Re: [Fwknop-discuss] GPG authentication packet not picked up by fwknop
Brought to you by:
mbr
From: Francois M. <fm...@gm...> - 2008-09-29 01:54:39
|
On 2008-09-25 at 21:27:05, Michael Rash wrote: > In most GnuPG installations that I've seen, the beginning of > gpg-encrypted data begins with 0x8502, and even the file 'magic' > database uses this to identify such data. May I ask which version of > GnuPG you have installed on your client system, and which Linux/other > distro it is? Alright, I re-generated 1024 bit keys on GPG 1.4 and re-ran this test with fwknopd --debug --verbose I still got the same thing: Mon Sep 29 14:39:41 2008 [+] decode_base64() against the following data: hQEOAy3NCjcvAM+HEAP/Vp12UyKVitTW/OszEdyubx6i4ZL+JwR2+t7KAzTsDMx5Lq6ijUUSW9Yg1vJlkEfSX/Ry1i6PElK8fcQNE/IjbMzsHs6UPQJo+ctOZxQTKhJcAtrT7axf+DpUbw0YfXzJ7R6uCBQtm5KVxsfvg4jtah0q1WpBqWLp99tC5BSwmOID/3ndoMir2BXfUMCMy0vR8PPSbgx5GsfOXDEPF3EnLN55DMvWZgpUv4bMi5W29rggSAEL2FyunPwVYLX5pEn3UENl34RKdMRCQt+4AOkzPeGhzByP0Bdh7UkbNMjpUUxe1Y8cIckx63TFEn0WTcr+X/nklpzwWmh/+EjHKlVGYFuShQIOA43sismS/wW+EAf7BGBbZ+nnHVu8T1AD8JM+lA2QnQ9eXyLOlftSZXmcREi6pg+rnLHH8szZG5qj8ypD+SOFZlp2gGJL9tJLtVp6K5f7Zol7RqCo2gvUP+DfdBZk2YtMjQAiVxnOT4sCfHiE0eM9mmQQ8M+hwy69KrjE3UQHT6npqAryQj6k8X2WDaWltDM7L3CM5T8Pp6YukwbOm1sX8k+fJEZj/AMVRp2BQHxuKYYJaxY04j+A/31nJUquONvd/UgZHyZQ8mYycnp0XxtrfeoWIXbXbp4uV6Ly09AB8NKdsW7318ta8dGQ7doSFRKZly28gkw6uYGBU2WKPj+BkvkIRm/Z42l/SL7l+gf7B7LhX9LHu7gygzY8PtylC2qQ2QZFENVNeFGjLivoDE/oQ/n386Wefpui9VJHzUCGl4prkngmIoLvVXklpO7F4m8QXiplHFojJ8avop7X71cMw7uMHD+VdrFVxlKrI+NkpzI6dQ58qew2+o9zvoSYrNHLVsWn8yCrsQetDw1Sjbg8rALgkK6NQqMzy0EhO3AdSVou/k84ovobNfRCjhKXyIhfblJdH6UUOyQlBgkjMcsZZeJgWlDYLcr6QLGCC2KRy8LaEB+jfEuj+w4ok6OO1t5WDiMwVPg5vTEW6OOemC28T6ntQOfzH7lEkbC8McEPLQjPI6SSk8KjBOyRx/7latLASwEgT3wX4GN8Fd/dTuot+I8Ba5zVou5+2LMSx+5bJMIekNm8Ar2LJaReXfGb2RK0c50FH6Fp69fAWBnvX38jp4fiYbqCdG2dXSa+uN2RlFICsbBGXX+OU1Sp1d63FYqoJiC7pbmhcTCAqzXW7jSO06BtoN2/soP5EbX8jqnW6dJC9k5W5FsAzjq/B1Ukd3DHNI2t8AD/ZMgf9Qwh5BNZQgKMby/J3S6uUSyZ4ARwD5pZfzUlYHSp0V0bGMq69RTjOLw0K0nn7sUHXvcRylyXTtVln04fK/oimERCcDkLMwGCkMASAFjXBNJoZ1SBoAaie1Snh9DFiHeQBKd1lz8F3zDshu4kIUBB6pr9QA== Mon Sep 29 14:39:41 2008 [-] base64-decoded data does not begin with 0x8502 Mon Sep 29 14:39:41 2008 [-] Failed decrypt for SOURCE block ANY So it looks like it's not limited to GPG 2.x. Also, I have never been able to use 2048 keys with fwknop client, I always get packets which are too big. Is it even possible? Even using --gpg-no-options, I could not do it. Maybe the documentation should state that we have to use 1024 bit keys? Francois |