PGP Signed Messages

From: [Segmen] (dontpanic999@yahoo.com)
Date: 10/15/01


Message-ID: <002201c1558e$4ca3ba40$0100007f@localhost>
From: "[Segmen]" <dontpanic999@yahoo.com>
To: <vuln-dev@securityfocus.com>, <bugtraq@securityfocus.com>
Subject: PGP Signed Messages
Date: Mon, 15 Oct 2001 16:27:33 +0100

It occurred to me today what a bad idea the Comment Field is in PGP signed
messages. Altering the Comment filed does not affect the validity of the
signature, but to the non experienced PGP/GPG user it certainly appears to
be part of the message.

Example :

A generic message I could have got hold of :

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hello, meeting cancelled, speak to you soon.

-----BEGIN PGP SIGNATURE-----
Version: PGP 7.0.4

iQA/AwUBO8r9v9nrfc+JfUO6EQLrEACgv6+C07aWgAO+Dna0MHgEDaoDMxEAoJ2P
7gojqeCRqKqTkbFMkHCToxtq
=lki3
-----END PGP SIGNATURE-----

I could change this to :

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hello, meeting cancelled, speak to you soon.

-----BEGIN PGP SIGNATURE-----
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Please Send the Confidential Files from the planned meeting to
My colleague Instead at me@host.com . He will now be dealing with
this matter.
Speak to you soon, victim.

-----BEGIN PGP SIGNATURE-----
Version: PGP 7.0.3

iQA/AwUBO8r9v9nrfc+JfUO6EQLrEACgv6+C07aWgAO+Dna0MHgEDaoDMxEAoJ2P
7gojqeCRqKqTkbFMkHCToxtq
=lki3
-----END PGP SIGNATURE-----

well, you get the idea. The signature is still valid.

Agreed that only the beginner crypto user would fall for this, but if they
were to read the message and then just use PGP to check the validity, they
could be tricked into believing that the extra lines were part of the
verified message.
Does anybody else think this is quite a bad idea?

--
PGP Key ID : 0x897D43BA
SDF Public Access UNIX System - http://sdf.lonestar.org
UKChat - http://www.ukchat.com

_________________________________________________________ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com



Relevant Pages

  • Re: Pipnet Reaming Kit
    ... Hash: SHA1 ... Version: PGP 8.0.2 - not licensed for commercial use: www.pgp.com ... =VWhi ...
    (alt.smokers.pipes)
  • Re: Pipnet Reaming Kit
    ... Hash: SHA1 ... Version: PGP 8.0.2 - not licensed for commercial use: www.pgp.com ... =VWhi ...
    (alt.smokers.pipes)
  • Re: Pipnet Reaming Kit
    ... Hash: SHA1 ... Version: PGP 8.0.2 - not licensed for commercial use: www.pgp.com ... =VWhi ...
    (alt.smokers.pipes)
  • Re: Pipnet Reaming Kit
    ... Hash: SHA1 ... Version: PGP 8.0.2 - not licensed for commercial use: www.pgp.com ... =VWhi ...
    (alt.smokers.pipes)
  • Re: help with coded message
    ... > Hash: SHA1 ... > Version: PGP 8.1 ... >> Iraqi weapons of mass destruction, so it is a valid OTP. ...
    (sci.crypt)