1995-11-09 - Re: PGP Comment feature weakens remailer security

Header Data

From: “Patrick J. LoPresti” <patl@catfish.lcs.mit.edu>
To: cypherpunks@toad.com
Message Hash: 2d71b941de9bce853a281a2f408330fc3329eaf7a4aa19f83bfc0eb6eef888ac
Message ID: <199511082151.QAA05650@catfish.lcs.mit.edu>
Reply To: N/A
UTC Datetime: 1995-11-09 00:43:27 UTC
Raw Date: Thu, 9 Nov 1995 08:43:27 +0800

Raw message

From: "Patrick J. LoPresti" <patl@catfish.lcs.mit.edu>
Date: Thu, 9 Nov 1995 08:43:27 +0800
To: cypherpunks@toad.com
Subject: Re: PGP Comment feature weakens remailer security
Message-ID: <199511082151.QAA05650@catfish.lcs.mit.edu>
MIME-Version: 1.0
Content-Type: text/plain


-----BEGIN PGP SIGNED MESSAGE-----

 bill.stewart> So, for safety, either turn off PGP comments before
 bill.stewart> using it with remailers, or wipe out the comments by
 bill.stewart> hand before each layer of encryption (easy to do with
 bill.stewart> GUI-based systems like Private Idaho; I don't know if
 bill.stewart> premail lets you do this or not.)

Incidentally, Mailcrypt's remailer support strips the comment field
after each encryption, and has done so since version 3.2.

-----BEGIN PGP SIGNATURE-----
Version: 2.6.2
Comment: Processed by Mailcrypt 3.4, an Emacs/PGP interface

iQCVAwUBMKEmVHr7ES8bepftAQEPSgP9FJYeKUSZKyFN/VWIwLjKIaDVzPtzyqHR
tbj1UqbDl1trrKCoV6uud5qfK/FQwqQylnv1YsYNIVPPav66ImUvgSaXUMvZJBvC
8vinQI66s3M1PBJ8VIaLuVtay826JDazGHEexHpDLwNVGLdJq0RrNLVr2H9oLA8g
5aE9MHVfAcM=
=MdHQ
-----END PGP SIGNATURE-----





Thread