* File Encryption with WireGuard
@ 2017-12-05 14:36 Mytril
2017-12-05 14:48 ` Ferris Ellis
0 siblings, 1 reply; 3+ messages in thread
From: Mytril @ 2017-12-05 14:36 UTC (permalink / raw)
To: WireGuard mailing list
Hello,
could it be possible, to encrypt files with WireGuard, copy it to an usb
stick and decrypt it on another computer?
I knew it is not what WireGuard was designed for. But could it be done?
PS: See also RFC 1149 :D No not really
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: File Encryption with WireGuard
2017-12-05 14:36 File Encryption with WireGuard Mytril
@ 2017-12-05 14:48 ` Ferris Ellis
2017-12-05 14:51 ` Jason A. Donenfeld
0 siblings, 1 reply; 3+ messages in thread
From: Ferris Ellis @ 2017-12-05 14:48 UTC (permalink / raw)
To: Mytril; +Cc: WireGuard mailing list
[-- Attachment #1: Type: text/plain, Size: 1099 bytes --]
Hi Mytril,
From my understanding of WireGuard (others on the mailing list feel free to correct me):
1. This is not in any way a function WireGuard offers nor related to the projects goals.
2. If you had another program which used Curve25519 keys it could theoretically use the keys from two WireGuard clients, but that’s outside the scope of WireGuard and also likely not a very secure practice.
Perhaps you should look into using GPG for this. Here’s the documentation page on encrypting and decrypting documents using GPG:
https://www.gnupg.org/gph/en/manual/x110.html
Cheers,
Ferris
> On Dec 5, 2017, at 9:36 AM, Mytril <mytril42@posteo.de> wrote:
>
> Hello,
>
> could it be possible, to encrypt files with WireGuard, copy it to an usb
> stick and decrypt it on another computer?
>
> I knew it is not what WireGuard was designed for. But could it be done?
>
> PS: See also RFC 1149 :D No not really
> _______________________________________________
> WireGuard mailing list
> WireGuard@lists.zx2c4.com
> https://lists.zx2c4.com/mailman/listinfo/wireguard
[-- Attachment #2: Type: text/html, Size: 1766 bytes --]
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: File Encryption with WireGuard
2017-12-05 14:48 ` Ferris Ellis
@ 2017-12-05 14:51 ` Jason A. Donenfeld
0 siblings, 0 replies; 3+ messages in thread
From: Jason A. Donenfeld @ 2017-12-05 14:51 UTC (permalink / raw)
To: Ferris Ellis; +Cc: WireGuard mailing list
On Tue, Dec 5, 2017 at 3:48 PM, Ferris Ellis <ferris@ferrisellis.com> wrote=
:
> 2. If you had another program which used Curve25519 keys it could
> theoretically use the keys from two WireGuard clients, but that=E2=80=99s=
outside
> the scope of WireGuard and also likely not a very secure practice.
Nobody should be reusing WireGuard's pubkeys for other purposes,
unless they can prove (with our open source Tamarin model [1],
perhaps) that it won't weaken WireGuard's security properties.
Usually key reuse by the untrained hand results in disasters.
[1] https://git.zx2c4.com/wireguard-tamarin/
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2017-12-05 14:44 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2017-12-05 14:36 File Encryption with WireGuard Mytril
2017-12-05 14:48 ` Ferris Ellis
2017-12-05 14:51 ` Jason A. Donenfeld
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).