| Thank you for using Network Associates' products. This What's New file
contains important information regarding PGP Command Line Freeware. Network
Associates strongly recommends that you read this entire document.
Network Associates welcomes your comments and suggestions. Please use the information provided in this file to contact us. Note: PGP freeware products are for non-commercial use only. Please refer to the included license agreement for terms and conditions of use. Note: Network Associates does not provide technical support for PGP freeware products. Warning: Export of this software may be restricted by the U.S. Government.
WHAT'S IN THIS FILE Functionality Overview
The PGPrepair tool was designed to help PGP customers scan existing PGP keyrings for keys that have been tampered with. This tool examines a PGP keyring file and searches it for unhashed signature packets that contain Additional Decryption Keys (ADKs) or other inappropriate packets. This tool can optionally remove all signatures (containing offending packets) from keys on the keyring, thus cleansing the keyring of these issues. The PGPrepair tool is designed to repair keyrings created and/or used by PGP versions 2.6.2 and above. It can be applied to personal keyrings or to large keyserver keyrings to determine if they contain any keys with tampered signatures that contain offending packets. For more information about the security issue this tool addresses (referred to as the PGP ADK Security Advisory), please visit www.pgp.com.
To install the PGPrepair tool, you must have one of the following platforms:
To install on a Windows system:
The PGPrepair tool must be run from a command prompt. The tool usage is as follows:
Where input_file is your PGP keyring file name, commonly known as pubring.pkr, and output_file is the file where you want to write the repaired keyring. Note: You must specify an output file to remove tampered signatures that contain offending packets. If only an input file is specified: PGPrepair scans your keyring for signatures that have been tampered with (containing offending packets), but does not remove the tampered signatures from the keyring. While scanning, each UserID in your keyring displays. If a signature that has been tampered with is found, then one of the following messages is also displayed:
If both an input file and an output file are specified: PGPrepair scans your keyring for signatures that have been tampered with (containing offending packets), and writes the original keyring to the specified output file with the tampered signatures removed. The UserIDs and messages do not display.
Note: Network Associates does not provide technical support for PGP freeware products. To purchase a commercial version of PGP, please contact the Network Associates Customer Service department between 8:00 A.M. and 8:00 P.M., Central Time, Monday through Friday, at:
Network Associates Customer Service
Phone: (972) 308-9960
|