Signing already-encrypted files (all to self)?
Doug Barton
dougb at dougbarton.us
Fri Nov 11 23:57:53 CET 2011
On 11/11/2011 14:54, Chris Poole wrote:
> On Fri, Nov 11, 2011 at 10:27 PM, David Tomaschik
> <david at systemoverlord.com> wrote:
>> I would just produce a list of SHA1s of the files and then sign that.
>
> OK thanks, I hadn't thought of that. I'd still have to decrypt and re-encrypt
> them to keep hashes of all plaintext versions of the files though. (Thinking
> about running this script every few days and hashing the latest files pulled
> from the IMAP server; it'd be far easier just to find any files not ending in
> ".gpg" to hash.)
I think this came up last time and I don't remember the reason you
didn't like the solution, but wouldn't something like truecrypt be a
whole heckuva lot easier?
--
"We could put the whole Internet into a book."
"Too practical."
Breadth of IT experience, and depth of knowledge in the DNS.
Yours for the right price. :) http://SupersetSolutions.com/
More information about the Gnupg-users
mailing list