1994-09-30 - Re: PGP hole

Header Data

From: Alan Barrett <barrett@daisy.ee.und.ac.za>
To: “Dr. D.C. Williams” <dcwill@ee.unr.edu>
Message Hash: 2aef639697a8cc11f2c4ab59b4b60ea6178be50066e33c3d65f7f1c3d03cf885
Message ID: <Pine.3.89.9409301126.C1189-0100000@daisy.ee.und.ac.za>
Reply To: <199409300340.UAA15324@python>
UTC Datetime: 1994-09-30 09:25:02 UTC
Raw Date: Fri, 30 Sep 94 02:25:02 PDT

Raw message

From: Alan Barrett <barrett@daisy.ee.und.ac.za>
Date: Fri, 30 Sep 94 02:25:02 PDT
To: "Dr. D.C. Williams" <dcwill@ee.unr.edu>
Subject: Re: PGP hole
In-Reply-To: <199409300340.UAA15324@python>
Message-ID: <Pine.3.89.9409301126.C1189-0100000@daisy.ee.und.ac.za>
MIME-Version: 1.0
Content-Type: text/plain


> The bug seems to be present in all versions (even the ViaCrypt versions
> have this problem). It has been reported as a bug to the MIT pgp-keepers.

The "bug" looks like a deliberate design decision to me.  Everything from
the "--- BEGIN PGP" line to the first blank line is ignored, and is not
considered part of the signed message.  There's a comment in the source
code (file armor.c in the versions I checked), saying "Skip header after
BEGIN line". 

--apb (Alan Barrett)

Thread

• Return to September 1994

• Return to “Alan Barrett <barrett@daisy.ee.und.ac.za>”
• Return to ““Dr. D.C. Williams” <dcwill@ee.unr.edu>”

• Return to “Michael Handler <grendel@netaxs.com>”

• Unknown thread root
  • 1994-09-30 (Thu, 29 Sep 94 20:42:46 PDT) - Re: PGP hole - “Dr. D.C. Williams” <dcwill@ee.unr.edu>
    • 1994-09-30 (Fri, 30 Sep 94 02:25:02 PDT) - Re: PGP hole - Alan Barrett <barrett@daisy.ee.und.ac.za>
      • 1994-09-30 (Fri, 30 Sep 94 02:44:19 PDT) - Re: PGP hole - Michael Handler <grendel@netaxs.com>
        • 1994-09-30 (Fri, 30 Sep 94 02:56:16 PDT) - Re: PGP hole - Alan Barrett <barrett@daisy.ee.und.ac.za>