Cleartext signatures considered harmful

4 comments

• cge1 hour ago
  The argument here seems to be that when GnuPG&#x27;s implementation, or the original standard, has flaws, those flaws should be seen as inherent limitations of the use-case, rather than flaws in the implementation and standard. And with GnuPG, that argument seems to be used to justify having it behave the same way it always has, which leads to dangerous situations.<p>That PGP handles armor, escaping, and comments badly, and clients handle display of the signed text badly, do not seem like they mean that the concept of cleartext signatures are inherently flawed.
  • derleyici51 minutes ago
    Fair point. Calling the concept inherently flawed is doing a lot of work to excuse 30 years of implementation bugs.
• derleyici3 hours ago
  Related: <a href="https:&#x2F;&#x2F;news.ycombinator.com&#x2F;item?id=46403200">https:&#x2F;&#x2F;news.ycombinator.com&#x2F;item?id=46403200</a>
• comradesmith1 hour ago
  &gt; Cleartext signatures considered harmful<p>Really? To me it seems that what’s really harmful is assuming a long string of high entropy hex bytes is a valid signature.<p>Both detached signatures and cleartext need to be run through verify, so what gives?<p>Does gpg not error when the post-verification output file doesn’t match the cleartext? That sounds like a bug in gpg
• Dwedit55 minutes ago
  Obligatory <a href="https:&#x2F;&#x2F;xkcd.com&#x2F;1181&#x2F;" rel="nofollow">https:&#x2F;&#x2F;xkcd.com&#x2F;1181&#x2F;</a>