[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Two keys for the same encrypted file

To: linux-crypto@xxxxxxxxxxxx
Subject: Re: Two keys for the same encrypted file
From: kinto <kintho@xxxxxxxxx>
Date: Mon, 10 Oct 2005 00:35:05 +0200
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:from:to:subject:date:user-agent:references:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:message-id; b=UGCVuVw9VA67Xh1GBx3cV0enD6jfXytOAzwlgPir2+2cMhlqP8OC53U28M9CI9Evjb8yfH3oZoSkhFtonD5G7LSDxnm3midcPiLXfXnQf+bbXFEYWKfeAV6UcSgJVdEwRAZMP3DlUpv00wU4yE7Fz2Jyx3fm7cuYBZ4BLl2cVn4=
In-reply-to: <434945D9.88D598D9@users.sourceforge.net>
List-archive: <http://mail.nl.linux.org/linux-crypto/>
List-help: <mailto:ecartis@nl.linux.org?Subject=help>
List-id: <linux-crypto.nl.linux.org>
List-owner: <mailto:ecartis-owner@nl.linux.org>
List-post: <mailto:linux-crypto@nl.linux.org>
List-software: Ecartis version 1.0.0
List-subscribe: <mailto:linux-crypto-request@nl.linux.org?Subject=subscribe>
List-unsubscribe: <mailto:linux-crypto-request@nl.linux.org?Subject=unsubscribe>
References: <200510091650.30091.kintho@gmail.com> <434945D9.88D598D9@users.sourceforge.net>
Sender: linux-crypto-bounce@xxxxxxxxxxxx
User-agent: KMail/1.8.2

Alle 18:31, domenica 9 ottobre 2005, Jari Ruusu ha scritto:
> Above "head -c 15 /dev/urandom | uuencode -m - | head -n 2 | tail -n
> 1" is completely unnecessary and unused here.

Ok, but why? In LoopAes.README this is the procedure for a physical 
device. Aren't it valid for a file backed loop?

> Seems you are using file backed loop. Read-only mounting iso9960
> images and such work fine with file backed loops. My advise is to
> avoid writable file backed loops.

Thanks for the suggestion. :)

> If you use public key crypto and specify multiple recipients when you
> encrypt the key file contents, then each recipient can use their gpg
> private key passphrase to unlock the key file contents. Time limit
> can be enforced by re-encrypting key file contents using different
> set of recipients.

Yes, this is a solution.
But my problem is to give a time-limit access at some files backed loop 
with a key file distributed to specific allowed users. This acces must 
be time-limited (from 1 to 3 week by a specific date). No public or 
private key are available, there is only the gpg/pgp installation on 
the host (yes I use this file also on other o.s.).
Is my explanation clearly? :)
Thanks.

-
Linux-crypto:  cryptography in and on the Linux system
Archive:       http://mail.nl.linux.org/linux-crypto/

Follow-Ups:
- Re: Two keys for the same encrypted file
  - From: Matthias Schniedermeyer
- Re: Two keys for the same encrypted file
  - From: Jari Ruusu

References:
- Two keys for the same encrypted file
  - From: kinto
- Re: Two keys for the same encrypted file
  - From: Jari Ruusu

Prev by Date: Re: Two keys for the same encrypted file
Next by Date: Re: Two keys for the same encrypted file
Previous by thread: Re: Two keys for the same encrypted file
Next by thread: Re: Two keys for the same encrypted file
Index(es):
- Date
- Thread