Il fut un temps… le bon vieux temps comme ils disent… o\u00f9 j’utilisais PGP v2.6.3i (sous M$ Windows, la loose) notamment avec la messagerie… <\/p>\n
J’ai commenc\u00e9 \u00e0 chiffrer les messages \u00e0 peu pr\u00e8s au m\u00eame moment ou j’ai d\u00e9couvert UNIX et Linux. Les clients messagerie lourds g\u00e9raient d\u00e9j\u00e0 assez bien le chiffrement par certificats (avec des formats diff\u00e9rents) mais ne prenaient pas du tout en compte les cl\u00e9s PGP, sauf \u00e0 passer par des extensions. Les navigateurs web ne g\u00e8rent pas du tout les cl\u00e9s PGP (sauf avec un projet type Monkeysphere<\/a>) mais comprennent nativement les certificats.<\/p>\n Vint forc\u00e9ment le moment ou je laissais tomber PGP pour les certificats, une autorit\u00e9 de certification… et SSH.<\/p>\n Mais les certificats imposent une infrastructure et ne r\u00e9solvent pas intuitivement la s\u00e9curisation des \u00e9changes entres personnes. Ils ne sont vraiment performant que dans un mod\u00e8le hi\u00e9rarchique, donc soit en entreprise soit sous le contr\u00f4le d’une autorit\u00e9 sur internet.<\/p>\n Et aujourd’hui? Conclusion, il me faut une nouvelle cl\u00e9, mais GnuPG cette fois-ci !<\/p>\n Freeware PGP versions (source<\/a> – download<\/a>) :<\/p>\n PGP 2.3a<\/strong> This is the \u00ab\u00a0classic\u00a0\u00bb PGP version, and until a couple of years ago, this was the version generally used all over the world. You may still use PGP 2.3a if you want to, but you may experience problems when trying to process messages and keys generated with PGP 2.6 and later versions, or when using keys that are larger than 1280 bits (the maximum size is now 2048 bits). PGP 2.3a is presumably illegal to use within the USA because of patent restrictions. Il fut un temps… le bon vieux temps comme ils disent… o\u00f9 j’utilisais PGP v2.6.3i (sous M$ Windows, la loose) notamment avec la messagerie…<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[58,59,3,24],"tags":[187,264],"_links":{"self":[{"href":"https:\/\/blog.nebule.org\/index.php?rest_route=\/wp\/v2\/posts\/13"}],"collection":[{"href":"https:\/\/blog.nebule.org\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.nebule.org\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.nebule.org\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.nebule.org\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=13"}],"version-history":[{"count":1,"href":"https:\/\/blog.nebule.org\/index.php?rest_route=\/wp\/v2\/posts\/13\/revisions"}],"predecessor-version":[{"id":2416,"href":"https:\/\/blog.nebule.org\/index.php?rest_route=\/wp\/v2\/posts\/13\/revisions\/2416"}],"wp:attachment":[{"href":"https:\/\/blog.nebule.org\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=13"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.nebule.org\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=13"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.nebule.org\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=13"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
\nJe vois que Horde prend en compte les cl\u00e9s PGP pour le chiffrement de messages. Pour un webmail, pas mal :-)
\nPour Nebule, clairement le mod\u00e8le hi\u00e9rarchique des relations entre certificats n’est pas viable. Il reste le mod\u00e8le \u00e0 la PGP, horizontale.<\/p>\n
\n
\nPGP 2.6ui<\/strong> This is an unofficial, \u00ab\u00a0hacked\u00a0\u00bb version of PGP 2.3a, which aimed at correcting the incompatibility problems introduced by MIT PGP 2.6. Please observe that PGP 2.6ui is not a \u00ab\u00a0true\u00a0\u00bb 2.6 version as it is based on the source code for PGP 2.3a, and as such does not include the improvements and bug fixes found in the newer versions. PGP 2.6ui was published by mathew in the UK, but is no longer supported.
\nPGP 2.62ui<\/strong> Tony Lezard<\/a> in the UK based this version of PGP on mathew’s 2.6ui, but tried to bring it up-to-date with the latest PGP 2.6x improvements (bigger keys, bug-fixes, new command options etc.). PGP 2.62ui can be downloaded from ftp.mantis.co.uk<\/a>.
\nPGP 2.64ui<\/strong> This is the most current version of the ui series. It is published by Steve Crompton<\/a>. It contains fixes and features not available in other versions of PGP. For more information including download locations, see The Unofficial International PGP Home Page<\/a>
\nMIT PGP 2.6.2<\/strong> This is a US-only version of PGP, released and distributed by MIT<\/a>. It has the following restrictions :
\n1\/ It creates messages that cannot be read by PGP versions prior to 2.5.
\n2\/ It uses the RSAREF encryption library, making it slightly slower on most platforms. Furthermore, it does not understand the old signature format used by PGP 2.2 and earlier versions. PGP 2.6.2 is illegal to export from USA, but once exported anyone may use it freely. This version corrects a number of bugs found in PGP 2.6 and 2.6.1.
\nPGP 2.6.2g<\/strong> This is a \u00ab\u00a0rebel version\u00a0\u00bb of PGP (the ‘g’ stands for ‘guerilla’). It supports 4096-bit keys, doesn’t use RSAREF, and fixes many bugs found in MIT PGP 2.6.2. I don’t know much about this version, but you can get it here<\/a>.
\nPGP 2.6.3i<\/strong> This version of PGP is based on the source code for MIT PGP 2.6.2 and modified for international use. PGP 2.6.3i differs from MIT PGP 2.6.2 in the following ways:
\n– It does not use the RSAREF encryption library
\n– It is 100% compatible with all other PGP 2.x versions
\n– It corrects a number of bugs present in PGP 2.6.2(i)
\n– It compiles \u00ab\u00a0out of the box\u00a0\u00bb for many new platforms
\n– It adds some new features without breaking compatibility with earlier versions
\nPGP 2.6.3i is probably illegal to use within the USA, so if you are a US citizen, you should not use it. You can download PGP 2.6.3i here<\/a>
\nPGP 2.6.3ia<\/strong> This release fixes a few minor problems in PGP 2.6.3i. Here’s the patch<\/a>.
\nPGP 2.6.3<\/strong> If you compile the source code for PGP 2.6.3i using the -DUSA option and linking with RSAREF<\/a> (rsaglue2.c) instead of MPILIB (rsaglue1c.), you will get a version that identifies itself as PGP 2.6.3. It contains all the same bug-fixes and improvements as PGP 2.6.3i, but it will be slightly slower, and the \u00ab\u00a0legal kludge\u00a0\u00bb cannot be disabled. PGP 2.6.3 is not an official PGP version, but is still perfectly legal to use inside the USA. It is only distributed as source code<\/a>. However, some helpful individuals that have compiled it for their own use, have also made it available to the general public:
\n– MS-DOS<\/a>, by Preston Wilson
\n– Macintosh<\/a>, by Zbigniew Fiedorowicz
\nI cannot guarantee the authenticity of these compilations. On the other hand, I have no reason to believe that the source code has been tampered with, either.
\nPGP 2.6.3in<\/strong> PGP 2.6.3in is based on PGP 2.6.3i, but adds many of the features found in PGP 5.0. I don’t know much about this version, but you can find it here<\/a>.
\nPGP 3.0<\/strong> PGP 3.0 is an older name for PGP 5.0. This version took almost three years to complete, and because ViaCrypt had already released PGP version 4.0<\/a>, the name was changed from 3.0 to 5.0 before release.
\nPGP 5.0<\/strong> PGP 5.0 (formerly known as PGP 3.0) represents a new generation of PGP versions. It adds many new features not found in earlier versions, including support for other encryption algorithms than RSA and IDEA. PGP 5.0 is the first version that is fully integrated with the Windows 95\/NT and Macintosh graphical user interfaces.
\nPGP 5.0i<\/strong> PGP 5.0i is the latest international version of PGP for MS-DOS, OS\/2, Amiga, Atari and Unix. It is basically the same version as PGP 5.0, but because it was compiled from source code that was scanned and OCRed from printed books that were legally exported from the US, it is legal to use in almost any country in the world. You can download PGP 5.0i here<\/a>.
\nPGP 5.5i<\/strong> PGP 5.5i is only available for Windows 95\/NT and Macintosh.
\nPGP 6.0i<\/strong> This is the latest international PGP version for Windows 95\/98\/NT and Macintosh.<\/p>\n","protected":false},"excerpt":{"rendered":"