isolating the signature from encrypted data (was: sign encrypted emails)

MFPA expires2013 at ymail.com
Tue Jan 7 23:42:59 CET 2014


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Hi


On Monday 6 January 2014 at 2:24:10 AM, in
<mid:7677715.1slNLpWZ3j at inno.berlin.laging.de>, Hauke Laging wrote:



> That is correct. I am not aware of a possibility to get
> the data and the signature from GnuPG. But that doesn't
> mean it's not possible.

I think the thread you linked to [1] says it is possible using
GnuPG's --show-session-key and --override-session-key options. And at
the end of the thread, Werner says PGP/MIME signs and encrypts using
separate MIME containers, which makes it easy to strip off the
encryption layer.

[1] http://lists.gnupg.org/pipermail/gnupg-users/2004-April/022352.html

> Use both ways (one step, two steps) to sign and encrypt
> a file and have a look at the result with gpg
> --list-packets.

I did. Gpg --list-packets output starts the same. But to get all of
the info on the two-step signed then encrypted, I have to run gpg
- --list-packets again on the signed but not encrypted file to get the
info about the signature.


I also tried pgpdump, which gives the same information for the one
step and the two step files. It appears to be a different (and
smaller) set of information than gpg --list-packets generates.


- --
Best regards

MFPA                    mailto:expires2013 at ymail.com

Live your life as though every day it was your last.
-----BEGIN PGP SIGNATURE-----

iPQEAQEKAF4FAlLMgwBXFIAAAAAALgAgaXNzdWVyLWZwckBub3RhdGlvbnMub3Bl
bnBncC5maWZ0aGhvcnNlbWFuLm5ldEJBMjM5QjQ2ODFGMUVGOTUxOEU2QkQ0NjQ0
N0VDQTAzAAoJEKipC46tDG5pdTEEAIb9+tybdukWQQ5H68PnHeZulGIfsceOqSiH
qssiSBuEKlthqEA+MsiksuweZ3E+uo0n7N4IGtQGV8YMJsv7JhmuvquxF8kg8fhz
DwaaTZ/HrPT0Owf/0VszEM6+jgC5A+GseW3agdRXHmZjoQNVyixoT9s+0rhlYOUs
GVhZMMd/
=s8a/
-----END PGP SIGNATURE-----




More information about the Gnupg-users mailing list