Signing already-encrypted files (all to self)?

Doug Barton dougb at
Fri Nov 11 23:57:53 CET 2011

On 11/11/2011 14:54, Chris Poole wrote:
> On Fri, Nov 11, 2011 at 10:27 PM, David Tomaschik
> <david at> wrote:
>> I would just produce a list of SHA1s of the files and then sign that.
> OK thanks, I hadn't thought of that. I'd still have to decrypt and re-encrypt
> them to keep hashes of all plaintext versions of the files though. (Thinking
> about running this script every few days and hashing the latest files pulled
> from the IMAP server; it'd be far easier just to find any files not ending in
> ".gpg" to hash.)

I think this came up last time and I don't remember the reason you
didn't like the solution, but wouldn't something like truecrypt be a
whole heckuva lot easier?


		"We could put the whole Internet into a book."
		"Too practical."

	Breadth of IT experience, and depth of knowledge in the DNS.
	Yours for the right price.  :)

More information about the Gnupg-users mailing list