> And Jack Coats pointed out gpgv that might fit on a CD (283932 bytes), > to which Jeff Newmiller reminded all that gpg will take that much > ramdisk + RAM to run in... > > gpgv is the verification only part, and looking through the source code, > most of it is gpg "stubbed out" (to be as small as possible.) From the > looks of it, it is pretty close to what you were describing: > > gnupg 1.0.6 (gpgv), stripped and upx'ed down to 113522 bytes > > That's still pretty big. Or do you think that would be small enough? I > don't > see any way to get a pgp-like app smaller than that.
I'm not looking for something general purpose. The code has to do one thing, and one thing only: Given a file, a signature, and a public key, verify the signature (and hence the file's) authenticity. The public key and signature can be in a pre-defined format, if desired, although it might be nice to support varying key lengths. No pass-phrase encryptions of files, no complex code trying to keep secrets from other users of the system (that all belongs on the development side, when the package creator signs the package in the first place), no webs of trust, just a simple public-key signature verification. Charles Steinkuehler http://lrp.steinkuehler.net http://c0wz.steinkuehler.net (lrp.c0wz.com mirror) _______________________________________________ Leaf-devel mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-devel
