1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
|
TkPGP README
============
TkPGP is a Tcl/Tk script that serves as a GUI shell for
PGP or GnuPG crypto software (which you have to get from
elsewhere due to export restrictions, see links below).
TkPGP intends to completely eliminate need to access command-
line interface of PGP for UNIX. Currently most of casual
activity such as signing, encrypting and decrypting is done
in GUI. Key management remains a domain of command line for
the time being.
REQUIREMENTS
------------
Operating system:
TkPGP runs on my Linux RH 6.1 (kernel 2.2.12). It should also work on
other UNIX systems and Windows 95/98/NT (though PGP on Windows is
already done in GUI). The installation Makefile should run only on
UNIX, but manual installation is possible on other systems.
Additional software:
Tcl/Tk is required. I use version 8.0 which came on my RedHat
CD. Tcl/Tk is unconditionally installed because it is used for system
tasks as well. No optional packages are required at the moment, though
I may wish to employ some nice GUI controls later on.
TkPGP is not very useful without the crypto software. You
can get PGP from usual sources, such as:
http://www.pgp.com (USA, Canada)
http://www.pgpi.com (rest of the planet)
GnuPG can be obtained from
http://www.gnupg.org
or at your friendly neighborhood GNU mirror.
CONTACTS
--------
I can be reached as tftp@yahoo.com.
INSTALLATION
------------
See file INSTALL.
CONFIGURATION
-------------
TkPGP has its own configuration tool (button "Settings").
Configuration is automatically saved when you exit TkPGP.
NOTE: If you don't use "Close" button but instead close
the window from Window Manager or by kill'ing it, the
configuration will NOT be saved. I consider this to be a
useful feature (misbug).
TkPGP keeps its configuration in file called .tkpgp in
your $HOME directory. You do not need to edit this file
manually (unless you know Tcl and need to administer
the system remotely).
RUNNING TkPGP
-------------
If you use GNOME or KDE, the TkPGP icon is in the main menu
under "Applications".
If your shell understands #! comments and if you have 'wish'
(Tcl/Tk shell) in /usr/bin then you can run TkPGP directly
(assuming that /usr/local/bin is in your $PATH):
$ tkpgp
Otherwise find where your 'wish' binary is located and run as follows:
$ /very/strange/place/wish tkpgp
COMMAND LINE PARAMETERS AND OPTIONS
-----------------------------------
Only one command line parameter is supported - optional file name:
$ tkpgp foobar.txt
This file will be opened, read, its contents loaded into the integrated
editor of TkPGP. Then user can edit the file as necessary, presumably
perform some crypto procedures such as encryption, and then leave TkPGP
(using button "Close"). The file will be saved with new contents. There
may be a warning question asking for confirmation of that; this confirmation
can be disabled in "Settings" | "Text".
This feature allows TkPGP to be configured as alternate editor for PINE
and other mail user agents that support external editor. However Netscape
does not allow that, so you still have to use clipboard to copy data back
and forth if you use Netscape Messenger.
SECURITY CONSIDERATIONS
-----------------------
TkPGP does not save your PGP passphrase in any non-volatile storage.
However it may be occasionally written into swap file. This exploit is
very remotely possible but one would need root privileges on the system.
In any case, if you are worried you can always disable the passphrase in
TkPGP and rely upon PGP or GnuPG to secure your passphrase (they do it
reasonably well). If you still feel insecure, probably your data should
not be stored on computer in first place :)
TkPGP does not manage the passphrase when it is configured to work with
GnuPG. This is because GnuPG uses and, actually, enforces quite secure
passphrase interface. The Tcl language (which TkPGP is written in) has
some difficulties accessing this interface. Therefore I can not feed the
passphrase into GnuPG at the moment. This is to be done in future releases.
At this time GnuPG has to be run in a shell (which is recommended for both
PGP and GnuPG anyway), and user will enter passphrase directly into GnuPG
when (and if) it is required. All passphrase-related features of TkPGP
itself (such as timer) are deactivated in GnuPG mode.
LICENSING AND WARRANTY
----------------------
This program is free software; you can redistribute it and/or
modify it under the terms of the GNU General Public License
as published by the Free Software Foundation; either version 2
of the License, or (at your option) any later version.
This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
You should have received a copy of the GNU General Public License
along with this program; if not, write to the Free Software
Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
You also can find a copy of the GNU General Public License on GNU
Web site(s) such as http://www.gnu.org and its mirrors.
$Revision: 1.4 $
|
