In practice and with respect to security, no, mathematically, yes. If you have a private key (N, D), there is algebraically an infinite number of solutions to the equation 1 = E*D (mod Phi(N)). However, if you make two such solutions (E, N) and (E’, N) that both satisfy the equation public, you will have … Read more
I think you’re confusing the basic Diffie-Hellman, which is a key exchange protocol, with the ‘authenticated version’ which uses a certificate authority (CA). Nice explanation of how the basic Diffie-Hellman is vulnerable to man-in-the-middle from RSA Labs. “The Diffie-Hellman key exchange is vulnerable to a man-in-the-middle attack. In this attack, an opponent Carol intercepts Alice’s … Read more
If you configured Automatic Git commit signing with GPG on macOS and you see this error comment out no-tty in ~/.gnupg/gpg.conf as suggested by Fahl-Design. This will also allow you to generate new GPG keys following the GitHub instructions for new keys.
It’s the ephemeral aspect of DHE and ECDHE that provides perfect forward secrecy. The idea is that even if someone records traffic and compromises the server to get its private key, they won’t be able to decipher that traffic, because they’ll be missing the ephemeral DH parameters that won’t have been saved. With fixed DH, … Read more
You are looking for ssh-copy-id. All this command does is create .ssh and .ssh/authorized_keys and set their permissions appropriately if they don’t exist. Then it appends your public key to the end of .ssh/authorized_keys.
You don’t need PyCrypto or PyMe, fine though those packages may be – you will have all kinds of problems building under Windows. Instead, why not avoid the rabbit-holes and do what I did? Use gnupg 1.4.9. You don’t need to do a full installation on end-user machines – just gpg.exe and iconv.dll from the … Read more
Code example: private static string _privateKey; private static string _publicKey; private static UnicodeEncoding _encoder = new UnicodeEncoding(); private static void RSA() { var rsa = new RSACryptoServiceProvider(); _privateKey = rsa.ToXmlString(true); _publicKey = rsa.ToXmlString(false); var text = “Test1”; Console.WriteLine(“RSA // Text to encrypt: ” + text); var enc = Encrypt(text); Console.WriteLine(“RSA // Encrypted Text: ” + … Read more
From here: $SSH_AUTH_SOCK contains the path of the unix file socket that the agent uses for communication with other processes. This is essential for ssh-add.
In RSA you should use the public key for encryption and the private key for decryption. Your sample code uses for encryption and decryption the public key – this can not work. Hence in the decryption part you should initialize the cipher this way: cipher1.init(Cipher.DECRYPT_MODE, privateKey); Furthermor your code has a second significant bug: You … Read more
I just ran into this issue, on the gpg CLI in Arch Linux. I needed to kill the existing “gpg-agent” process, then everything was back to normal ( a new gpg-agent should auto-launch when you invoke the gpg command, again; …). edit: if the process fails to reload (e.g. within a minute), execute gpg-agent in … Read more