Graphical Frontend for GnuPG (Win32) 7
Crixus writes "For those of you who are loathe to move from PGP to GnuPG on your Windows boxen because of no graphical interface, now you have one. It's GPL'd and it's called
Windows Privacy Tray (WinPT) and acts, looks, and feels just like PGP-Tray. It's still in development, but the last release I got works great, and is getting better (because unlike the OTHER frontend for GnuPG, WinPT is actually being worked on). The author is also having a
contest to draw what will be the official Icon for WinPT. Why not give it a try?"
I'm confused! (Score:1)
Rich...
Re:GPG should be used under Windows only with caut (Score:2)
Actually, although the site said that, it's not the case anymore, and I believe hasn't been the case since version 1.0.3 (maybe 1.0.2?). I asked Werner this very question this morning and he said that yes, the Win32 version is running securely and that he had forgotten to update the website as to this fact.
As I had originally assumed, the moment he removed the warning from next to the link to download the Win32 binary, was the moment it was known to be secure. He has now updated the GnuPG web site [gnupg.org] to reflect this.
Rich...
Re:System Tray for Linux (Score:1)
In fact, here is what I asked Werner, and his exact reply:
-----
Are you saying that the Win32 version does have a secure EGD now and that it is offers similar security as PGP? No worries?
Actually Windows is quite good in delivering much random - everything is different with every use :-)
We use the same methods Peter Gutmann uses for his cryptlib and actually it is pretty the same source code. He has done quite a lot of research in this area and so I think the random numbers are okay.
Werner
-----
Rich...
GPG should be used under Windows only with caution (Score:2)
Please note that the GPG website [gnupg.org] says that "due to the lack of a well tested entropy source, it should be used with some caution" under Windows. Linux is the recommended platform, the BSDs are the only others that get a full thumbs up.
Still, that's an improvement - last time I looked, they said that you should only ever use the Windows version for decrypting and verifying signatures, never for generating keys or encrypting, due to this lack of a secure random source..
Wrong category? (Score:1)
I'll grant that privacy and encryption are common subjects here, but this is really just a Freshmeat announcement masquerading as a story.
System Tray for Linux (Score:1)
What I am wondering is when a system-tray like program will be written for the Linux version of GPG. Is there such a thing that I have just not heard of? I have no in-depth programming skills, so the difficulty of such a task is not known to me. I imagine it might be kind of tough since each window manager has its own way of doing things -- no standard clipboard to write and read things to like Windows has.
GPA (Score:1)
From the sound of it, when I last asked him anyway, I got the impression he hadn't worked on it in a while.
With regards to a secure entropy source on the Windows version.... that warning used to be posted right next to the link where you could download the win32 binary.... but it's been gone frorm there for some time. So I made (the perhaps erroneous) assumption that they had found a secure EGD and that the windows version was kosher.
As someone pointed out, the warning is still there (though not as severe) but it's in an out of the way spot ont he web site. It's not as conspicuous, which I think is a bad thing.
Rich...