What's New in PGP Desktop Security Version 6.5.1
for Windows 95, Windows 98, and Windows NT
Copyright (c) 1999 by Network Associates
Technology, Inc., and its Affiliated Companies.
All Rights Reserved.
Thank you for using Network Associates' products. This What's New file contains important information regarding PGP Desktop Security. Network Associates strongly recommends that you read this entire document. Network Associates welcomes your comments and suggestions. Please use the information provided in this file to contact us. Warning: Export of this software may be restricted by the U.S. Government.
WHAT'S IN THIS FILE
- New Features
- System Requirements
- Known Issues
- Year 2000 Compliance
- Contacting Network Associates
NEW FEATURES IN 6.5.1
PGPnet. PGPnet is a landmark product in the history of PGP. PGPnet secures all TCP/IP communications between itself and any other machine running PGPnet. It is also highly interoperable with the Gauntlet GVPN firewall/gateway product family providing a complete solution for corporate remote access VPNs using the industry standard IPSec (Internet Protocol Security) and IKE (Internet Key Exchange) protocols. PGPnet has been successfully tested with Cisco routers(requires Cisco IOS 12.0(4) or later with IPSec TripleDES), Linux FreeS/WAN, and many others. PGPnet is also the first IPSec product to fully support the use of OpenPGP keys for authentication in addition to X.509.
Self-Decrypting Archives. You may now encrypt files or folders into Self-Decrypting Archives (SDA) which can be used by users who do not even have PGP. The archives are completely independent of any application, compressed and protected by PGP's strong cryptography.
X.509 Certificate and CA Support. PGP is now able to interoperate with the X.509 certificate format. This is the format used by most web browsers for securing the transfer of web pages. PGP supports the request of certificates from Network Associates' Net Tools PKI, VeriSign's OnSite, and Entrust certificate authorities. X.509 certificates are analogous to a PGP signature, so you can even request X.509 certificates on your existing PGP key. This feature can also be used to interoperate with existing VPN solutions based on X.509.
Integrated PGP Command Line. This version incorporates the popular command line version of PGP for Windows platforms. This product provides you a convenient way to integrate PGP with other Windows applications and automated processes on your desktop system. Please note that this is intended for single user/workstation use. For use on servers, customers are required to purchase the PGP Command Line/Batch Server product. Please contact your local Network Associates Sales representative for more information.
Automated Freespace Wiping. PGP's Freespace Wipe feature now allows you to use the Windows Task Scheduler to schedule periodic secure wiping of the freespace on your disk.
Hotkeys. The Use Current Window feature has been significantly enhanced by the addition of Hotkeys. By pressing the configured key combination, the Encrypt/Decrypt/Sign functions can be automatically invoked in zero clicks without using PGPtray.
Fingerprint Word List. When verifying a PGP public key fingerprint, you can now choose to view the fingerprint as a word list instead of hexadecimal characters. The word list in the fingerprint text box is made up of special authentication words that PGP uses and are carefully selected to be phonetically distinct and easy to understand without phonetic ambiguity.
Support for Outlook 2000 and Outlook Express 5.0. This version of PGP adds support for sending and receiving encrypted e-mail in Microsoft Outlook 2000 and Outlook Express 5.0.
HTTP Proxy Support. If you are behind a corporate firewall with an HTTP proxy server, PGP now supports accessing HTTP keyservers through the proxy. To use this feature, you must configure the proxy server address in your Internet Explorer preferences.
Smart Word Wrapping. The word wrapping in PGP now automatically rewraps paragraphs and even quoted paragraphs resulting in much cleaner signed messages.
Also included with this release are the following manuals, which can be viewed on-line as well as printed:
- Introduction to Cryptography
- PGP Administrator's Guide
- PGP Installation Guide
- PGP User's Guide
Each document is saved in Adobe Acrobat Portable Document Format (.PDF). You can view and print these documents with Adobe's Acrobat Reader. PDF files can include hypertext links and other navigation features to assist you in finding answers to questions about your Network Associates product.
To download Adobe Acrobat Reader from the World Wide Web, visit Adobe's Web site at: http://www.adobe.com/prodindex/acrobat/readstep.html
This release also includes integrated online help in Microsoft Windows Help format:
- PGP online help
- PGPdisk online help
- PGPnet online help
Documentation feedback is welcome. Send email to [email protected] .
To install PGP on a Windows 95, 98, or NT system, you must have:
Windows 95, 98, or NT 4.0 with Service Pack 3/4/5
32 MB RAM
16 MB hard disk space for the Client install
If you plan to run PGPnet on the system, you must also have:
- Microsoft TCP/IP
- A compatible LAN/WAN network adapter
Note: PGPnet functionality is not available for users of Windows 95a (the original release of Windows 95). PGPnet supports Windows 95b (OSR2), Windows 98 and Windows NT 4.0.
The maximum size for RSA keys is 2048 bits. This is due to limitations in the RSA libraries and our desire to remain backward-compatible with previous versions of PGP. (Some previous versions of PGP did function with large RSA keys, but creation of these keys has never been supported.)
Mismatching your keyring files can result in data loss. Your public keyring file and private keyring file must be kept in sync. If, for instance, you select a public keyring file that does not contain the public portion of your private key and do not also change the private keyring to the corresponding file, you and others will not be able to encrypt to exported versions of your key after that time. In most cases, simply updating your key from a public copy on a keyserver will fix this. However, it is recommended that the keyring files always be kept in sync. A future version is expected to correct this issue.
Using a Split Key as a public key for PGPdisk will not allow reconstitution of the key through the usual dialog provided for reconstituting split keys. To use such a key to open a PGPdisk, you must first rejoin the key in PGPkeys.
Some PGP Versions 6.0 and later features are incompatible with previous versions of PGP, so we feature a "compatible" export format that strips incompatible features such as Photo IDs and X.509 certificates from keys. Selecting "Include 6.X Extensions" in the Export dialog enables these features to be exported. By default, we export in compatible mode. You may change the default in the Advanced preferences dialog. When sending a key to a PGP Certificate Server Version 2.0 or above, Photo IDs always accompany the key. The default LDAP server in PGP 6.x supports this.
Sometimes, after a PGPdisk volume is unmounted and placed in the Recycle Bin and the Bin is emptied, Windows reports that the drive letter associated with the PGPdisk volume is no longer accessible. This behavior should cease after the system is rebooted. This will not interfere with the normal operation of your system.
On Windows 95/98, the Free Space Wiper will reset every time another program writes to your disk while the wiping process is in progress. This is similar to defragmentation programs, and is required by the Operating System. For optimal wiping, make sure to close all open applications. On some systems with very low amounts of RAM, it may be advisable to also shutdown Windows Explorer.
The Windows Explorer provides PGP with information only about the target of a shortcut and not the shortcut itself. If you use the Wipe feature in the Explorer, the shortcut itself will not be wiped. The actual target will be wiped. When using PGPtools, the shortcut will also be wiped.
Hotkeys are for use with applications that support general text editing. Using Hotkeys with some applications may result in unpredictable behavior.
Hard disk utilities (such as ScanDisk) or programs that monitor the hard disk will not run on a drive on which a PGPdisk volume is mounted. This is to insure that the PGPdisk volume does not become corrupted. To use your hard disk utilities, unmount all PGPdisk volumes on the drive on which you wish to use the utilities.
PGPdisk volumes accessed using an Additional Decryption Key open with permissions set as follows: FAT volumes open with permissions set to read-only; NTFS volumes open with permissions set to read/write.
(Windows 98 only) If you create a PGPdisk which you plan to immediately copy to a different drive, we recommend that you reboot before doing so to make sure everything is written correctly. This is only a potential issue just after the creation of the PGPdisk, and is due to a Windows 98 disk caching bug.
Versions of PGP later than 5.0 do not support using Microsoft Word as an email editor.
We strongly recommend that VirusScan users upgrade to the latest version of VirusScan to take advantage of the newest virus DAT file update features.
- Do not attempt to manually uninstall PGPnet. It is very important that you use the PGP Uninstaller to remove PGPnet. PGPnet makes extensive modifications to the registry and changes the bindings on network adapters. The PGP Uninstaller can be accessed via the Add/Remove Programs control panel.
- [Windows NT only]
As a precautionary measure, in the unusual event that there is a incompatibility between your network card driver and PGPnet, you can create a "No Networking" hardware profile prior to installing PGPnet on your system. The "No Networking" hardware profile can be used later if an incompatibility occurs.
To create a "No Networking" hardware profile, right click on "My Computer," select Properties, and then select the Hardware Profiles tab. Use the Copy button to create a copy of the Original Configuration. Get Properties on your copied configuration and click the Network tab. Finally, select the "Network-disabled hardware profile" checkbox. Click OK to both windows and then you are done. (Due to a Windows bug we recommend that you restart once and double-check that the "No Networking" configuration is working before you install PGPnet.)
- [Windows 95 only]
You may experience a loss of networking after resuming from standby mode. You must reboot your machine to resume network activity.
- PGPnet 6.5.1 is not compatible with the Intel EtherExpress 16 driver.
YEAR 2000 COMPLIANCE
Information regarding NAI products that are Year 2000 compliant and its Year 2000 standards and testing models may be obtained from NAIís website at http://www.nai.com/y2k.
For further information, email [email protected] .
CONTACTING NETWORK ASSOCIATES
FOR QUESTIONS, ORDERS, PROBLEMS, OR COMMENTS
Contact the Network Associates Customer Care department:
Phone (408) 988-3832 Monday-Friday, 6:00 A.M. - 6:00 P.M. Pacific time
Fax (408) 970-9727 24-hour, Group III Fax
Send correspondence to the following Network Associates location:
Network Associates Corporate Headquarters
3965 Freedom Circle
Santa Clara, CA
Phone numbers for corporate-licensed customers:
Phone: (408) 988-3832
Fax: (408) 970-9727
Phone numbers for retail-licensed customers:
Phone: (972) 278-6100
Fax: (408) 970-9727
Or, you can receive online assistance through any of the following resources:
To provide the answers you need quickly and efficiently, the Network Associates technical support staff needs some information about your computer and your software.
Please have this information ready when you call:
Program name and version number
- Computer brand and model
- Any additional hardware or peripherals connected to your computer
- Operating system type and version numbers
- Network name, operating system, and version
- Network card installed, where applicable
- Modem manufacturer, model, and speed, where applicable
- Relevant browsers or applications and their version numbers, where applicable
- How to reproduce your problem: when it occurs, whether you can reproduce it regularly, and under what conditions
- Information needed to contact you by voice, fax, or e-mail
We also seek and appreciate general feedback.
FOR PRODUCT UPGRADES
To make it easier for you to receive and use Network Associates products, we have established a reseller's program to provide service, sales, and support for our products worldwide. For a listing of resellers, see the resellers.txt file or contact Network Associates Customer Care for resellers near you.
FOR REPORTING PROBLEMS
Network Associates prides itself on delivering a high-quality product. If you find any problems, please take a moment to review the contents of this file. If the problem you've encountered is documented, there is no need to report the problem to Network Associates. If you find any feature that does not appear to function properly on your system, or if you believe an application would benefit greatly from enhancement, please contact Network Associates with your suggestions or concerns.
FOR ON-SITE TRAINING INFORMATION
Contact Network Associates Customer Service at (800) 338-8754.
NETWORK ASSOCIATES BETA SITE
Get pre-release software, including .DAT files, through http://beta.nai.com. You will have access to Public Beta and External Test Areas. Your feedback
will make a difference.