John Clizbe furrbear at
Wed Apr 27 06:50:51 CEST 2011

Stephen H. Dawson wrote:
> Dire need, hoping for help.
> I have my private and public keys, but you have neither the passphrase
> nor a revocation certificate.  I need to revoke my published key.  Can
> they recommend a bash script to discover the passphrase using brute
> force on the private key?
> Please advise.

Bad news. Sorry. Game over. Unfortunately you're S-o-L.

If it was as easy as a bash script to brute force a passphrase, do you think
people would even consider using PGP?  The passphrase is /intentionally/
designed to resist brute force attacks.

I'm sure programs exist that purport to brute force passphrases. I think that
their success rate, r, is probably somewhere between epsilon and zero.
John P. Clizbe                      Inet:   John (a) Enigmail DAWT net
FSF Assoc #995 / FSFE Fellow #1797  hkp://  or
     mailto:pgp-public-keys at

Q:"Just how do the residents of Haiku, Hawai'i hold conversations?"
A:"An odd melody / island voices on the winds / surplus of vowels"

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 886 bytes
Desc: OpenPGP digital signature
URL: </pipermail/attachments/20110426/f8fa6c83/attachment-0001.pgp>

More information about the Gnupg-users mailing list