Latest news

Here you will find important announcement about PGP and the PGPi Home Page, as well as general crypto news. If you want to be notified of any changes to this page, you can register it with Mind-it or a similar service.

If you have a news tip, please send it to news@pgpi.didisoft.com.


[15 Oct 2001] NAI to sell PGP division
NAI has announced that it will discontinue PGP development and sell its PGP Security division. Read more in WiredNews and ExtremeTech.

[24 Sep 2001] PRZ: No regrets about developing PGP
Phil Zimmermann has posted a reply to an article that was published in the Washington Post regarding PGP and the September 11th terrorist attacks.

[7 Sep 2001] NAI releases source code for PGPsdk
NAI has released the source code for PGPsdk 2.1.1 for peer review. It can be downloaded here.

[5 Sep 2001] Multiple user ID vulnerability
A vulnerability in PGP’s display of key validity has been discovered that could allow an attacker to fool users into thinking that a valid signature was created by what is actually an invalid user ID. The attack was discovered by Sieuwert van Otterloo, and works on all PGP 5.x, 6.x and 7.x versions. NAI has already released a hotfix that corrects the problem for the latest freeware and commercial PGP versions. See the original report and NAI’s advisory.

[6 Jun 2001] PRZ marks PGP’s 10th anniversary
Today is the 10th anniversary of the release of PGP 1.0. Phil Zimmermann sent this mail to the PGP Users Mailing List.

[1 Jun 2001] GnuPG 1.0.6 released
Version 1.0.6 of the GNU Privacy Guard is now available for download. This is a maintenance release that fixes a number of bugs.

[20 Apr 2001] PGP 7.0.3 Hotfix 1 available
This hotfix corrects a bug in the Windows version of PGP 7.0.3 which made it possible for an attacker to create a .sig file containing a DLL and trick PGP into loading this DLL instead of the system DLL. This hotfix will force the PGP component DLLs to always load from the directory they were installed in. Additionally, it will force a “Save As” dialog for any extracted files with a .dll, .sys, or .vxd extension.

[24 Mar 2001] Security flaw in OpenPGP key format
A Czech information security firm has found a security flaw in the OpenPGP key format, as used by PGP, GnuPG and other PGP implemenations. The flaw makes it possible for an attacker to forge a PGP signature if he/she can get hold of your private key, even if he/she doesn’t know the pass phrase. For more information, see the press release, the technical paper and this Wired article.

[19 Feb 2001] Phil Zimmermann quits NAI
Phil Zimmermann has published a statement regarding his departure from NAI.

[03 Feb 2001] PGP 7.0.3 released
PGP 7.0 is finally available as freeware: Windows 9x/NT/2000 and MacOS.

[17 Oct 2000] GnuPG 1.0.4 released
Version 1.0.4 of the GNU Privacy Guard is now available for download. This is a security update which fixes a serious bug which could lead to false signature verification results when more than one signature is fed to gpg.

[24 Sep 2000] PGP 6.5.8 source code available for download
The full source code for PGP 6.5.8 is now available for Windows 9x/NT/2000, MacOS and Unix.

[10 Sep 2000] PGP 7.0 released
NAI has released PGP Desktop Security 7.0 for Windows and MacOS. This is a commercial release. A freeware version is expected soon. Stay tuned…

[2 Sep 2000] PGP 6.5.8 command line available for download
PGP 6.5.8 command line is now available for Windows NT/2000 and for various Unix platforms.

[30 Aug 2000] Phil Zimmermann’s statement on the ADK bug
Philip R. Zimmermann, creator of PGP, has written a statement about the ADK bug recently discovered in PGP. The statement is available here and may be freely distributed, posted in newsgroups, etc.

[25 Aug 2000] PGP 6.5.8 available for download
PGP 6.5.8 has just been released, and is available for download now (Windows & Macintosh). This release fixes a nasty bug in PGP 5.5.x and 6.x regarding the ADK (Additional Decryption Key) feature. For more information on the ADK bug, see the CERT advisory and the security advisory from NAI.

[12 Jul 2000] GnuPG 1.0.2 released
Version 1.0.2 of the GNU Privacy Guard is now available for download.

[10 Feb 2000] New mirror site opened in Hungary
A new mirror site is operational in Hungary.

[5 Feb 2000] PGPi FAQ updated
I’ve updated the PGPi FAQ to reflect the new export rules and the 6.5.3 release.

[31 Jan 2000] PGP 6.5.3 available for download
PGP 6.5.3 was released a few days ago, and is now available for download here. This is a maintenance release for Windows only.

[13 Dec 1999] US Government grants NAI export license for PGP
Network Associates, Inc. today announced that it has been granted a full license by the U.S. Government to export PGP world-wide, ending a decades-old ban on the export of strong encryption products. The license, effective immediately, marks the end of the PGPi scanning and OCR project, which started with PGP 5.0i in 1997. For more information, see NAI’s press release and this report in InfoWorld.

[19 Nov 1999] German Government funds GPG development
The German Government has issued a DM 250,000 grant to the GNU Privacy Guard (GPG) project. The grant will help the GPG team develop for more platforms and develop easy to use interfaces and APIs. More information in Heise Online (in German) and NY Times (registration required).

[11 Nov 1999] PGPfone 2.1 available for download
PGPfone 2.1 is now available for Windows (source code + precompiled binary) and Macintosh (source code only). You can find both versions here.

[7 Nov 1999] PGP 6.5.2a available for download
PGP 6.5.2a is now available for download outside the USA. The program was uploaded to a European FTP server just hours after its release in the USA. PGP 6.5.2a is available for Windows 95/98/NT and MacOS.

[5 Nov 1999] PGP 6.5.1int for Macintosh available for download
PGP 6.5.1int for Macintosh is now available for download. This build was done by cn lab in Switzerland, and only runs on PPC.

[4 Nov 1999] PGP 6.5.2a released by NAI
NAI today released version 6.5.2a of PGP. This version fixes a number of bugs in PGP 6.5.1, and adds support for Windows 2000 and MacOS 9.0. Here is the announcement.

[1 Nov 1999] PGPfone announcement by Phil Zimmermann
Philip R. Zimmermann, creator of PGP, today published an announcement about the status of PGPfone. Anyone who wants to do any development work to make improvements to PGPfone should contact Phil directly.

[31 Oct 1999] PGP 6.5.1i beta-2 for Unix released
A new beta version of PGP 6.5.1i for Unix is available now (beta-2). This version has been sucessfully compiled and used on various Linux platforms. Feedback and patches for other platforms are welcome at unix@pgpi.didisoft.com.

[22 Oct 1999] PGP 6.5.1i available for download
PGP 6.5.1i has been available by FTP for some time now, and today I’ve updated the site with links to the new Windows version. Binaries for MacOS and other platforms will appear shortly. Please note that the Unix version is still in beta, and should only be used by people who want to experiment with the latest version. Feedback and patches for the Unix version are welcome at unix@pgpi.didisoft.com.

[29 Sep 1999] New mirror site opened in Czech Republic
A new mirror site is operational in the Czech Republic.

[28 Sep 1999] PGPi Home Page gets one million hits in a month
In September pgpi.didisoft.com reached the magic limit of one million pages served in a single month. And that’s only the main site, not counting the various mirrors. During the last 3 months, people from 166 different nations have visited these pages. Thank you all for making this site what it is today!

[23 Sep 1999] PGP 6.5.1 source code scanning completed
The PGP 6.5.1 source code has now been completely scanned and proofread, and work is currently going on to create an international version: PGP 6.5.1i. It will run on Windows, MacOS and all flavours of Unix. Ports to MS-DOS, Amiga and OS/2 will also certainly appear.

[16 Sep 1999] USA lifts export controls on crypto
Today several news sources reported that the US Government plans to relax the export regulations on cryptographic software. This is very good news indeed for all users of PGP, and it could mean that PGP 6.5.1i will be the last internationl PGP version that will be scanned from a book. CNN and Wired have the full story.

[14 Sep 1999] Mail Essentials with PGP support
I’ve added a new PGP compatible program to the tools section. Mail Essentials for Exchange/SMTP enables companies to integrate PGP directly on the mail server, eliminating the need to install PGP on each client machine.

[27 Aug 1999] New mirror site opened in Italy
A new mirror site is operational in Italy.

[11 Aug 1999] www.pgpi.com down for several days
The domain name pgpi.com has been inaccessible for several days now. The problem is due to InterNIC’s failure to record our renewal payment for the domain, which was done two months ago(!). I’ve been trying to contact InterNIC and have them fix the problem, but to no avail. I’ve now paid for the domain name a second time, in the hope that it will be online soon, and that we can get a refund later. Until the matter is resolved, please use pgpi.didisoft.com or www.pgpi.net instead.

[5 Aug 1999] New mirror site opened in Portugal
A new mirror site is operational in Portugal. I’ve also added a link directly to the mirror page from the front page.

[13 Jun 1999] PGPi Home Page opens for banner advertisments
The International PGP Home Page now accepts advertisements, in order to raise money for the PGPi project. By clicking on the banner at the bottom of this page, you support the PGPi project.


PGPi Home > News ]