hy@randombit.net <mailto:cryptography@randombit.net>
> Subject: Re: [cryptography] OpenPGP in Python: Security evaluations?
> Message-ID: <557ab6d4.6080...@infosecurity.ch
> <mailto:557ab6d4.6080...@infosecurity.ch>>
> Content-Type: text/plain; charset=windows-1252
>
>
> I think the trend appears to be the opposite - you have a consumer in
> one process and a producer in another process. If the consumer gets
> compromised (like a web server), then the secrets don't get
> compromised as easily because the producer is out of process.
Right, and we’re not trying to
On Fri, 12 Jun 2015 12:39, li...@infosecurity.ch said:
> Regarding GPGME, is it really exec()uting the gpg binary or is it
> calling directly the gpg as a library?
Sure it does fork/exec. However, gpgsm is run as a co-process and thus
there is only one fork/exec for a bunch of operations (descri
> The main problem we were interested in solving here was to be able to keep
> key management tasks within a single memory address space, to avoid the
> problems relating to securely sending passphrases to other processes, and to
> be able to use the keys without the additional disk IO involved in
On 6/12/15 6:05 AM, Michael Greene wrote:
> Hello there, I am the author of PGPy - I figured I’d chime in here, even
> though I have clearly noticed this discussion a little bit late.
>
> When I decided that taking up the project of building a pure-Python
> OpenPGP implementation would be worthw
Hello there, I am the author of PGPy - I figured I’d chime in here, even though
I have clearly noticed this discussion a little bit late.
When I decided that taking up the project of building a pure-Python OpenPGP
implementation would be worthwhile, I did so after evaluating all of the
existing
On Thu, 23 Apr 2015 08:25, li...@infosecurity.ch said:
> Unluckily PyMe is unmaintained and there's no major software using GPGMe
> interface.
On my Debian box I see ~50 direct dependencies including several MUAs
and Jabber clients. KDE uses the C++ wrapper in several packages.
libgmime is used
On Thu, 23 Apr 2015, stef wrote:
On Thu, Apr 23, 2015 at 08:25:14AM +0200, Fabio Pietrosanti (naif) - lists
wrote:
Everyone, including GlobaLeaks, is using python-gnupg wrapper but that's
an HORRIBLE software design choice (having a wrapper that fire an
executable) and we want to fix that.
f
On Thu, Apr 23, 2015 at 08:25:14AM +0200, Fabio Pietrosanti (naif) - lists
wrote:
> Everyone, including GlobaLeaks, is using python-gnupg wrapper but that's
> an HORRIBLE software design choice (having a wrapper that fire an
> executable) and we want to fix that.
from what aspect do you consider
On 4/21/15 2:41 PM, John Downey wrote:
> This doesn't answer your question but GnuPG has a library interface
> called GPGME, or GPG Made Easy. To quote the GnuPG site, "GPGME is the
> standard library to access GnuPG functions from programming languages."
>
> Can you use one of the Python bindin
[Sent from my iPad, as it is not a secured device there are no cryptographic
keys on this device, meaning this message is sent without an OpenPGP signature.
In general you should *not* rely on any information sent over such an unsecure
channel, if you find any information controversial or un-e
Quoting Fabio Pietrosanti (naif) - lists (2015-04-21 12:34:39)
> for any developer willing to use OpenPGP with a python developed
> application currently the main choice is to go with python-gnupg, that's
> a wrapper on top of GnuPG binary (https://pythonhosted.org/python-gnupg/).
There is a fork
This doesn't answer your question but GnuPG has a library interface called
GPGME, or GPG Made Easy. To quote the GnuPG site, "GPGME is the standard
library to access GnuPG functions from programming languages."
Can you use one of the Python bindings to GPGME?
https://wiki.python.org/moin/GnuPriva
Hi all,
for any developer willing to use OpenPGP with a python developed
application currently the main choice is to go with python-gnupg, that's
a wrapper on top of GnuPG binary (https://pythonhosted.org/python-gnupg/).
That's architecturally a very bad choice, plenty of constraint (for
example
14 matches
Mail list logo