[43099] in Cypherpunks
Re: PGP Comment feature weakens remailer security
daemon@ATHENA.MIT.EDU (NetSurfer)
Wed Nov 8 11:02:56 1995
Date: Wed, 8 Nov 1995 05:45:18 -1000 (HST)
From: NetSurfer <netsurf@pixi.com>
To: anonymous-remailer@shell.portal.com
Cc: cypherpunks@toad.com
In-Reply-To: <199511080454.UAA05765@jobe.shell.portal.com>
On Tue, 7 Nov 1995 anonymous-remailer@shell.portal.com wrote:
> to protect the privacy of communications. PGP can bite you.
> The PGP comment feature lets you stick one (or more?) lines of comment
> into your encrypted messages, after the Version: line but before the
> encrypted message body. If you use the PGP comment feature to say something
---- 8< snip
>
> -----BEGIN PGP SIGNATURE-----
> Version: 2.7.1
> Comment: PGP available outside U.S.A. at ftp.ox.ac.uk
>
You are using Viacrypt PGP, which has a release out which fixes the
comment "feature" - contact them for an upgrade.
This was fixed in the freeware version some time ago as well.
-NetSurfer
#include <standard.disclaimer>
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
== = = |James D. Wilson |V.PGP 2.7: 512/E12FCD 1994/03/17 >
" " o " |P. O. Box 15432 | finger for full PGP key >
" " / \ " |Honolulu, HI 96830 |====================================>
\" "/ G \" |Serendipitous Solutions| http://www.pixi.com/~netsurf >
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
