[Gpg4win-devel] efail -> improvements
Bernhard Reiter
bernhard at intevation.de
Tue May 15 08:47:38 CEST 2018
On an email just send to gnupg-devel@
I'm suggesting to change GnuPG and frontends
to not show any contents, unless there is integrity protection by either
> a) MDC
> b) AEAD
> c) a signature over the whole contents from someone where it has been
> encrypted to (if this is feasable to detect).
We should change all Gpg4win frontends (like GpgOL, Kleo, GpgEX, GPA)
to honor the warnings and error messages that GnuPG already shows.
Best,
Bernhard
--
www.intevation.de/~bernhard +49 541 33 508 3-3
Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998
Geschäftsführer Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: This is a digitally signed message part.
URL: <http://lists.wald.intevation.org/pipermail/gpg4win-devel/attachments/20180515/a7876b2f/attachment.asc>
More information about the Gpg4win-devel
mailing list