1998-02-03 - Re: A fatal flaw in PGP 6.0

Header Data

From: lutz@taranis.iks-jena.de (Lutz Donnerhacke)
To: cypherpunks@Algebra.COM
Message Hash: 05c6e59f97fe335f5584290ddaba5256bf58f06a7a362bb3ea508b1b786507de
Message ID: <slrn6detfi.2f0.lutz@taranis.iks-jena.de>
Reply To: <e733397cdc30125650f2bba5ea2fbb3b@anon.efga.org>
UTC Datetime: 1998-02-03 20:08:28 UTC
Raw Date: Wed, 4 Feb 1998 04:08:28 +0800

Raw message

From: lutz@taranis.iks-jena.de (Lutz Donnerhacke)
Date: Wed, 4 Feb 1998 04:08:28 +0800
To: cypherpunks@Algebra.COM
Subject: Re: A fatal flaw in PGP 6.0
In-Reply-To: <e733397cdc30125650f2bba5ea2fbb3b@anon.efga.org>
Message-ID: <slrn6detfi.2f0.lutz@taranis.iks-jena.de>
MIME-Version: 1.0
Content-Type: text/plain



* Anonymous wrote:
>>FATAL ERROR
>>
>>Unable to find key "ghost@nsa.gov"
>>Please obtain a new key from Network associates.

>Anyone like to confirm this?

No the key requested is 'snoop@microsoft.com'.

But the ROT13 encoding is true even for PGP5. If you move or rename the
randseed.bin to an other location (i.E. to install pgp2.6.3(i)n and pgp5
simultanusly) the file will be modified, but all encrypted messages have the
same session key.

On the other hand pgp5 does not confirm the OpenPGP draft. A converter can
be found at ftp://ftp.iks-jena.de/pub/mitarb/lutz/crypt/software/pgp/OpenPGP/






Thread