isolating the signature from encrypted data (was: sign encrypted emails)
MFPA
expires2013 at ymail.com
Tue Jan 7 23:42:59 CET 2014
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Hi
On Monday 6 January 2014 at 2:24:10 AM, in
<mid:7677715.1slNLpWZ3j at inno.berlin.laging.de>, Hauke Laging wrote:
> That is correct. I am not aware of a possibility to get
> the data and the signature from GnuPG. But that doesn't
> mean it's not possible.
I think the thread you linked to [1] says it is possible using
GnuPG's --show-session-key and --override-session-key options. And at
the end of the thread, Werner says PGP/MIME signs and encrypts using
separate MIME containers, which makes it easy to strip off the
encryption layer.
[1] http://lists.gnupg.org/pipermail/gnupg-users/2004-April/022352.html
> Use both ways (one step, two steps) to sign and encrypt
> a file and have a look at the result with gpg
> --list-packets.
I did. Gpg --list-packets output starts the same. But to get all of
the info on the two-step signed then encrypted, I have to run gpg
- --list-packets again on the signed but not encrypted file to get the
info about the signature.
I also tried pgpdump, which gives the same information for the one
step and the two step files. It appears to be a different (and
smaller) set of information than gpg --list-packets generates.
- --
Best regards
MFPA mailto:expires2013 at ymail.com
Live your life as though every day it was your last.
-----BEGIN PGP SIGNATURE-----
iPQEAQEKAF4FAlLMgwBXFIAAAAAALgAgaXNzdWVyLWZwckBub3RhdGlvbnMub3Bl
bnBncC5maWZ0aGhvcnNlbWFuLm5ldEJBMjM5QjQ2ODFGMUVGOTUxOEU2QkQ0NjQ0
N0VDQTAzAAoJEKipC46tDG5pdTEEAIb9+tybdukWQQ5H68PnHeZulGIfsceOqSiH
qssiSBuEKlthqEA+MsiksuweZ3E+uo0n7N4IGtQGV8YMJsv7JhmuvquxF8kg8fhz
DwaaTZ/HrPT0Owf/0VszEM6+jgC5A+GseW3agdRXHmZjoQNVyixoT9s+0rhlYOUs
GVhZMMd/
=s8a/
-----END PGP SIGNATURE-----
More information about the Gnupg-users
mailing list