FRESH

Hacker News

Cleartext signatures considered harmful

40 points by derleyici

by cge

1 subcomments

The argument here seems to be that when GnuPG's implementation, or the original standard, has flaws, those flaws should be seen as inherent limitations of the use-case, rather than flaws in the implementation and standard. And with GnuPG, that argument seems to be used to justify having it behave the same way it always has, which leads to dangerous situations.
That PGP handles armor, escaping, and comments badly, and clients handle display of the signed text badly, do not seem like they mean that the concept of cleartext signatures are inherently flawed.

by derleyici

0 subcomment

0 subcomment

by comradesmith

1 subcomments

> Cleartext signatures considered harmful
Really? To me it seems that what’s really harmful is assuming a long string of high entropy hex bytes is a valid signature.
Both detached signatures and cleartext need to be run through verify, so what gives?
Does gpg not error when the post-verification output file doesn’t match the cleartext? That sounds like a bug in gpg

by Dwedit

0 subcomment