understanding GnuPG "--clearsign" option

Max R.D Parmer maxp at trystero.is
Mon Aug 12 21:00:08 CEST 2013


On Mon, Aug 12, 2013 at 11:40:35AM +0300, Martin T wrote:
> Hi,
> 
> one can sign the message with "--clearsign" option which adds ASCII
> armored(Radix-64 encoding) "PGP signature" at the end of the text.
> This "PGP signature" contains the UID of the signer, timestamp and key
> ID. However, two questions:
> 
> 1) Where is the UID of the signer, timestamp of the signature and
> signer key-ID stored? If I execute "gpg2 --verify file.asc", then I'm
> able to see the UID of the signer, timestamp and signer key-ID, but if
> I decode the Radix-64/base64 data back to binary(base64 -d) and use
> "hexdump -C" to analyze this data, I do not see the UID, timestamp or
> signer key-ID.

To add to the other good advice you've gotten, you might want to
experiment with the --list-packets option to gpg to get a peak at the
inner structure of that blob at the end.

--
@maximus_freeman 0x7D964D3361142ACF
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 966 bytes
Desc: not available
URL: </pipermail/attachments/20130812/2e43e43d/attachment.sig>


More information about the Gnupg-users mailing list