From eugen@leitl.org Sat Jun 8 06:56:02 2002 From: Eugen Leitl To: cypherpunks-legacy@lists.cpunks.org Subject: RE: PGP and Speak Freely (fwd) Date: Sat, 08 Jun 2002 06:56:02 +0000 Message-ID: MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="===============8307518738644334076==" --===============8307518738644334076== Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit -- -- Eugen* Leitl leitl ______________________________________________________________ ICBMTO: N48 04'14.8'' E11 36'41.2'' http://www.leitl.org 57F9CFD3: ED90 0433 EB74 E4A9 537F CFF5 86E7 629B 57F9 CFD3 ---------- Forwarded message ---------- Date: Sat, 08 Jun 2002 03:42:12 -0500 From: "Benjamin T. Moore, Jr." To: ed(a)kapitein.net, speak-freely(a)fourmilab.ch Subject: RE: PGP and Speak Freely -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Ok, let me see if I can maybe clarify what the issue is... Speak Freely offers the ability to encrypt your voice conversations in real time. If you have the "Crypto capable" version, when you've made a connection to someone, you both can enter an agreed upon key and your conversation will be secure from that point forward. This of course creates several problems. If someone is listening in, monitoring your conversation/traffic or packet sniffing, if for instance, you were to say in the conversation, lets use the word "monkey" for an IDEA key and you both typed in the word "monkey," your conversation would be encrypted using "monkey" as an IDEA key. The problem of course is, if someone is monitoring your conversation, they'd of heard you agree upon a key and they'd simply enter in the same key and continue to monitor. Thus, you need a method of securely exchanging either an agreed upon key or a generated key - Speak Freely will generate keys that you may copy and paste into any of the various windows for the various encryption algorithms. PGP, Pretty Good Privacy, is one damn good method of securely exchanging those keys. You may of course e-mail the key in an encrypted e-mail or file to the intended recipients or you could even send the encrypted file using several of the Instant Messaging Clients with a file transfer protocol. These methods will certainly work very well. However, take this example which happened to me just last evening. A friend and I were needing to set up a secure conversation. After we couldn't get Speak Freely to handle the key exchange, we decided to e-mail the key in a PGP encrypted e-mail. Trouble was, the mail server was down on his ISP. He could neither receive or send mail. If he hadn't had an auxiliary web-based e-mail account, things might have been more complex than they were. If Speak Freely were functioning correctly... let me amend that, IF we KNEW how to make Speak Freely handle the key exchange as described in the help file... It would have been a simple matter for us to allow Speak Freely to handle the key exchange. What is supposed to happen is... in the "connection" tab, you should be able to type the key identifier for the person(s), Speak Freely will then launch PGP - which it does - encrypt the generated key and transmit it to the intended recipients. This would automate secure communications. - -- Benjamin T. Moore, Jr. - ICQ UIN - 8159114 *The Price of Freedom is Self-Reliance! The Cost is Education!* - -----Original Message----- From: owner-speak-freely(a)fourmilab.ch [mailto:owner-speak-freely(a)fourmilab.ch]On Behalf Of ed(a)kapitein.net Sent: Friday, June 07, 2002 6:14 AM To: btmoore(a)iname.com; speak-freely(a)fourmilab.ch Subject: Re: PGP and Speak Freely Hi, I have used PGP with speakfreely on unix. it worked just fine ( in command line mode, not with the GUI ). I did not used a key exhange option, you can just sent (by e-mail) your pgp public key to te recipient and ask him to email you his public key. I don't know of any need for keyexchange within SF itself. am I missing something ? please give some more detail on the needed key exchange option. Kind regards, @ On Fri, 07 Jun 2002 04:30:26 -0500 "Benjamin T. Moore, Jr." wrote: >-----BEGIN PGP SIGNED MESSAGE----- >Hash: SHA1 > >Anyone gotten Speak Freely to do a PGP key exchange? Using Speak Freely >version 7.2 and PGP 658... > >- -- >Benjamin T. Moore, Jr. - ICQ UIN - 8159114 >*The Price of Freedom is Self-Reliance! The Cost is Education!* > >-----BEGIN PGP SIGNATURE----- >Version: 6.5.8ckt http://www.ipgpp.com/ > >iQA/AwUBPQB9MnDnKKP6IdMiEQK8UwCfbzRmIrXrxTRgAkaW3JebiATGF7gAoLgv >w7ferAcCgAcm42xY9Cg6fydm >=GDim >-----END PGP SIGNATURE----- > > > * * * > >To unsubscribe from this mailing list, send E-mail containing >the word "unsubscribe" in the message body (*not* as the >Subject) to speak-freely-request(a)fourmilab.ch > > * * * To unsubscribe from this mailing list, send E-mail containing the word "unsubscribe" in the message body (*not* as the Subject) to speak-freely-request(a)fourmilab.ch -----BEGIN PGP SIGNATURE----- Version: 6.5.8ckt http://www.ipgpp.com/ iQA/AwUBPQHDY3DnKKP6IdMiEQLTyACfSBRs+lR7R249Q+IWzE3nSjgIrDwAoPnX qOJLi95gXvufiwkq04ccm++5 =c9YJ -----END PGP SIGNATURE----- * * * To unsubscribe from this mailing list, send E-mail containing the word "unsubscribe" in the message body (*not* as the Subject) to speak-freely-request(a)fourmilab.ch --===============8307518738644334076== Content-Type: application/pgp Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="attachment.bin" MIME-Version: 1.0 Ci0tIAotLSBFdWdlbiogTGVpdGwgPGEgaHJlZj0iaHR0cDovL2xlaXRsLm9yZyI+bGVpdGw8L2E+ Cl9fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19f X19fX19fCklDQk1UTzogTjQ4IDA0JzE0LjgnJyBFMTEgMzYnNDEuMicnIGh0dHA6Ly93d3cubGVp dGwub3JnCjU3RjlDRkQzOiBFRDkwIDA0MzMgRUI3NCBFNEE5IDUzN0YgQ0ZGNSA4NkU3IDYyOUIg NTdGOSBDRkQzCgoKLS0tLS0tLS0tLSBGb3J3YXJkZWQgbWVzc2FnZSAtLS0tLS0tLS0tCkRhdGU6 IFNhdCwgMDggSnVuIDIwMDIgMDM6NDI6MTIgLTA1MDAKRnJvbTogIkJlbmphbWluIFQuIE1vb3Jl LCBKci4iIDxidG1vb3JlQGluYW1lLmNvbT4KVG86IGVkQGthcGl0ZWluLm5ldCwgc3BlYWstZnJl ZWx5QGZvdXJtaWxhYi5jaApTdWJqZWN0OiBSRTogUEdQIGFuZCBTcGVhayBGcmVlbHkKCi0tLS0t QkVHSU4gUEdQIFNJR05FRCBNRVNTQUdFLS0tLS0KSGFzaDogU0hBMQoKT2ssIGxldCBtZSBzZWUg aWYgSSBjYW4gbWF5YmUgY2xhcmlmeSB3aGF0IHRoZSBpc3N1ZSBpcy4uLiBTcGVhayBGcmVlbHkK b2ZmZXJzIHRoZSBhYmlsaXR5IHRvIGVuY3J5cHQgeW91ciB2b2ljZSBjb252ZXJzYXRpb25zIGlu IHJlYWwgdGltZS4gSWYgeW91CmhhdmUgdGhlICJDcnlwdG8gY2FwYWJsZSIgdmVyc2lvbiwgd2hl biB5b3UndmUgbWFkZSBhIGNvbm5lY3Rpb24gdG8Kc29tZW9uZSwgeW91IGJvdGggY2FuIGVudGVy IGFuIGFncmVlZCB1cG9uIGtleSBhbmQgeW91ciBjb252ZXJzYXRpb24gd2lsbApiZSBzZWN1cmUg ZnJvbSB0aGF0IHBvaW50IGZvcndhcmQuIFRoaXMgb2YgY291cnNlIGNyZWF0ZXMgc2V2ZXJhbCBw cm9ibGVtcy4KSWYgc29tZW9uZSBpcyBsaXN0ZW5pbmcgaW4sIG1vbml0b3JpbmcgeW91ciBjb252 ZXJzYXRpb24vdHJhZmZpYyBvciBwYWNrZXQKc25pZmZpbmcsIGlmIGZvciBpbnN0YW5jZSwgeW91 IHdlcmUgdG8gc2F5IGluIHRoZSBjb252ZXJzYXRpb24sIGxldHMgdXNlCnRoZSB3b3JkICJtb25r ZXkiIGZvciBhbiBJREVBIGtleSBhbmQgeW91IGJvdGggdHlwZWQgaW4gdGhlIHdvcmQgIm1vbmtl eSwiCnlvdXIgY29udmVyc2F0aW9uIHdvdWxkIGJlIGVuY3J5cHRlZCB1c2luZyAibW9ua2V5IiBh cyBhbiBJREVBIGtleS4gVGhlCnByb2JsZW0gb2YgY291cnNlIGlzLCBpZiBzb21lb25lIGlzIG1v bml0b3JpbmcgeW91ciBjb252ZXJzYXRpb24sIHRoZXknZCBvZgpoZWFyZCB5b3UgYWdyZWUgdXBv biBhIGtleSBhbmQgdGhleSdkIHNpbXBseSBlbnRlciBpbiB0aGUgc2FtZSBrZXkgYW5kCmNvbnRp bnVlIHRvIG1vbml0b3IuIAoKVGh1cywgeW91IG5lZWQgYSBtZXRob2Qgb2Ygc2VjdXJlbHkgZXhj aGFuZ2luZyBlaXRoZXIgYW4gYWdyZWVkIHVwb24ga2V5IG9yCmEgZ2VuZXJhdGVkIGtleSAtIFNw ZWFrIEZyZWVseSB3aWxsIGdlbmVyYXRlIGtleXMgdGhhdCB5b3UgbWF5IGNvcHkgYW5kCnBhc3Rl IGludG8gYW55IG9mIHRoZSB2YXJpb3VzIHdpbmRvd3MgZm9yICB0aGUgdmFyaW91cyBlbmNyeXB0 aW9uCmFsZ29yaXRobXMuIFBHUCwgUHJldHR5IEdvb2QgUHJpdmFjeSwgaXMgb25lIGRhbW4gZ29v ZCBtZXRob2Qgb2Ygc2VjdXJlbHkKZXhjaGFuZ2luZyB0aG9zZSBrZXlzLiBZb3UgbWF5IG9mIGNv dXJzZSBlLW1haWwgdGhlIGtleSBpbiBhbiBlbmNyeXB0ZWQKZS1tYWlsIG9yIGZpbGUgdG8gdGhl IGludGVuZGVkIHJlY2lwaWVudHMgb3IgeW91IGNvdWxkIGV2ZW4gc2VuZCB0aGUKZW5jcnlwdGVk IGZpbGUgdXNpbmcgc2V2ZXJhbCBvZiB0aGUgSW5zdGFudCBNZXNzYWdpbmcgQ2xpZW50cyB3aXRo IGEgZmlsZQp0cmFuc2ZlciBwcm90b2NvbC4gVGhlc2UgbWV0aG9kcyB3aWxsIGNlcnRhaW5seSB3 b3JrIHZlcnkgd2VsbC4gSG93ZXZlciwKdGFrZSB0aGlzIGV4YW1wbGUgd2hpY2ggaGFwcGVuZWQg dG8gbWUganVzdCBsYXN0IGV2ZW5pbmcuIEEgZnJpZW5kIGFuZCBJCndlcmUgbmVlZGluZyB0byBz ZXQgdXAgYSBzZWN1cmUgY29udmVyc2F0aW9uLiBBZnRlciB3ZSBjb3VsZG4ndCBnZXQgU3BlYWsK RnJlZWx5IHRvIGhhbmRsZSB0aGUga2V5IGV4Y2hhbmdlLCB3ZSBkZWNpZGVkIHRvIGUtbWFpbCB0 aGUga2V5IGluIGEgUEdQCmVuY3J5cHRlZCBlLW1haWwuIFRyb3VibGUgd2FzLCB0aGUgbWFpbCBz ZXJ2ZXIgd2FzIGRvd24gb24gaGlzIElTUC4gSGUKY291bGQgbmVpdGhlciByZWNlaXZlIG9yIHNl bmQgbWFpbC4gSWYgaGUgaGFkbid0IGhhZCBhbiBhdXhpbGlhcnkgd2ViLWJhc2VkCmUtbWFpbCBh Y2NvdW50LCB0aGluZ3MgbWlnaHQgaGF2ZSBiZWVuIG1vcmUgY29tcGxleCB0aGFuIHRoZXkgd2Vy ZS4KCklmIFNwZWFrIEZyZWVseSB3ZXJlIGZ1bmN0aW9uaW5nIGNvcnJlY3RseS4uLiBsZXQgbWUg YW1lbmQgdGhhdCwgSUYgd2UgS05FVwpob3cgdG8gbWFrZSBTcGVhayBGcmVlbHkgaGFuZGxlIHRo ZSBrZXkgZXhjaGFuZ2UgYXMgZGVzY3JpYmVkIGluIHRoZSBoZWxwCmZpbGUuLi4gSXQgd291bGQg aGF2ZSBiZWVuIGEgc2ltcGxlIG1hdHRlciBmb3IgdXMgdG8gYWxsb3cgU3BlYWsgRnJlZWx5IHRv CmhhbmRsZSB0aGUga2V5IGV4Y2hhbmdlLiBXaGF0IGlzIHN1cHBvc2VkIHRvIGhhcHBlbiBpcy4u LiBpbiB0aGUKImNvbm5lY3Rpb24iIHRhYiwgeW91IHNob3VsZCBiZSBhYmxlIHRvIHR5cGUgdGhl IGtleSBpZGVudGlmaWVyIGZvciB0aGUKcGVyc29uKHMpLCBTcGVhayBGcmVlbHkgd2lsbCB0aGVu IGxhdW5jaCBQR1AgLSB3aGljaCBpdCBkb2VzIC0gZW5jcnlwdCB0aGUKZ2VuZXJhdGVkIGtleSBh bmQgdHJhbnNtaXQgaXQgdG8gdGhlIGludGVuZGVkIHJlY2lwaWVudHMuIFRoaXMgd291bGQKYXV0 b21hdGUgc2VjdXJlIGNvbW11bmljYXRpb25zLiAKCi0gLS0gCkJlbmphbWluIFQuIE1vb3JlLCBK ci4gLSA8YnRtb29yZUBpbmFtZS5jb20+IElDUSBVSU4gLSA4MTU5MTE0CipUaGUgUHJpY2Ugb2Yg RnJlZWRvbSBpcyBTZWxmLVJlbGlhbmNlISBUaGUgQ29zdCBpcyBFZHVjYXRpb24hKgoKLSAtLS0t LU9yaWdpbmFsIE1lc3NhZ2UtLS0tLQpGcm9tOiBvd25lci1zcGVhay1mcmVlbHlAZm91cm1pbGFi LmNoClttYWlsdG86b3duZXItc3BlYWstZnJlZWx5QGZvdXJtaWxhYi5jaF1PbiBCZWhhbGYgT2Yg ZWRAa2FwaXRlaW4ubmV0ClNlbnQ6IEZyaWRheSwgSnVuZSAwNywgMjAwMiA2OjE0IEFNClRvOiBi dG1vb3JlQGluYW1lLmNvbTsgc3BlYWstZnJlZWx5QGZvdXJtaWxhYi5jaApTdWJqZWN0OiBSZTog UEdQIGFuZCBTcGVhayBGcmVlbHkKCgpIaSwKCkkgaGF2ZSB1c2VkIFBHUCB3aXRoIHNwZWFrZnJl ZWx5IG9uIHVuaXguIGl0IHdvcmtlZCBqdXN0IGZpbmUgKCBpbiBjb21tYW5kCmxpbmUgCm1vZGUs IG5vdCB3aXRoIHRoZSBHVUkgKS4gSSBkaWQgbm90IHVzZWQgYSBrZXkgZXhoYW5nZSBvcHRpb24s IHlvdSBjYW4ganVzdApzZW50IChieSBlLW1haWwpIHlvdXIgcGdwIHB1YmxpYyBrZXkgdG8gdGUg cmVjaXBpZW50IGFuZCAgYXNrIGhpbSB0byBlbWFpbAp5b3UgCmhpcyBwdWJsaWMga2V5LgpJIGRv bid0IGtub3cgb2YgYW55IG5lZWQgZm9yIGtleWV4Y2hhbmdlIHdpdGhpbiBTRiBpdHNlbGYuCmFt IEkgbWlzc2luZyBzb21ldGhpbmcgPyBwbGVhc2UgZ2l2ZSBzb21lIG1vcmUgZGV0YWlsIG9uIHRo ZSBuZWVkZWQga2V5IApleGNoYW5nZSBvcHRpb24uCgpLaW5kIHJlZ2FyZHMsCkAKCk9uIEZyaSwg MDcgSnVuIDIwMDIgMDQ6MzA6MjYgLTA1MDAgIkJlbmphbWluIFQuIE1vb3JlLCBKci4iCjxidG1v b3JlQGluYW1lLmNvbT4gCndyb3RlOgo+LS0tLS1CRUdJTiBQR1AgU0lHTkVEIE1FU1NBR0UtLS0t LQo+SGFzaDogU0hBMQo+Cj5BbnlvbmUgZ290dGVuIFNwZWFrIEZyZWVseSB0byBkbyBhIFBHUCBr ZXkgZXhjaGFuZ2U/IFVzaW5nIFNwZWFrIEZyZWVseQo+dmVyc2lvbiA3LjIgYW5kIFBHUCA2NTgu Li4gCj4KPi0gLS0gCj5CZW5qYW1pbiBULiBNb29yZSwgSnIuIC0gPGJ0bW9vcmVAaW5hbWUuY29t PiBJQ1EgVUlOIC0gODE1OTExNAo+KlRoZSBQcmljZSBvZiBGcmVlZG9tIGlzIFNlbGYtUmVsaWFu Y2UhIFRoZSBDb3N0IGlzIEVkdWNhdGlvbiEqCj4KPi0tLS0tQkVHSU4gUEdQIFNJR05BVFVSRS0t LS0tCj5WZXJzaW9uOiA2LjUuOGNrdCBodHRwOi8vd3d3LmlwZ3BwLmNvbS8KPgo+aVFBL0F3VUJQ UUI5TW5EbktLUDZJZE1pRVFLOFV3Q2ZielJtSXJYcnhUUmdBa2FXM0plYmlBVEdGN2dBb0xndgo+ dzdmZXJBY0NnQWNtNDJ4WTlDZzZmeWRtCj49R0RpbQo+LS0tLS1FTkQgUEdQIFNJR05BVFVSRS0t LS0tCj4KPgo+ICAgICAgICAgICAgICAgICAgICAgICogKiAqCj4KPlRvIHVuc3Vic2NyaWJlIGZy b20gdGhpcyBtYWlsaW5nIGxpc3QsIHNlbmQgRS1tYWlsIGNvbnRhaW5pbmcKPnRoZSB3b3JkICJ1 bnN1YnNjcmliZSIgaW4gdGhlIG1lc3NhZ2UgYm9keSAoKm5vdCogYXMgdGhlCj5TdWJqZWN0KSB0 byBzcGVhay1mcmVlbHktcmVxdWVzdEBmb3VybWlsYWIuY2gKPgo+CgoKICAgICAgICAgICAgICAg ICAgICAgICogKiAqCgpUbyB1bnN1YnNjcmliZSBmcm9tIHRoaXMgbWFpbGluZyBsaXN0LCBzZW5k IEUtbWFpbCBjb250YWluaW5nCnRoZSB3b3JkICJ1bnN1YnNjcmliZSIgaW4gdGhlIG1lc3NhZ2Ug Ym9keSAoKm5vdCogYXMgdGhlClN1YmplY3QpIHRvIHNwZWFrLWZyZWVseS1yZXF1ZXN0QGZvdXJt aWxhYi5jaAoKLS0tLS1CRUdJTiBQR1AgU0lHTkFUVVJFLS0tLS0KVmVyc2lvbjogNi41Ljhja3Qg aHR0cDovL3d3dy5pcGdwcC5jb20vCgppUUEvQXdVQlBRSERZM0RuS0tQNklkTWlFUUxUeUFDZlNC UnMrbFI3UjI0OVErSVd6RTNuU2pnSXJEd0FvUG5YCnFPSkxpOTVnWHZ1Zml3a3EwNGNjbSsrNQo9 YzlZSgotLS0tLUVORCBQR1AgU0lHTkFUVVJFLS0tLS0KCgogICAgICAgICAgICAgICAgICAgICAg KiAqICoKClRvIHVuc3Vic2NyaWJlIGZyb20gdGhpcyBtYWlsaW5nIGxpc3QsIHNlbmQgRS1tYWls IGNvbnRhaW5pbmcKdGhlIHdvcmQgInVuc3Vic2NyaWJlIiBpbiB0aGUgbWVzc2FnZSBib2R5ICgq bm90KiBhcyB0aGUKU3ViamVjdCkgdG8gc3BlYWstZnJlZWx5LXJlcXVlc3RAZm91cm1pbGFiLmNo CgoK --===============8307518738644334076==--