![[BACK]](/cvsweb/icons/back.gif){kind=icon}
Return to readme.vms CVS log ![[TXT]](/cvsweb/icons/text.gif){kind=icon}
![[DIR]](/cvsweb/icons/dir.gif){kind=icon}
Up to [PGP] / pgp / src|
Return to readme.vms CVS log | Up to [PGP] / pgp / src |
1.1 root 1: PGP/Open VMS Version 2.2
2: -------------------
3:
4: All rights to PGP are reserved by Phil Zimmermann. All contributed modules
5: are also subject to the copyrights of their individual authors, on the same
6: conditions. Certain algorithms used by PGP are subject to patent restrictions
7: and this software as a whole may be subject to export control in certain
8: countries. Read the PGP Guide for full copyright information and for details
9: about export control.
10:
11: These notes are intended for those people using and working with PGP under
12: the VAX/VMS and OpenVMS operating systems. These are intended to supplement
13: rather than replace the PGP guide. You should read and understand the guide,
14: particularly the section about key management.
15:
16: Digital in their infinite wisdom have renamed VMS as of version 5.5 to OpenVMS.
17: OpenVMS for VAX (the old VAX/VMS) has been renamed to OpenVMS/VAX and the new
18: version for their RISC processor to OpenVMS/Alpha AXP. When I refer to VMS, I
19: mean VAX/VMS version 5.3 and upwards and OpenVMS/VAX V5.5 and up. I am *not*
20: referring to OpenVMS/Alpha AXP. See the developers notes for information.
21: If you unzip under VMS using the public domain Zipper - you will probably have
22: a problem with file characteristics. If you have the PD FILE utility, you can
23: fix this by saying:
24:
25: $ FILE/type=stream *.*
26:
27: Otherwise you can fix using either TPU or CONVERT/FDL.
28:
29: PGP/VMS was written using the VAX C compiler, which you must have to
30: compile it. If you wish to use another compiler, see the developers notes.
31: PGP is provided with an MMS description file. To build using this file, go
32: to the directory containing the uncompressed files and type the following:
33:
34: $ MMS
35:
36: You may wish to delete the object files at this point, they are not needed
37: unless you are working on the code. To build a version under the VAX/VMS
38: debugger, define the DCL symbol PGP_DEBUG=1. The debugger version will be
39: built without any optimisation and will be *significantly* slower.
40:
41: If you do not have MMS you may execute the DCL supplied command procedure
42: VMSBUILD.COM to compile and link PGP.
43:
44: Once you have built PGP, it should be placed somewhere that is protected
45: against tampering. It is not impossible that someone may replace PGP.EXE
46: with a patched version designed to capture keys. You may wish to use the
47: CHECKSUM utility (CHECKSUM/IMAGE PGP.EXE) to control against modifications,
48: however CHECKSUM does not use very effective algorithms and may itself be
49: compromised.
50:
51: You should then use PGP by defining it as an "external command" in your
52: LOGIN.COM, or alternative the system wide login command procedure, SYLOGIN.
53: This is done simply with the following line of DCL:
54:
55: $ PGP:==$device:[directory]PGP
56:
57: After executing this line (remember the dollar sign before the device name),
58: you should be able to display a help text by typing:
59:
60: $ PGP
61:
62: PGP will want to retain the keyrings and some other information. These are
63: stored in the device and directory pointed to by the logical name PGPPATH.
64: You should copy the files LANGUAGE.TXT and CONFIG.TXT to this directory.
65:
66: Your secret keyring contains information that could be cryptographically
67: analysed - it must be protected against world access. However, your secret key
68: ring is encrypted so is protected against casual browsing. If anyone that you
69: can not trust has privileged access to your system, your plaintext files are
70: vulnerable and potentially, also your keyrings.
71:
72: Note that keyrings should be directly transportable between VMS, MSDOS
73: and other PGP implementations. Text files may not be portable because of the
74: different text record representations across operating systems. If you wish
75: to send a text file to a system other than VAX/VMS, you are recommended to
76: use the 'canonical-form' switch '-t'.
77:
78: If you wish to take binary files such as backup savesets between two systems
79: running VMS, you can use the special flag 'i' with the encrypt function to
80: preserve the file and record characteristics. When decrypting, PGP will read
81: the 'i' flag and the type of the system that created the file. If both systems
82: are VMS, the file will be correctly decrypted with the correct file
83: characteristics.
84:
85: Developers Notes
86: ----------------
87:
88: There are two key conditionals throughout the source for the VAX/VMS
89: implementation:
90:
91: VAXC - Allows specific optimisations permitted by the VAX C compiler and
92: overcomes problems with the differences between VAX C and ANSII C.
93:
94: VMS - This allows VMS specific file handling and some optimisations. It
95: should be noted that the primitives do not work with
96: OpenVMS/Alpha AXP until someone has done some work on porting VAX.MAR.
97: Other RISC implementations have always shown disappointing performance
98: when relying on C alone.
99:
100: There was also some preliminary work done on porting this to GNU C and indeed
101: an earlier (developers) version ran under GNU C. The code affected is usually
102: conditionalised with GCC. If someone wishes to complete this and (hopefully)
103: integrate the inline assembler stuff used for moves and zero-fills, this
104: would be very useful.
105:
106: All optimizations were checked out using DEC's PCA, and this version appears
107: to be optimal under VAX C.
108:
109: As for cleaning up, there are verious areas which could be improved:
110:
111: 1) PGP's own erase on delete could be replaced by the standard VMS
112: function so the file system does the work.
113: 2) PGP spends a long time moving data between temporary files. This
114: should be reduced where possible.
115: 3) We need an Open VMS/Alpha AXP version of PGP. This code has never
116: faced DEC C but it is reputably more ANSII compilant. The VAX.MAR
117: stuff should go through the MACRO-32 translator. Please advise me
118: if you have time to spare to make an Alpha port.
119: 4) I have never tried this stuff with VMS POSIX. The combination of VMS
120: and VAX C but with a Unix-like file system will blow the existing code
121: unless it is correctly conditionalised.
122:
123: 2) The random number generation uses a polling loop from the keyboard
124: which is neither nice nor necessary. A better approach would be to do
125: single character I/Os and fetch the system clock after each
126: character.
127:
128: Contributing Authors
129: --------------------
130:
131: This port was originally performed by Hugh Kennedy with assistance from
132: Mark Barsoum and others.
133:
134: Support
135: -------
136:
137: This software is provided in the public domain and without charge other than
138: for copying. For support issues concerning PGP and VAX/VMS, you are welcome
139: to contact me via Electronic Mail on Compuserve using ID 70042,710 and on the
140: Internet with [email protected]. This software is provided "as-is" and
141: any support given will be of an informal nature.
142:
143: Hugh A.J. Kennedy, 17th November 1992
This archive runs on limited infrastructure. Preserving old code on modern bandwidth. Automated agents are requested to crawl responsibly.