[Enigmail] PGP indicates enigmail signed messages are invalid
Moonchild
mcwerewolf at gmail.com
Mon Apr 13 00:56:14 PDT 2009
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
John Clizbe wrote:
> Your problem lies in PGP 6.5.8. It's nowhere near RFC 4880 compliant,
> although GnuPG may be "broken" to not use post PGP 6.x features by using
> the --pgp6 option. It instructs GnuPG to set up all options to be as PGP
> 6 compliant as possible. This restricts you to the ciphers IDEA (if the
> IDEA plugin is installed), 3DES, and CAST5, the hashes MD5, SHA1 and
> RIPEMD160, and the compression algorithms none and ZIP. This also
> disables --throw-keyids, and making signatures with signing subkeys as
> PGP 6 does not understand signatures made by signing subkeys.
So, it just means I've never run into anyone so far who uses RFC4880
encryption/signing, with all the contacts I have ;-)
Although John Moore's kneejerk reaction is understandable, as I
explained, at least for now I need to be as backwards compatible as I
can until I am sure all of my contacts are "current" - I cannot impose
the new signing algorhythm on them just because I change software, so
the --pgp6 might be the workaround I need.
I do like to note I have been using my existing (IDEA) cypher keys to
sign and encrypt without any additional DLL installed with GnuPG. So
IDEA is supported. I was wondering about that when I installed
Enigmail/GnuPG as I knew some algorhythms were not used by the open
source solutions by default, but everything worked.
> It's a very sub-optimal solution that leaves you in the crypto "Stone
> Age".
Maybe so, but like I said in my current situation I need full backwards
compatibility. I don't see being restricted to IDEA, 3DES and CAST5 and
the hashes MD5, SHA1 and RIPEMD160 as much of a restriction. Apparently,
all my peers so far have used these cyphers and hashes as well. (weren't
those good enough, or what?)
I'll try the pgp6 switch. Thanks.
MC
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
iEYEARECAAYFAkni8B4ACgkQ2TLZrDX4Zcb0KACfXEOg48UU65s+huEEthfCrPdO
gU4An1c4B0AFFhLC70VMZ53Q9HEEv3wm
=MKlQ
-----END PGP SIGNATURE-----
More information about the Enigmail
mailing list