be much useful. It would be much the same as
> saving your passphrase or even typing it in the source code.
>
> But this is known to me.
>
>
> http://www.gnu.org/software/gnutls/
>
>
> http://gmplib.org/
> # I'm involved here
>
>
> http://www.opentls.org/
>
>
>
> OpenTLS is a project to replace OpenSSL, and is divided in three smaller
> packages, NetCrypto, NetPKI and NetTLS.
>
> It's been worked on since the autumn 2003, and at the time of writing,
> the last major part of NetCrypto is being worked on. The other two
> components are still entirely vaporware, hardly even at the planning
> stage. It was known from the beginning that this project would evolve
> slowly.
>
> ===
>
>
> for live applications which runs distributed  like  OpenVPN or
> skype  or  sip-communicator,
>
> this paper tells some interesting stuff:
>
> http://www.davidpashley.com/articles/cert-authority.html
>
> this is for running applications  distributed over then net,  eg client
> server computing and what needs a passphrase when loggin on the network.
>
> Human authentication like in OpenPGP is essential.
>
> if a piece of software is to do the authentication,
> you may even save to hard disk the files. But I cannot figure any
> understandable benefit for that.
>
> Why do you want the software to encrypt unlike PGP,
> which encrypts with a human token called the passphraze?
>
>
> Example
>
> bash-3.00$ touch  somethingIdliketohide.txt
> bash-3.00$ gpg  -c  somethingIdliketohide.txt
>
>
> # I am prompted twice for my passphraze,
> # which would be silly to put in any sourcecode.
>
>
> gpg: WARNING: `somethingIdliketohide.txt' is an empty file
> bash-3.00$ ls -l  somethingIdliketohide.txt*
> - -rw-r--r--   1 morten   other          0 Jun 24 20:27
> somethingIdliketohide.txt
> - -rw-r--r--   1 morten   other         64 Jun 24 20:27
> somethingIdliketohide.txt.gpg
> bash-3.00$
>
>
>
> you may even use  gpg -c  --cipher-algo  AES256  If you prefer.
>
>
> Morten
[clipped 6/24/2009 3:11:26 PM by Brian Mearns]
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


Greetings, Morten-

Hope you're not offended if I ask: are you a dada
engine? [http://dev.null.org/dadaengine/]

Cheers, as always-
Brian

P.S.: No, I do not remember Trafalgar.

- --
Feel free to contact me using PGP Encryption:
Key Id: 0x3AA70848
Available from: http://keys.gnupg.net


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)

iQEcBAEBAgAGBQJKQnvpAAoJEHOUulIkSI7c6HEIAIseG4+2wLesoxVtc+MS6OR+
lvV0FEZuFL4irM9jvHeLyx5VoxEAj2Fr9T2Xyj4kzIQGFZHf6ufnHZ2RvdAczSgj
oPeXrbarVm4HcTMPhcUkYoqIdcdY0Op7vEL7r3LShuHoGbJv4OPlBu+MVAoYX59u
xejdTz/9C9VOflLrkxuCeHeesnd+dos2qriBFA/xraR1uU4dqIK6uc4mTpDsCnDw
LnaX4V/3rQC2jB4JBAANsGjhAQOeEMJZWc1JAsBYFjPFX+L1uTOtUFbePa1F4aX7
mOU9uMUhkHGmJn6/xDLqHFAwwa/b0vEo+ywKtcJb8skD5PrDfUM1rtpkC3iKLvk=
=PxB2
-----END PGP SIGNATURE-----



More information about the Gnupg-users mailing list