PGP® 8.1.0 for Windows Release Notes
Copyright © 19912004 by PGP Corporation. All Rights Reserved.
PGP is a registered trademark of PGP Corporation.
Thank you for using this PGP Corporation product. These Release Notes contain important information regarding the release of PGP 8.1.0 for Windows. PGP Corporation strongly recommends you read this entire document.
PGP Corporation welcomes your comments and suggestions. Please use the information provided in the Contacting PGP Corporation section to contact us.
Warning: Export of this software may be restricted by the U.S. Government.
What's in this file?
About PGP 8.1 for Windows
Changes Since PGP 8.0.0
Contacting PGP Corporation
About PGP 8.1 for Windows
Thank you for using the 8.1 release of PGP Desktop for Windows.
Building on top of the solid PGP technology base, PGP 8 for Windows includes PGP Mail, PGP Disk, and PGP Admin, offering numerous improvements as well as the following new features:
- Windows XP (including SP2) and Office XP compatibility
- Windows Server 2003 and Office 2003 compatibility
- Full server-side support for the Lotus Notes plug-in
- Support for Novell GroupWise 5.5 through 6.5.1 messaging client
- Significantly expanded Unicode support
- Directory integration with iPlanet Directory Server, Microsoft Active Directory, Novell eDirectory/NDS, and OpenLDAP
- PGP Admin can now preconfigure automatic creation of PGP Disk volumes
- Enhanced Smart Card functionality including support for Aladdin eTokens, Rainbow iKeys, Schlumberger cards and readers, GemPlus cards and readers, and more
Changes Since PGP 8.0.0
Changes to PGP since the release of version 8.0.3 include:
- Automatic update notification has been added. A notification will be displayed if a PGP update is released.
- Outlook 2003: errors in some scenarios claiming out of memory and other issues associated with the new Cached Exchange Mode feature of Outlook 2003 have been fixed.
- Outlook: Warnings have been added to detect a complex sequence of events when S/MIME is enabled and attachments are encrypted by PGP.
- Outlook: Improved compatibility with international characters encrypted with the UTF8 character set such as those generated by PGP Universal.
- Outlook Express: Improvements to compatibility with international characters have been made.
- Novell GroupWise 6.5.1 is now a supported platform.
- Some Unicode fixes have been applied for very long names.
- Substring matching is no longer allowed for email addresses. Matches must be exact in order to bypass the recipient key confirmation dialog that appears when encrypting an email.
- Some corrupt keys could cause the recipient key confirmation dialog when encrypting an email to abort. Such keys are now ignored.
- PGP SDK: PGP 8.1.0 EN uses a newer version of the PGP SDK which includes various new features and fixes. The follow is an overview of the changes to the PGP SDK:
- PGP SDK: Support for decoding BZip2 and ZLIB compression has been added. Encoding is also possible if you already have a key which claims to support it -- such as those generated by PGP Universal.
- PGP SDK: S/MIME support has been added. This functionality is available only when used with PGP Universal Server and PGP Universal Satellite.
- PGP SDK: Various TLS improvements including security improvements and support for additional algorithms such as RC4.
- PGP SDK: Support for international characters in X.509 certificates.
- PGP SDK: Various formatting fixes including a fix for a crash when encountering a key corrupted in a specific way.
Changes to PGP since the release of version 8.0.2 include:
- PGP 8.0.3 contains compatibility fixes for running alongside PGP Universal Satellite. Please make sure not to attempt installation of PGP 8.0.2 or lower over PGP Universal Satellite.
- PGP 8.0.3 is now compatible with Office 2003 and Windows Server 2003.
- Support for GroupWise 6.5 has been added.
- Outlook attachment decryption now preserves the original filename in cases where the encrypted file was renamed to preserve security of the filename such as from PGP Universal.
- Issues with imported X.509 certificate validity in the absence of a self-signature have been corrected.
- Support for automatically detecting attempts to spoof signature verification text blocks has been added.
- Freespace wipe on non-NTFS volumes would sometimes not succeed. This has been fixed.
- Automatic download of ADKs from keyservers in the Notes plugin has been fixed. Various other fixes have been made to this plugin.
Changes to PGP since the release of version 8.0.0 include:
- A revoked self-signature on a user ID is now represented as a revocation for the user ID. Revoked user IDs are removed from the list of recipients prior to display.
- The MDC extensions to OpenPGP are now generated on messages when appropriate.
- The private key S2K calculation now uses the improved methodology from the latest OpenPGP draft when appropriate.
- Key Reconstruction issues with PGP Keyserver 7.X have been resolved.
- Schemas for PGP Admin policy distribution via Microsoft Active Directory are now included in PGP Enterprise.
- Microsoft Outlook: Issues with the body text of decrypted email messages have been corrected.
- Microsoft Outlook: You now receive a warning if your editor is not set correctly.
- Microsoft Outlook: Permissions issues on Public Folder messages have been resolved.
- PGPkeys: Permissions issues with viewing photo IDs have been corrected.
- SDK: Passphrase dialogs that accepted excess typing due to UTF8 support have been corrected.
- SDK: Generating RSA keys with a keysize of ~3000 now works properly in all cases.
- Plugins: Word wrapping is now functional in all cases.
- Lotus Notes: The plugin now supports Lotus Notes R6 in addition to all previous versions of Lotus Notes back through 4.5.
- ICQ: The plugin now supports ICQ versions up through ICQ 2003a.
- PGP Disk: The AES algorithm at 256 bits has been added as a cipher to the PGP Disk algorithm choices. Disks created with this algorithm are also compatible with the Mac OS X version of PGP.
- PGP Disk: Issues with handling of passphrases in PGP Disk causing compatibility problems with older PGP Disks have been resolved.
- PGP Disk: Issues with storing keyrings inside a PGP Disk while simultaneously including an ADK user on the PGP Disk have been resolved.
- Windows Terminal Services: Support for running in a Windows Terminal Services environment has been improved.
- Smart Cards: Support for additional PKCS-11 compatible smart cards and biometric devices has been added.
- Pentium 166 or greater processor
- Windows 98, Windows Millennium Edition (ME), Windows NT 4.0 (Service Pack 6a), Windows 2000 (Service Pack 4), Windows XP (Service Pack 1), or Windows Server 2003
PGP uses a license number system to determine what PGP features will be active on your computer. For complete information about PGP licensing and purchase options, go to https://store.pgp.com.
PGP functionality depends on the type of license you purchase:
Personal Desktop: includes support for PGP Mail, PGP Disk, and the personal email plugins -- Eudora, ICQ, Outlook Express, and Outlook. Although the Outlook plugin will be installed, you will not be able to use it if you have configured Exchange Server accounts.
Workgroup Desktop: includes support for PGP Mail, PGP Disk, and all email plugins -- the personal email plugins plus GroupWise, Lotus Notes, and support for Exchange Server environments in Outlook.
Corporate Desktop: includes support for all PGP functionality mentioned above, plus PGP Admin and PGP Keyserver.
You can also use PGP without a license, but for non-commercial use only. This is called PGP Freeware. Commercial use of PGP Freeware is a violation of the License Agreement.
If you choose PGP Freeware (and you are legally permitted to do so under the end-user license agreement for non-commercial use), then you will be able to use PGP Mail. The PGP email plugins and PGP Disk will not be available.
To install PGP on your system:
- Find the PGP installer program.
- Double-click the installer program.
- Follow the on-screen instructions.
- PGP 8.0.0 introduced full support for UTF-8 internationalized passphrases in both PGP Disk and PGP Mail.
In some cases, passphrases created with older versions
of PGP that used High-ASCII characters will need to be changed using the older
version of PGP to eliminate such characters. Once the passphrase has been
changed to use ASCII characters, it can be changed again with PGP 8.0
to include characters from the entire Unicode character set.
- Filenames in some international character sets are not fully supported in this release for file operations.
- The Outlook Express plugin does not fully support some Asian and Arabic character sets in this release. For best results, use Windows XP with keys that do not use these character sets in their user ID, and use encrypted messages with a UTF-8 character set rather than clear-signed messages.
- Proper handling of HTML messages in Eudora requires that the "Use Microsoft Viewer" option in Eudora is turned off.
- Use of the IMAP protocol in Eudora will prevent proper decryption of PGP/MIME messages. This problem is fixed in Eudora 5.2 and above.
- Mozilla does not correctly implement the standard Edit --> Copy command. Spurious extra lines are inserted after quoted text blocks when copying text from a Mozilla message window. PGP's Use Current Window feature can report failure on signature verifications of signed messages containing quoted text in Mozilla due to this. This is Mozilla bug #144998 opened over 2 years ago.
- Windows Explorer provides PGP with information only about the target of a shortcut and not the shortcut itself. If you use the Wipe feature in Explorer, the shortcut itself will not be wiped. The actual target will be wiped. When using PGP Mail, the shortcut will also be wiped.
- Hotkeys are for use with applications that support general text editing. Using Hotkeys with other kinds of applications may result in unpredictable behavior.
- The PGP ICQ plug-in is not compatible with ICQ's Multilanguage mode and Split Message mode. Please make sure those options are disabled for proper operation of the ICQ plug-in.
- Versions of Microsoft Word prior to 2003 did not support plugins at all, and a warning will appear if the Outlook plugin is installed and Word is set as the Outlook editor. However, Word 2003 now partially supports the Outlook plugin when used as the email composition engine. The toolbar buttons for PGP will not be visible, but if you use the Encrypt by default or Sign by default options, they will still take effect.
- Using the IMAP protocol with Outlook in combination with PGP's Automatic Decrypt/Verify option can cause deleted messages to appear when you read an HTML/RTF formatted PGP message. These are harmless artifacts of the decryption process that can be hidden by selecting "Hide messages marked for deletion" in Outlook's View menu.
- When using the Outlook plugin with Exchange Server, make sure to use the latest Service Pack of Exchange Server. Several known issues may be encountered when using versions of Exchange Server that have not been properly updated.
- Certain Microsoft Windows operating system services are needed to authenticate communication between PGP components on your computer. On Windows NT, the "RPC Configuration" network service is required. On Windows 2000/XP, the "Client for Microsoft Networking" component must be installed, but may be disabled if so desired.
- The DKeyServ.exe service from the iKey Token software must be running in order for the iKey to interoperate properly. If Rainbow's software is already installed on your computer, go to the Services control panel and make sure that the Startup Type is set to "Automatic" for DKeyServ.exe. If the Rainbow software is not yet installed on your computer and you want to load this service automatically during its installation, then select the "Start CIP during Windows startup" check box. Also note that the Rainbow driver software does not appear to be fully compatible with Windows XP at the time of this release.
- Wiping small files (under 1K) on some NTFS-formatted disks can leave remnants of the file behind. This is due to an NTFS optimization which stores file data in internal data structures for very small files. These structures are not considered freespace even after deleting a file, and thus they also will not be wiped using Freespace Wipe. In addition, NTFS supports Journaling which can save wiped file data in an internal operating system cache. For the highest security wiping on NTFS disks, we recommend starting your system from an OS on a different partition and using PGP's new option in the Freespace Wipe feature to overwrite these NTFS data structures. This note does not affect FAT32 and other supported filesystems.
- The Roxio Easy Media Creator software (formerly titled Adaptec DirectCD) is fully compatible with PGP. However, you must not create a PGP Disk on a CD-R using the Drag to Disc feature that allows in place additions. You may create a PGP Disk on a normal hard drive and then copy it to the CD-R.
PGP documentation is installed onto your computer during the installation process. To see it: Start -> Programs ->
PGP -> Documentation
All documents are saved as Adobe Acrobat Portable Document Format (PDF) files. You can view and print these files with Adobe Acrobat Reader, available on the Web at www.adobe.com.
This release also includes integrated Windows help.
Documentation feedback is welcome. Send email to firstname.lastname@example.org.
Contacting PGP Corporation
For general information about PGP Corporation, please visit the PGP Web site: www.pgp.com.
For Product Support or Customer Service issues, please
go to the Support section of the PGP Web site:
For any other contacts at PGP, please go to the
Contact Us section of the PGP Web site:
Copyright © 19912004 by PGP Corporation. All Rights Reserved.