Page MenuHome GnuPG
Create Task
Maniphest T915

--recipient substring mismatch
Closed, InvalidPublic
Actions

Description

My email address is brian@lorf.org. My friend Ian's is ian@lorf.org. gnupg's
recipient flag seems to misbehave when I specify Ian, maybe because his address
is a substring of mine.

$ echo blah > blah
$ gpg -e -r ian@lorf.org blah
$ gpg -d blah.gpg

You need a passphrase to unlock the secret key for
user: "Brian Lewis <brian@lorf.org>"
2048-bit ELG-E key, ID CD150768, created 2008-05-20 (main key ID 56A8F0ED)

gpg: encrypted with 2048-bit ELG-E key, ID CD150768, created 2008-05-20

"Brian Lewis <brian@lorf.org>"

blah

So I said to encrypt to ian@lorf.org, but it encrypted to brian@lorf.org. There
are lots of ways this could be abused, so it seems pretty bad.

Details

Due Date
Jun 20 2006, 2:00 AM
Version
1.4.6

Event Timeline

b6022 set Version to 1.4.6.May 21 2008, 1:56 AM
b6022 added projects: gnupg, Bug Report.
b6022 added a subscriber: b6022.
b6022 added a comment.May 21 2008, 4:01 AM

I've since learned that this is actually the intended behavior. It's a dangerous
and bad default, and I urge you to change it to be something safer.

werner added a subscriber: werner.May 21 2008, 5:44 PM

Please read the man page:

<heinrichh@uni-duesseldorf.de>
               Using  the email address part which must match exactly. The   
      left angle bracket indicates
               this email address mode.

gpg is not an email program, you email program needs to ensure that proper mail
addresses are used. If you want to be sure to use a specific key, you need to
use something unique; i.e. the fingerprint.

werner closed this task as Invalid.May 21 2008, 5:44 PM
werner lowered the priority of this task from High to Normal.
werner removed a project: Bug Report.
werner added a project: Not A Bug.
b6022 added a comment.May 21 2008, 10:28 PM

Email addresses on the Internet *are* unique. The option is too easy to misuse,
especially for a security program where selecting the correct recipient is
crucial. But, whatever. GNU.

werner added a comment.May 26 2008, 12:39 PM

Right, email addresses are unique, but the key-email association is not unique.

werner set Due Date to May 20 2006, 2:00 AM.May 28 2008, 9:20 AM
werner added a project: Restricted Project.
werner changed Due Date from May 20 2006, 2:00 AM to Jun 20 2006, 2:00 AM.
werner removed a project: Restricted Project.Sep 30 2008, 7:45 PM