verifying signature after decryption
Jerry Windrel
jerry.windrel at verizon.net
Mon Apr 26 19:31:06 CEST 2004
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Someone mentioned on this list a while back that GPG supports
extracting the symmetric session key used for a message. If you
provide this session key to someone, they can use GPG to decrypt that
particular message only, including the signature. I'm not sure what
the exact commands are.
- ----- Original Message -----
From: "Atom 'Smasher'" <atom-gpg at suspicious.org>
To: <gnupg-users at gnupg.org>
Sent: Monday, April 26, 2004 12:57 PM
Subject: Re: verifying signature after decryption
> On Mon, 26 Apr 2004, David Shaw wrote:
> > > question: is there a way to extract the signed message,
> > > including the signature, from an encrypted message?
> >
> > There is nothing in the OpenPGP protocol that prevents this. In
> > fact, it's quite easy to do. However, the code in GnuPG doesn't
> > currently allow it (it's not a generally useful feature).
> ====================================
>
> is there any way to do this without writing my own code?
-----BEGIN PGP SIGNATURE-----
Version: PGP 8.0.3 - not licensed for commercial use: www.pgp.com
iQA/AwUBQI1HRYlVuABWWiqVEQI5tQCgmQlksMq0KfVA9vxbzFhH1XJLbTQAnRc1
a/0i//VEGX1fwjqHmPyV635T
=Vpkg
-----END PGP SIGNATURE-----
More information about the Gnupg-users
mailing list