Re[2]: 2.01.00 Release (PGP)
rg On my copy of TB! (2.00.6) Server | Send to is NOT rg available under the key manager, or any other option, in Tools | rg PGP JM Don't look for Tools, just open the key manager and then server|send JM to. Here is a screenshot JM http://legacy.sheltonbbs.com/~jmmorse/pgp_screenshot.gif How did you get to that PGPkeys window in the first place? -- Rich Current version is 2.01.3 | Using TBUDL information: http://www.silverstones.com/thebat/TBUDLInfo.html
Re[2]: 2.01.00 Release (PGP)
Hi John Sunday, October 19, 2003, 6:06:03 PM, you wrote: JM For example only 5 people (who's keys I have) can read what I encrypted below: JM - -BEGIN PGP MESSAGE- This is encrypted text, right? So these 5 people are ALL sharing the same public/private key combination? Cheers, -- Vishal Current version is 2.01 | Using TBUDL information: http://www.silverstones.com/thebat/TBUDLInfo.html
Re[2]: 2.01.00 Release (PGP)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hello John, J I couldn't get your key, it said unknown key 20 October 2003 09:17:53: I don't know what I am doing wrong but I have this morning uploaded keys to Public Key: idap://europe.keys.pgp.com:11370. Please try again - -- Regards Nigel mailto:[EMAIL PROTECTED] -BEGIN PGP SIGNATURE- Version: PGP 8.0.2 Comment: Public Key: idap://europe.keys.pgp.com:11370 iQA/AwUBP5Ob0m0szcl84DGNEQLaTQCgiR2sYVLxAh4vrAPxB621S/pWR3cAoIJh 8LvhTNfbNS29IawHzYF4uyYV =hcTV -END PGP SIGNATURE- Current version is 2.01 | Using TBUDL information: http://www.silverstones.com/thebat/TBUDLInfo.html
Re[2]: 2.01.00 Release (PGP)
rg Where do I find server | send to? The only PGP options (all rg under Tools) I see are: rgChoose version rgKey manager rgPreferences LG Do it from within the Key Manager. On my copy of TB! (2.00.6) Server | Send to is NOT available under the key manager, or any other option, in Tools | PGP Current version is 2.01 | Using TBUDL information: http://www.silverstones.com/thebat/TBUDLInfo.html
Re[2]: 2.01.00 Release (PGP)
Hi Leif Monday, October 20, 2003, 10:53:05 AM, you wrote: LG Hello Vishal, LG Monday, October 20, 2003, 2:29:01 AM, you wrote: V That's exactly what I meant. If all 5 people have the same public V key, they would all also need a copy of the private key to decrypt V it. LG No *Yes*. All 5 would have to have the private key to decrypt this message, if it were encrypted using the *same* public key. LG , if you encrypt a message using my public key, and Marck's public key, and LG Allie's public key, then any one of us could decrypt the message using our LG own private key. We are talking about different things. You're talking about multiple recipients for one message, which indeed works as you described. I am talking about encrypting multiple times, with the base for the new iteration being the ciphertext produced by the previous one. A message/file encrypted using this procedure could not be decrypted by simply using any one of the recipients' private keys. LG I won't pretend I know how it works, but it's not encryption on encryption, LG but a way of encrypting it that any one of use could decrypt it using our LG own private key. Let me see if I can explain it. PGP actually uses both symmetric and asymmetric encryption. What happens is this: the initial message is encrypted using the symmetric algorithm you chose (IDEA, 3DES, whatever) using a one-time, randomly generated 'session key'. This key is then encrypted using the public key algorithm(RSA, DH/DSS, whatever) that you chose. The encrypted key is then sent to the recipient together with the text encrypted by your symmetric algorithm. While decrypting, the recipient uses his private key to decrypt the session key, and then uses this key to decrypt the message. When sending to multiple recipients, it is actually the session key that is encrypted with each of the recipients' public keys. This is why the message can be decrypted using any one of them. Cheers, -- Vishal Current version is 2.01 | Using TBUDL information: http://www.silverstones.com/thebat/TBUDLInfo.html
Re[2]: 2.01.00 Release (PGP)
Hello John, Monday, October 20, 2003, 4:31:47 AM GMT, you wrote: J I couldn't get your key, it said unknown key 20 October 2003 18:28:44: Thanks for your help, here is my key: -BEGIN PGP PUBLIC KEY BLOCK- Version: PGP 8.0.2 Comment: Public Key: idap://europe.keys.pgp.com:11370 mQGiBD3sz4sRBADSd+O/tAsJefoGHKCKEke46fOkl96SqU0sFm6UdDGsdfVVbUiR wqiXe86nXgDjYjXbkpM4qp4hfDhb0J5tEyy8dytpdM8/IDqNkmsDATzbcSy5lzih bMCjCNsmPT1T2YgGH4M7aBnyo5ZlpVDOYTViJfemSzB0HvZ21gjz2dZimQCg/+z2 w3Ly2wSj7y/14+i4g74mVS0D/2Ttf4+zh5WWCg3TkswpDQ8IPNwgxmwoqjfizt9X CMUfBxmjOWL2UKyi2S2QjaDXwtWR3VTdLk5P0cHVObvhyk/bicUWfZ83DIBd56t0 8SxAN6+XBFC/NalvJ/AqnzC/blWv7dUS7dDLHxRZpl/++aNDwP1vaPzqM4ws7wJO 9O2lBACsUR+l30/frZBBZLeFfYc7yANz8qlx36KjSyxDKioLynrwNfq/g6c6CLDl hRqLH8z+be07zonKiyp/miyZlV6zicksHJGdzUCajtnSjae2xiwzdJsBHc2tbAm9 Gp9sJzMBzMwvw9isNf/H72AFkSWQaVlDcaeK2685D0SFTZs58bQvTmlnZWwgU2hv cnRlbGwgPE5pZ2VsQHNob3J0ZWxsLmZyZWVzZXJ2ZS5jby51az6JAFgEEBECABgF Aj3sz4sICwkIBwMCAQoCGQEFGwMACgkQbSzNyXzgMY0dKwCeMg4sMqyz+m0O TeZOh+Ii59KqYaEAn3VHRi/DylJ7ZYJDP3MRBSoacsQm0c3V/wAADpABEAABAQAA AP/Y/+AAEEpGSUYAAQEAAAEAAQAA/9sAQwAKBwcIBwYKCAgICwoK Cw4YEA4NDQ4dFRYRGCMfJSQiHyIhJis3LyYpNCkhIjBBMTQ5Oz4+PiUuRElDPEg3 PT47/9sAQwEKCwsODQ4cEBAcOygiKDs7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7 Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7/8AAEQgAkABpAwEiAAIRAQMRAf/EAB8A AAEFAQEBAQEBAAABAgMEBQYHCAkKC//EALUQAAIBAwMCBAMFBQQEAAAB fQECAwAEEQUSITFBBhNRYQcicRQygZGhCCNCscEVUtHwJDNicoIJChYXGBkaJSYn KCkqNDU2Nzg5OkNERUZHSElKU1RVVldYWVpjZGVmZ2hpanN0dXZ3eHl6g4SFhoeI iYqSk5SVlpeYmZqio6Slpqeoqaqys7S1tre4ubrCw8TFxsfIycrS09TV1tfY2drh 4uPk5ebn6Onq8fLz9PX29/j5+v/EAB8BAAMBAQEBAQEBAQEBAgMEBQYH CAkKC//EALURAAIBAgQEAwQHBQQEAAECdwABAgMRBAUhMQYSQVEHYXETIjKBCBRC kaGxwQkjM1LwFWJy0QoWJDThJfEXGBkaJicoKSo1Njc4OTpDREVGR0hJSlNUVVZX WFlaY2RlZmdoaWpzdHV2d3h5eoKDhIWGh4iJipKTlJWWl5iZmqKjpKWmp6ipqrKz tLW2t7i5usLDxMXGx8jJytLT1NXW19jZ2uLj5OXm5+jp6vLz9PX29/j5+v/aAAwD AQACEQMRAD8A4qzhWW/ijuG3ox+70HStayuIDJtiiKM/ypEq8nn2rIS0iR943M46 EnpVvRI5HmcxuyYHzMpx3rKavqbx7G6Li3bruGODlT1qTyhd2s8dsAXcYG8YFIkZ VQrSO69QXPNWoblhLsjwsa9SRyai9y9ncox6HOvPyucc4FWl0cAASxc47GrZv5dp CEFs8se1MGozSts4KD25NQ6Rr7diJp9migyWhYgc/N1pJ9K0i5iZGsZYndcB1cnH p3qyi2c6HfGq+jbiMn86Zc2jW0XmRFjEeGxg7f8A61TyNaj9rzHCeK9HvtNgD+et zaFgA4UIynjqPrXKDKjke1etyqJbdrZys0L43xv90j6jmvPde0CbT74/ZoZHtpPm jwCdvtmuiE9LMxqRbdzHBz1NHHr+lMIZHwwwR1B7U5Vz3rUyuKSCOKdn601gFH1p uD6ii4M7UKXOOSx6YrX0uzW0tljYjzHGWIptjBF5QlZQCemecVbg3TSLuXnOOK55 tvQ1iktSTBkQlR0GKfHB5cjHIORkCrEoSCHCEdeRnkGq7MZrgOo2jOQOvamlZahd yeg9rb5JApwecc96iMLQygjBLKCR+FaMNoZDvPG7rVkWaK5Y8nFHOilTMd4Z32oo +4eM9qtWN06P5F0AQTgccHtV04XhVqvLCJSd3p+VRz9y3TVtCpcwNbgrt6Hgj0qv 5sf3HBYMMYbkmtVZHu1aGcgTRjK8f6wf0qIwCEY5X8KcldGcXZnFav4QjdkmtZo4 vM3HbKccdeMA81yEsXlSEB1cD+Ja9enghkYTyMSFFec+K9LOn6iHiH+jzjdH7eo/ OnTk72YVFpdFOz0+e7tJJ0VSqHbz64pPsknon613Hwul02+tLzQ7lgtzM3mxZ4DD AGB711f/AAry0/ufqf8AGuCvjXRquEl6HVSjBwWpyFlK6w7Ac7eQa2tKkyW3hdwG QQOtcvZXiiTy/wC91PpXS6Ww+zXBK5bYQo9PevTSVzgdxyRi4uy5j28kHFalvBHE DtXOfasuyc7gD36/WtqKMlQcY74rGpLU6qcbIm9AB+VIYmzzxntVgFVAKLk+tWYI 4gxeY54zz2qErlt2MxoyOufyqu/Hynua1Lox78op2H7p9aoSqpX3zS2Gncrr8t0r MvB4rQeVIxl443GPTiqRXOOeR0pxud0exlBOMVtSkrWOarF3uVprmMux8qNQe+Ky Nf0+31TRZldiZYI3liPoQM4/StK6wuf3Qaq8flyvxuG4YK+xHNOUdbii3seSxSyQ zLLFI0ciMCjIcFSOhBrc/wCE48T/APQbvP8Av6ayNSiSDULiKMnakrAZGOM1Vya0 lThLWSuZczTsjpreU+Yu35SeM+ldZ4eZrh5WLAhrdsZ/KuOsSxD8RHI2/O4BB45H 5V0WiXXkm3dCQkZKsCe2ec4pJdRs17NgJTjPOa6C3nCpnrmsFlWKcFCMH5gfrWtb IdgPbrWE1qdVNqxpKxwCFPyjP1p8aPcsS3T0piXcIiHzgkHHXgimXUsttDuiDgk5 DY4IpWLZYeOCFd0rBAeMk8Vjy3ttJKyLIw528rwfesy4Op6xfLZpICucDcxCg47m qwk1WKUwGOOJYIwsnnQbd0gJyEOTkYA5+tVyppkXdzcGCMbt2e4qCfKglOoHSobO 6mkOHiA9cA1blTKknGcVnezNLXVmZ01zv4kG1sevBq1pkRlH2sEYjYKR654qpLZe fuUE5OME9jWpYoggZIiNoCjI6Fgea2crmdOFmeXeNLJLPxHMEBAl/eHPuT/hWBn2 rr/G1nHP4nui92kAS281RLn52H8C4HU1yOR71tHY56mkmacciRbt0SuT0JOMVuaC 6PFLB5hVgdwHrxWPNCynkYqawk8pgR65rNysilHmdkdl9pLRREDiNduc1Ot3NdQx 5mKK5wkYGSxrBgldZElx+4lBHTuOtahhfz4p4iQqg7HXtUyfUqCezJ9NWO7SUtLh 4kBaMAsQ2eUPA+Ye2RXQW0h+wIhLFhxg/WsmC6miLBXd3I3Fic/j9a0LMO9krMzF jySazlK+xvGNtCi1rLANqYaMHKknmnqWKFdhDHvWgkrgssdtFIQM/OM/lVi2ktpo 1aeEwluhTpmkrmmnUqWlsIj94Dd2xRdMQj44OPzrQmgSNf3bhvSs2YF1YkdKh6MC uVxBleeK0rOSNrGO3EQQg/KM53ZPJqhuHl8+nNQT6hdWlr5MSRnapKMc7lz1xVIl lOfwTH4u1G7u5NSNoIJjDtEO/djHQ5Hqaf8A8Ke0/wD6DUv/AH4/+vW/4ZuswGFQ MBdxI6kn1ra82paq30diXKFzxa5iDoWxiqMHyvj3rXvrd4UIbtWRGf3lby2MqXxG 9YXAjtdPVtwVriYMxjyFAx09ea3tGukvdJguFUL5oI8sDhCCQRXO2t/Jb2dgwtxi 0mmZJOcMXK57dgP1qbwvcrA01vuy4ZWjUn73XP8ASlpymj0lqdpa2yRRSS7AT5bY yPbipdPmtE01YpZSHC8+ufeohdK0IVeAxwT6CoJp7K3jUNJGNzEZ3ZJ/CpjHqOU7 NJFmKeWeN9ieVB0RwcO/r9KlhXy1GCSqgD5ufzqhCZC7PAHuHYcyTHy41HYAd6sj TriUh7q7MgxxHEu0D8epoaQmpE7ko5UHI/uj+lOMSlMqeCM1AlvFAwZd4wcgFif5 1MsgCMM454HtUtpjV+pmTqVmMa8k4wPrRexAtxyBxk1JGQ+sK3VYwSfywKfdLjA7 gEmi1hp3Keiz3Udze2loI2uoYRPDG+Qsg6YPPHIxn3qv/wAJR42/6FiH9f8AGtLS Idt3PfADOwQKfodxrX+1N/e/Q16EablFOxxTnFSaPO9UBeI5zmucjGJfxrq7+LEB 3DBrlZY3EhxXM482htT0dyy1z5cQQudoOQpPGfXFVvNk83dEHVh0dOCPxqLD7vul setTgXB24QDcOOetaRp20ZrKz1Z6BpV/BqmmLKQMgASqD0buPpQ9pax6hlIl2jpn
Re[2]: 2.01.00 Release (PGP)
Hi Leif Monday, October 20, 2003, 2:22:49 PM, you wrote: LG Ahhh. Hence my confusion over your question. I honestly can't think of LG a situation where five people would share a key. That's why I posed my question in the first place :) Neither can I. LG I can see in a LG corporate situation where five people might be on a corporate keyring, LG but each with their own sub-key. Or if each had individual keys, but there was a corporate ADK that each message was also encrypted with. LG Yes, if you wanted to layer encryption, you could recursively feed the LG output of one crypto to the next. Again, why? Unless you're maybe LG passing high level secrets, then maybe, but for standard end users? I work on security issues at several levels. I've been involved in discussions where multiple encryption was considered, both as a research issue and as a means of adding protection within a particular setup we had. For the end user though, a 2048-bit key provides more than adequate protection in most cases. Cheers, -- Vishal Current version is 2.01 | Using TBUDL information: http://www.silverstones.com/thebat/TBUDLInfo.html
Re[2]: 2.01.00 Release (PGP)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hello Richard, Reading your E-mail I have added my photo to my key. Perhaps you would be kind enough to verify, please - -- Regards Nigel mailto:[EMAIL PROTECTED] -BEGIN PGP SIGNATURE- Version: PGP 8.0.2 Comment: Public Key: idap://keyserver.pgp.com iQA/AwUBP5M/xm0szcl84DGNEQL41QCcD+ATK1jR0hMLy0hw7/hm5A4N8pwAnjBA dJfcVn85RsJKWMYDrdi9ncWA =GFp/ -END PGP SIGNATURE- Current version is 2.01 | Using TBUDL information: http://www.silverstones.com/thebat/TBUDLInfo.html
Re[2]: 2.01.00 Release (PGP)
JM For example only 5 people (who's keys I have) can read what I encrypted below: JM - -BEGIN PGP MESSAGE- JM Version: PGP 7.0.4 JM qANQR1DBwU4D/3jJIZ9Gz7kQB/0aCYYLtF67p8i/mHxpjmI6mPTuf2SwCQJ0mV+L JM Ze5NZjQDQD78YSkXanR/ivmtNO3/5qMwJ2Dnf4/K22gGnygGOKUq6rPJrAQwkXWS ... snip, snip ... JM =mR54 JM - -END PGP MESSAGE- Being completely paranoid, I assume there's always someone who can decrypt it. :( Current version is 2.01 | Using TBUDL information: http://www.silverstones.com/thebat/TBUDLInfo.html
Re[2]: 2.01.00 Release (PGP)
JM ... you need to upload your public key to a server, do this JM by JM clicking on Server|send to (just choose one of the servers, I picked JM the first one) Where do I find server | send to? The only PGP options (all under Tools) I see are: Choose version Key manager Preferences Current version is 2.01 | Using TBUDL information: http://www.silverstones.com/thebat/TBUDLInfo.html
Re[2]: 2.01.00 Release [PGP]
Hi John Thursday, October 16, 2003, 10:09:30 AM, you wrote: JM Thanks for helping me to understand this. You're welcome :) JM Anytime I have ever asked about PGP, I have just been insulted or told JM to go look it up on another website. I know..I've seen it often. Not just with PGP but other technical issues. JM But if people are going to talk JM about it so much on this list they should at least be willing to JM explain it a little, like you have done... I really appreciate you JM taking the time to do this... I may experiment with PGP once I JM understand it a little more. I hope you do. I don't use it for all my correspondence, but it does come in useful when you really need to send encrypted messages or simply assure the recipient that the mail is really from you. PGP can do both. Cheers, -- Vishal Current version is 2.01 | Using TBUDL information: http://www.silverstones.com/thebat/TBUDLInfo.html