[openssl-users] OpenSSL vs GPG for encrypting files? Security best practices?

Nicholas Papadonis nick.papadonis.ml at gmail.com
Sun Nov 4 23:35:44 UTC 2018


On Sat, Nov 3, 2018 at 5:56 PM Bear Giles <bgiles at coyotesong.com> wrote:

> > I'm considering encrypting a tar archive and optionally a block file
> system (via FUSE) using either utility
> Linux has good support for encrypted filesystems. Google LUKS.

> BTW a tar file starts with the name of the first entry. The 'magic
> numbers' are at offset 128 or so. However a compressed tar file will start
> with a known value since gzip, b2zip, and 7zip?, all start with their magic
> values.

Does tar placing known data at a certain offset increase the probability
that someone can perform an attack easier?  They may already know the data
to decrypt at that offset and if the encrypted block overlaps, then the
attack is easier.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20181104/6f181c07/attachment.html>

More information about the openssl-users mailing list