code page problem with gpg 4 win
Hi, all I use gpg version 1.4.10 for win, my native language is chinese, i want to gen a key pair with Chinese real name (UID).but when i type chinese characters in the console, gpg failed to handle the chinese characters . i ever used the following commands to gen key pair: gpg --display-charset utf-8 --gen-key gpg --utf8-strings --gen-key gpg --display-charset GBK --gen-key All of them failed to do it. I searched the mail list for this problem, i find the following URL: http://lists.gnupg.org/pipermail/gnupg-i18n/2003-March/000202.html it gives a solution for russian.but what can i do in my case? BTW: I can gen key pair with chinese characters uid by GNU-4win GUI. and console in my os uses code page 936, that means GBK. of course, when i type following command, that chinese characters uid can be display well. gpg --list-keys thanks for every reply. -- regards Ray ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Finding key ID of a keypair
On Sun, 8 Nov 2009 17:19, d...@thinkmoult.com said: I've got myself a DSA keypair, just two files - one being the public key and the other being the private. I'm trying to find out the ID of that keypair. A mere gpg OURFILE will do Salam-Shalom, Werner -- Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: HELP - IMPORTANT - Signature check with libgpgme-11.dll
On Fri, 6 Nov 2009 13:51, p...@sevencs.com said: I need some help as soon as possible! If you in that urgent need for help you may want to check with a commercial support company or a freelancer. The GnuPG service directory at http://www.gnupg.org/service.html may be helpful. Shalom-Salam, Werner -- Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Finding key ID of a keypair
On Monday 09 November 2009 18:39:27 Werner Koch wrote: On Sun, 8 Nov 2009 17:19, d...@thinkmoult.com said: I've got myself a DSA keypair, just two files - one being the public key and the other being the private. I'm trying to find out the ID of that keypair. A mere gpg OURFILE will do Salam-Shalom, Werner Unfortunately it didn't seem to do anything: localhost ~/.ssh # gpg myfile.key gpg: no valid OpenPGP data found. gpg: processing message failed: Unknown system error localhost ~/.ssh # gpg myfile.pub gpg: no valid OpenPGP data found. gpg: processing message failed: Unknown system error Where myfile.key is the file containing the private key and myfile.pub is the file containing the public key. -- Dion Moult :-) signature.asc Description: This is a digitally signed message part. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
problems with gnupg2 and passphrase
Hi, I'm using GnuPG 2.0.12 (GPG4Win) and have problems in decrypting multiple files with the same passphrase via command prompt. My old GnuPG Version 1.x.x commad was gpg2.exe --allow-multiple-messages --passphrase geheim --decrypt-files C:\Test\*.gpg The command doesn't work anymore and I'm getting a popup window for entering my passphrase. I'm looking for a command that decrypts multiple files with the same passphrase without any additional ask windows. I already searched the manual but didn't found any helpful information. Thanks for any help. -- John ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Finding key ID of a keypair
On Mon, 9 Nov 2009 13:08, d...@thinkmoult.com said: localhost ~/.ssh # gpg myfile.key gpg: no valid OpenPGP data found. gpg: processing message failed: Unknown system error Probably not an OpenPGP key. You my try gpg --list-packets myfile.key to dump the packets, but this is unlikely to show something else than running just gpg on the file. Chech that the file is a proper OpePGP file and has been downloded correctly. Often FTP is not used coreclty and breaks binary files. Salam-Shalom, Werner -- Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: problems with gnupg2 and passphrase
On Mon, 9 Nov 2009 12:53, jmcn...@fh-eberswalde.de said: I'm using GnuPG 2.0.12 (GPG4Win) and have problems in decrypting multiple files with the same passphrase via command prompt. My old GnuPG Version 1.x.x commad was gpg2.exe --allow-multiple-messages --passphrase geheim --decrypt-files C:\Test\*.gpg First of all you should not use --allow-multiple-messages: @item --allow-multiple-messages @item --no-allow-multiple-messages Allow processing of multiple OpenPGP messages contained in a single file or stream. Some programs that call GPG are not prepared to deal with multiple messages being processed together, so this option defaults to no. Note that versions of GPG prior to 1.4.7 always allowed multiple messages. Warning: Do not use this option unless you need it as a temporary workaround! The command doesn't work anymore and I'm getting a popup window for entering my passphrase. I'm looking for a command that decrypts multiple files with the same passphrase without any additional ask windows. I already searched the manual but didn't found any helpful gpg2 requires the gpg-agent to handle the secret keys. The gpg-agent also caches passphrases, thus you need to enter them only once. Install gpg-agent properly so that gpg2 does not fall back to start gpg-agent for each operation which prohibits the caching. If you don't want a puinentry popup at all, you may seen the gpg-agent cahce with passphrases. See gpg-preset-passphrase for more info: SYNOPSIS gpg-preset-passphrase [options] [command] keygrip DESCRIPTION The gpg-preset-passphrase is a utility to seed the internal cache of a running gpg-agent with passphrases. It is mainly useful for unattended machines, where the usual pinentry tool may not be used and the passphrases for the to be used keys are given at machine startup. Passphrases set with this utility don't expire unless the --forget option is used to explicitly clear them from the cache --- or gpg-agent is either restarted or reloaded (by sending a SIGHUP to it). It is necessary to allow this passphrase presetting by starting gpg-agent with the --allow-preset-passphrase. gpg-preset-passphrase is invoked this way: gpg-preset-passphrase [options] [command] keygrip keygrip is a 40 character string of hexadecimal characters identifying the key for which the passphrase should be set or cleared. This keygrip is listed along with the key when running the command: gpgsm --dump-secret-keys. One of the following command options must be given: --preset Preset a passphrase. This is what you usually will use. gpg-preset-passphrase will then read the passphrase from stdin. [...] Shalom-Salam, Werner -- Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: gpg rejects SHA224 with DSA-2048
On Nov 9, 2009, at 8:20 AM, Kevin Kammer wrote: On Mon, Nov 09, 2009 at 11:52:48AM +0100 Also sprach Werner Koch: On Mon, 9 Nov 2009 04:17, r...@sixdemonbag.org said: When did this changeover take place, and is there any way to get the old behavior back? On 2009-07-09; that is since 1.4.10 / 2.0.13. There is no option to change it back. The code in g10/keygen.c reads: /* Figure out a q size based on the key size. FIPS 180-3 says: L = 1024, N = 160 L = 2048, N = 224 L = 2048, N = 256 L = 3072, N = 256 2048/256 is an odd pair since there is also a 2048/224 and 3072/256. Matching sizes is not a very exact science. We'll do 256 qbits for nbits over 2047, 224 for nbits over 1024 but less than 2048, and 160 for 1024 (DSA1). */ if(nbits2047) qbits=256; else if(nbits1024) qbits=224; else qbits=160; I imagine it would not be terribly difficult to rewrite keygen.c to offer the option of qbits=224 for nbits==2048, offered at key generation time (likely with the --expert flag set), but it would be a non- trivial change for a very questionable benefit. Very questionable, indeed. There are a number of places where the various standards that comprise OpenPGP, and the OpenPGP standard itself, give the implementor leeway to pick path A or B. Each additional line of code to implement changes to accommodate stuff like this adds testing time, adds potential for bugs, and takes away time from more useful things. IT department rules don't always make sense, but you can't make a product like GPG in constant fear that some hypothetical IT department will take offense at some particular obscure detail in it (a detail, again, that is correct as per the DSS and OpenPGP specs). If that IT department became non-hypothetical, it might be worth looking at. In any event, that hypothetical IT department will find it rather hard to use OpenPGP at all - offhand, I can't think of any current OpenPGP product that supports DSA over 1024 bits that doesn't use a 256-bit q for a 2048-bit key. David ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Finding key ID of a keypair
Dion Moult wrote: It's passphraseless, it's DSA, and that's pretty much all I know. I made it quite a long time ago, perhaps through ssh-keygen. If you created the key with ssh-keygen, then it's an SSH key, not an OpenPGP key. The two systems, ssh and gpg, do not use the same key formats. For an ssh key, you can print out the key's fingerprint using ssh-keygen -l -f /path/to/key -- ToddOpenPGP - KeyID: 0xBEAF0CE3 | URL: www.pobox.com/~tmz/pgp ~~ The only difference between a rut and a grave is the depth. pgpnGlTE4nwn2.pgp Description: PGP signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
RE: No secret key under different account
Hi, Thanks for the info detailed response. I'm going to go with option C as you suggest. Must admit I hadn't realised that .MAN pages are the docs. Cheers Dave -Original Message- From: John Clizbe [mailto:j...@mozilla-enigmail.org] Sent: 02 November 2009 12:02 To: GnuPG Users Cc: David Gray Subject: Re: No secret key under different account David Gray wrote: What are peoples thoughts on which is the best option: a) copy the secring.gpg pubring.gpg files to the second user account? b) export and import the keys to the second user account? c) add a reference to the second account's gpg.conf file? it depends on what you are trying to accomplish. Any of the above may be the best option for a given set of requirements. If I wish to use my keys on a new machine, option a or redirecting gpg.conf to keyrings ( trustdb) on portable media is probably the route I'd take. If I wanted to share a central keyring of, for example, customer keys, I probably go with option c. Also could anyone please give me an example of the syntax for adding keyring references to gpg.conf? no-default-keyring primary-keyring pubring.gpg keyring O:\GnuPG\pubring.gpg keyring strong.gpg keyring trusted.gpg secret-keyring secring.gpg secret-keyring O:\GnuPG\secring.gpg These should be explained in gpg2.man which should be in the share\gnupg directory under gpg2's onstallation directory, default on Windows: C:\Program Files\GNU\GnuPG2\share\gnupg\gpg2.man. It can be read with Notepad -- John P. Clizbe Inet:John (a) Mozilla-Enigmail.org You can't spell fiasco without SCO. hkp://keyserver.gingerbear.net or mailto:pgp-public-k...@gingerbear.net?subject=help Q:Just how do the residents of Haiku, Hawai'i hold conversations? A:An odd melody / island voices on the winds / surplus of vowels ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users