1996-01-30 - PGP Shell Integrity

Header Data

From: “Michael E. Carboy” <carboy@hooked.net>
To: “cypherpunks@toad.com>
Message Hash: a48453daf74117d4c4c8d96afb1a6e909016b1401da2ac1d6fa998a24fe491d6
Message ID: <01BAEE97.0C96ED00@chum-55.ppp.hooked.net>
Reply To: N/A
UTC Datetime: 1996-01-30 07:50:05 UTC
Raw Date: Tue, 30 Jan 1996 15:50:05 +0800

Raw message

From: "Michael E. Carboy" <carboy@hooked.net>
Date: Tue, 30 Jan 1996 15:50:05 +0800
To: "cypherpunks@toad.com>
Subject: PGP Shell Integrity
Message-ID: <01BAEE97.0C96ED00@chum-55.ppp.hooked.net>
MIME-Version: 1.0
Content-Type: text/plain



Greetings All,

Firstly, if this is viewed as "Noise" rather than "Signal", please accept my apologies.

The matter at hand concerns my concern over my inability to check the "integrity" of a PGP windoze shell written by Michael R. Lyman at Aegis Research Corp.

I worry that since the shell has access to my secret ring that it might be sending it somewhere without my knowledge.  The freeware was, according to Mr.Lyman, developed "Project Manager, Forward Air Missile Defense, United States Army Missile Command".  That gvt. affiliation gives me considerable pause as regards back doors and other ways my secret ring and pass phrase could be compromised.

Does anyone have any familiarity with this freeware?  I do not think I am being paranoid.. just careful.  Lastly, if I am not a programmer, what sort of inspection can I perform on the software to make sure it is not "bugged"?

Thanks for your thoughts.... and sorry to have disturbed those who see this post as noise

Kind regards,
Michael E. Carboy
carboy@hooked.net
finger for PGP pub key






Thread