Page MenuHome GnuPG
Create Task
Maniphest T1532

Don't send key ids in plaintext
Closed, ResolvedPublic
Actions

Description

Currently, without any configuration, encrypted messages contain key ids of
senders and receipts which are visible to anyone.

I don't have a deep technical knowledge, but I would like to see gpg to
implement some kind of hashing rather than putting ids in plaintext. Is there a
way to do this, that each time a different hash will be created for the same ids
and it will be easy for the recipient's gpg app to see it's target private key
belongs to a private key in the keychain and simply ask password for that
specific key when decrypting.

If it's not possible to create different hashes for the same keys, even a fixed
hash would still be better.

This could be implemented as the default behavior, are there any drawbacks?

Event Timeline

asdfgh added a project: Bug Report.Aug 31 2013, 6:57 PM
asdfgh added a subscriber: asdfgh.
asdfgh added a comment.Aug 31 2013, 7:01 PM

Forgot to mention, throw-keyids is a workaround by not sending the key ids but
it confuses many people when trying to decrypt those messages. So a different
approach is necessary

werner closed this task as Resolved.Sep 6 2013, 11:09 AM
werner claimed this task.
werner lowered the priority of this task from High to Wishlist.
werner added projects: Not A Bug, Feature Request.
werner removed a project: Bug Report.

This is not a worth a bug report. If you want to discuss this topic, please use
the gnupg-users mailing list. We can't answer indivdual questions by means of a
bug tracker.