Fwd: Signing already-encrypted files (all to self)?

David Tomaschik david at systemoverlord.com
Fri Nov 11 23:55:02 CET 2011


Accidentally responded off-list...


---------- Forwarded message ----------
From: David Tomaschik <david at systemoverlord.com>
Date: Fri, Nov 11, 2011 at 5:27 PM
Subject: Re: Signing already-encrypted files (all to self)?
To: Chris Poole <lists at chrispoole.com>


I would just produce a list of SHA1s of the files and then sign that.

sha1sum * | gpg -s --armor -o sigs.asc

David


On Fri, Nov 11, 2011 at 2:24 PM, Chris Poole <lists at chrispoole.com> wrote:
> Hi,
>
> I have thousands of files in a maildir directory.
>
> I've encrypted them all, individually, with the recipient as myself.
> Just in case someone steals the machine or something.
>
> It occurs to me it would be a good idea to sign these emails. Making
> the assumption that I can trust they haven't already been tampered
> with, is it OK to simply run
>
>    gpg -o somefile.gpg -s somefile.gpg
>
> or is it better to decrypt them all, and then sign and encrypt in one go?
>
>
> Thanks,
>
> Chris Poole
>
> _______________________________________________
> Gnupg-users mailing list
> Gnupg-users at gnupg.org
> http://lists.gnupg.org/mailman/listinfo/gnupg-users
>



--
David Tomaschik, RHCE, LPIC-1
System Administrator/Open Source Advocate
OpenPGP: 0x5DEA789B
http://systemoverlord.com
david at systemoverlord.com



-- 
David Tomaschik, RHCE, LPIC-1
System Administrator/Open Source Advocate
OpenPGP: 0x5DEA789B
http://systemoverlord.com
david at systemoverlord.com



More information about the Gnupg-users mailing list