[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Free software replacements for PGP and SSH (was: Re: are md5sums mandatory for all packages?)

-----BEGIN PGP SIGNED MESSAGE-----

Regarding "Re: are md5sums mandatory for all packages?" of 10:31 AM -0800
1997-12-19, Scott Ellis wrote:
>And the instant someone provides us with free software equivilant to ssh
>or pgp, we'll move to use it.  We need the functionality, unfortunatly
>sometimes you have to use what you can get.

Incidentally, I found projects that are working on free software
replacements for pgp and ssh.

The PGP replacement is called G10, and the web page for that is at
<http://www.d.shuttle.de/isil/g10.html>.
Here is the status from the web page:

  "Status

  Done:

    create signatures and detached signatures.
    checking signatures (data and keys).
    encrypt and decrypt (public key and conventional).
    List and check keyrings
    Print fingerprints
    Self signatures are added to generated keys.
    RSA and ElGamal Key generation.
    Ripe-MD-160 used for hashing.
    Works inside a pipe w/o any temporary files.
    autoconf/configure works.
    using armor files works.
    compressing stuff implemented.
    Some enhancements to make it somewhat compatible
     with the OpenPGP draft.
    Added SHA-1.
    Added configuration stuff (options file)

  Not yet done:

    Trust packets.
    Keyring management (partly done)
    Old style signatures
    Documentation.
    DSA, subkeys etc.
    and, and, and ...."

The ssh "replacement: is called psst and the web page for it is at
<http://www.net.lut.ac.uk/psst/>.
The web page has this to say about it:

    "Why do this ? Well, ssh is great - but it's not free. This is pretty
    reasonable, since the developers do need to pay the rent, buy beer and
    pizza, and so on. Many people believe that there should be a free
    version, so as to encourage the spread of strong cryptography. As it
    happens, ssh is currently going through the Internet standardisation
    process - which requires a second independent and interoperable
    implementation in order for a protocol to become a standard. So, it's
    good for everyone that we have a go at this."

- --
Joel "Espy" Klecker   Debian GNU/Linux Developer      <mailto:jk@espy.org>
Debian GNU/Linux                                  <http://www.debian.org/>
PGP Fingerprint (RSA Key): 12 92 9C E4 60 DF 62 CD FC AD 18 47 9A 74 E7 D1
Apple Flavored Unix             <http://www.espy.org/apple-flavored-unix/>


-----BEGIN PGP SIGNATURE-----
Version: PGP for Personal Privacy 5.5

iQCVAwUBNJyCnwoYIlYX1XaBAQFvyQQAmdeoCxSSvhX8pbV2pGkbJCLwpuD/892G
fCQsVqG1Cbi8hGc5oYs6Jd0XqdnfQss4Jrzwn54QcaqYTwh9B604eTBmLktYUSUs
d+zLswEBz6uI5zNA0ueK6r20rCqkzaUhP2g44bXfCU0hJQnOHe2en70zdgfD1Y04
fsrn7b0+UVk=
=11oy
-----END PGP SIGNATURE-----
Reply to: