Re: RFC: gnupg

To: "Joseph Carter" <knghtbrd@earthlink.net>, debian-devel@lists.debian.org
Subject: Re: RFC: gnupg
From: "Jules Bean" <jules@jellybean.co.uk>
Date: Sun, 05 Jul 1998 15:50:10 +0100
Message-id: <[🔎] 743483.3108642610@195.82.102.216>

--On Sun, Jul 5, 1998 1:40 pm +0000 "Joseph Carter" <knghtbrd@earthlink.net>
wrote: 

> On Sun, Jul 05, 1998 at 01:48:58PM +0100, Jules Bean wrote:
>> This topic came up a short while ago (I think it was on -policy).
>> 
>> I have just read the gnupg web pages, at
>> 
>> http://www.d.shuttle.de/isil/crypt/gnupg.html
>> 
>> and I don't see any showstoppers.  Would anyone with more experience
using
>> gnupg, or cryptography in general, like to check and see if there are
any.
> 
> I see one potentially, but it's not on the gpg web page.  Found in
> /usr/doc/mutt-i/pgp-Notes.txt.gz:
> 
> 	Valid values for _all_ variables include "pgp5", "pgp3",
> 	"pgp2"; "pgp3" and "pgp5" are equivalent.  "g10" has been
> 	removed for now: The program has changed it's name to
> 	GNUPG; Support for that program will be included soon.
> 	Support will be added as soon as the current state of the
> 	code turns out to be stable.
> 
> The issue here is that if we want to convert to it, a number of us also
sign
> messages to the debian-* lists.  I'm going to ask that gpg be added back
to
> the next upstream version of mutt because gpg is stable enough, but
> mailreader support of the program does strike me as important.  Pine will
> have a hack/filter as usual.  What about gnus or some of the X-based
> programs?

Absolutely.  We would need email support.  However, I can't imagine that it
would be all that hard to add it to mutt.  Bear in mind that it will take
months to get all developers using new keys anyway, I'm only suggesting we
begin this process.

> 
> 
>> Failing that, I suggest that we start the move over from PGP to gnupg as
>> soon as possible.  James Troup has already mentioned that he has a
>> gpg-keyring working (check the -policy archives for the email address).
>> 
>> Let's get rid of this piece of non-free, then...
> 
> As soon as email clients start supporting it, I will be switching myself. 
I
> think I agree that the rest of Debian should probably do the same.
> 
> Um, can't PGP 5.0 and gpg sign messages to eachother and the like?  AFAIK
> they're supposed to be compatible.

The web pages suggest that gpg can verify PGP 5 messages.  Presumably gpg
can't do anything that actually requires use of the IDEA or RSA algorithms,
though, since it doesn't have any code for them on principle...

Jules


/----------------+-------------------------------+---------------------\
|  Jelibean aka  | jules@jellybean.co.uk         |  6 Evelyn Rd        |
|  Jules aka     | jules@debian.org              |  Richmond, Surrey   |
|  Julian Bean   | jmlb2@hermes.cam.ac.uk        |  TW9 2TF *UK*       |
+----------------+-------------------------------+---------------------+
|  War doesn't demonstrate who's right... just who's left.             |
|  When privacy is outlawed... only the outlaws have privacy.          |
\----------------------------------------------------------------------/



--  
To UNSUBSCRIBE, email to debian-devel-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

Follow-Ups:
- Re: RFC: gnupg
  - From: Joseph Carter <knghtbrd@earthlink.net>

Prev by Date: Re: non-free and "cd-ok", again
Next by Date: Re: Powerpoint equiv. for Linux?
Previous by thread: Re: RFC: gnupg
Next by thread: Re: RFC: gnupg
Index(es):
- Date
- Thread