Signing already-encrypted files (all to self)?

Doug Barton dougb at dougbarton.us
Fri Nov 11 23:57:53 CET 2011


On 11/11/2011 14:54, Chris Poole wrote:
> On Fri, Nov 11, 2011 at 10:27 PM, David Tomaschik
> <david at systemoverlord.com> wrote:
>> I would just produce a list of SHA1s of the files and then sign that.
> 
> OK thanks, I hadn't thought of that. I'd still have to decrypt and re-encrypt
> them to keep hashes of all plaintext versions of the files though. (Thinking
> about running this script every few days and hashing the latest files pulled
> from the IMAP server; it'd be far easier just to find any files not ending in
> ".gpg" to hash.)

I think this came up last time and I don't remember the reason you
didn't like the solution, but wouldn't something like truecrypt be a
whole heckuva lot easier?



-- 

		"We could put the whole Internet into a book."
		"Too practical."

	Breadth of IT experience, and depth of knowledge in the DNS.
	Yours for the right price.  :)  http://SupersetSolutions.com/




More information about the Gnupg-users mailing list