Having some issues installing from source

[Joshua Terrill]

I'm having a hell of a time trying to compile and install gnupg from the
source code on an ubuntu machine. I've posted a thread on AskUbuntu here
http://askubuntu.com/questions/681041/trying-to-compile-gnupg-from-source
if someone would be willing to lend a hand.

Thanks,
Josh
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: How to get your first key signed

[MFPA]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512



On Friday 2 October 2015 at 5:51:52 AM, in
,
Guan Xin wrote:



> So you three will share the same reputation on the
> mailing list.

No, their reputations and posting histories did not become merged.



> If at least one of you commit crimes with
> your signed messages, you will share the same legal
> liability unless proved not guilty by other means,

What happened to being innocent until proven guilty?



- --
Best regards

MFPA  

Did you hear? They took the word gullible out of the dictionary
-BEGIN PGP SIGNATURE-
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=
=YrR0
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: How to get your first key signed

[Guan Xin]

On Sat, Oct 3, 2015 at 1:33 PM, MFPA
<2014-667rhzu3dc-lists-gro...@riseup.net> wrote:
>
>> So you three will share the same reputation on the
>> mailing list.
>
> No, their reputations and posting histories did not become merged.

The word "will" does not infer history. You know by reputation
I meant personal reputation, not the arabic numbers
or green boxes shown on the webpage, don't you?

>> If at least one of you commit crimes with
>> your signed messages, you will share the same legal
>> liability unless proved not guilty by other means,
>
> What happened to being innocent until proven guilty?

What happened to being guilty once proven guilty until
proven innocent?
Your key is the proof. If you all believe digital signature
can't prove anything, why do you use it at all?

Guan

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Seperate Session Key and Encrypted Data

[MFPA]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512



On Thursday 1 October 2015 at 4:08:13 PM, in
, Koszta Dániel wrote:



> However, I'm not sure of the security implications of
> this. From the gpg manual:

>> We think that Key Escrow is a Bad Thing

The security implication of sharing the session key is a positive one:
it can only compromise the one message. By contrast, divulging a
private key would compromise all messages encrypted to that key, as
well as allowing the party to whom the private key was divulged to
make signatures with it.




- --
Best regards

MFPA  

My mind works like lightning... one brilliant flash and it's gone
-BEGIN PGP SIGNATURE-
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=
=qhK/
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: How to get your first key signed

[Robert J. Hansen]

> IF YOU THINK DIGITAL SIGNATURES ARE NOTHING
> THEN PLEASE KEEP AWAY FROM THIS MAILING LIST.

A digital signature means surprisingly little.  These are the conditions
that must be met for a signature to be meaningful: it must be correct,
issued from a validated[*] certificate, and belong to a trusted person.

If you've got all those, then yes, a digital signature can be very
meaningful.  If you don't, they mean very little.

Maybe I should add this to the FAQ, along with an explanation of why.


[*] Insert word-of-choice here.  Trusted, validated, whatever.

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: How to get your first key signed

[Guan Xin]

On Sat, Oct 3, 2015 at 7:40 PM, Peter Lebbing  wrote:
> On 03/10/15 14:04, Guan Xin wrote:
>> What happened to being guilty once proven guilty until
>> proven innocent?
>> Your key is the proof.
>
> Please stop trolling.
>
> Peter.

YOU who insist that digital signatures are no proof
and worth nothing please STOP TROLLING.

IF YOU THINK DIGITAL SIGNATURES ARE NOTHING
THEN PLEASE KEEP AWAY FROM THIS MAILING LIST.

Guan

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: How to get your first key signed

[Guan Xin]

On Sat, Oct 3, 2015 at 7:40 PM, Peter Lebbing  wrote:
> On 03/10/15 14:04, Guan Xin wrote:
>> What happened to being guilty once proven guilty until
>> proven innocent?
>> Your key is the proof.
>
> Please stop trolling.
>
> Peter.

"Please don't feed the troll" is an acceptable wording when said to me.

"Please stop trolling" is the the word for you.

Guan

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: How to get your first key signed

[Crissy Lynn]

Please! For the 600th time! REMOVE ME FROM THIS MAILING LIST! 



> On Oct 3, 2015, at 1:44 PM, Guan Xin  wrote:
> 
>> On Sat, Oct 3, 2015 at 7:40 PM, Peter Lebbing  
>> wrote:
>>> On 03/10/15 14:04, Guan Xin wrote:
>>> What happened to being guilty once proven guilty until
>>> proven innocent?
>>> Your key is the proof.
>> 
>> Please stop trolling.
>> 
>> Peter.
> 
> YOU who insist that digital signatures are no proof
> and worth nothing please STOP TROLLING.
> 
> IF YOU THINK DIGITAL SIGNATURES ARE NOTHING
> THEN PLEASE KEEP AWAY FROM THIS MAILING LIST.
> 
> Guan
> 
> ___
> Gnupg-users mailing list
> Gnupg-users@gnupg.org
> http://lists.gnupg.org/mailman/listinfo/gnupg-users

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: How to get your first key signed

[Guan Xin]

On Sat, Oct 3, 2015 at 8:19 PM, Robert J. Hansen  wrote:
>> IF YOU THINK DIGITAL SIGNATURES ARE NOTHING
>> THEN PLEASE KEEP AWAY FROM THIS MAILING LIST.
>
> A digital signature means surprisingly little.

It's a kind of weak proof in China, and is much more than nothing.

I have absolutely no idea of the situation in the Netherlands. Peter knows.

In the U.S., obviously, no proof is needed to convict someone.
I've been *assumed* spying already after another Chinese citizen whom
I never heard of was *only* suspected, only because we worked for
the same department.
Neither digital nor non-digital signatures change racism. So this is irrelevant.

Guan

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Having some issues installing from source

[Murphy]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

> I'm having a hell of a time trying to compile and install gnupg
> from the source code on an ubuntu machine. I've posted a thread on
> AskUbuntu here 
> http://askubuntu.com/questions/681041/trying-to-compile-gnupg-from-sou
rce
>if
> 
someone would be willing to lend a hand.

Joshua - If you are willing to give GnuPG modern (2.1.X) a go the
included Speedo method makes the compile process easy.  Here is the
entry I also posted on AskUbuntu:

1. sudo apt-get update

2. sudo apt-get install libldap2-dev gtk+-2 libbz2-dev

3. after unpacking the latest gnupg-2.1.X tarball and cd to the new
folder, run the command:

4. sudo make -f build-aux/speedo.mk native INSTALL_PREFIX=/usr/local
sudo ldconfig

5. download the latest pinentry-0.9.5, run ./configure && make && sudo
make install.

6. test it out:  gpg2 --version

I noticed your build attempt was on gnupg-2.0.X which unfortunately
does not have the speedo method included (that I could find) but if
you want to have the newest features including elliptic curve crypto
then 2.1 is the best!  Good Luck.  -Murphy
-BEGIN PGP SIGNATURE-
Version: GnuPG v2

iJwEAQEIAAYFAlYP7+gACgkQUVKxkWZz2Q190QP/Xxz0BOwT1pHZ2W8V0dlAuppK
n5sthl5efk3NzMgpzTKyAYsiWNV0TPfsM8vmbdt2L6hXsJ0i4Ctu0pKVbSrsLfk1
tAfN5W/IZHlq1CuiXpeT3iNEq/ZQ68MNnXiP7FK1GntjUKOep6nJkiMBaU2BrQX+
61xhK23ze7VklEZzEm4=
=oztG
-END PGP SIGNATURE-

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: AW: Seperate Session Key and Encrypted Data

[Daniel Kahn Gillmor]

On Fri 2015-10-02 02:39:07 -0400, Werner Koch wrote:
> On Thu,  1 Oct 2015 19:29, d...@fifthhorseman.net said:
>
>> So the only functionality GnuPG is missing to assemble the workflow
>> you're describing would be a new GnuPG command named something like
>> --generate-pkesk-with-session-key.  If that command was available, the
>
> A more generalized version would indeed be useful.  For example to add a
> symmetrical key for archiving mails or to allow decryption with a new
> subkey.

Do you mean "more generalized" than generate-pkesk-with-session-key?  Do
you have a spec for what you want this command to be?  Can we open a
ticket about the feature to keep track of the objective?

   --dkg

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: How to get your first key signed

[Peter Lebbing]

On 03/10/15 14:04, Guan Xin wrote:
> What happened to being guilty once proven guilty until
> proven innocent?
> Your key is the proof.

Please stop trolling.

Peter.

-- 
I use the GNU Privacy Guard (GnuPG) in combination with Enigmail.
You can send me encrypted mail if you want some privacy.
My key is available at 

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: How to get your first key signed

[Juan Miguel Navarro Martínez]

On 2015-10-03 at 20:23, Crissy Lynn wrote:
> Please! For the 600th time! REMOVE ME FROM THIS MAILING LIST!
>

If you knew how to subscribe, you should know how to unsubscribe, because:

1) If you told on this mailing list to be unsubscribed for the 600th
time, then someone told you how to unsubscribe for at least a 300th time.
2) If you are subscribed here, then you used a method to subscribe
yourself be it a) via website or b) via e-mail. And to unsusbcribe,
obviously, you use either of those methods as well.


For method a): Just go to the website[1] again (the URL is on everyone's
email tail). Then on the bottom, fill the form (one text box with the
sentence "Unsubscribe or Edit"), and click the "Unsusbcribe" button.

For method b): Just send an email to 
with "unsubscribe" as the subject or body[2].

No matter which method you used, just follow the instructions after that.

If you are not getting unsubscribed then either a) you didn't do all
steps, b) you did something wrong in any of the steps or c) you are
subscribed with another email.

[1]: 
[2]: 


-- 
Juan Miguel Navarro Martínez

GPG Keyfingerprint:
5A91 90D4 CF27 9D52 D62A
BC58 88E2 947F 9BC6 B3CF

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

RE: How to get your first key signed

[Jerry]

> Please! For the 600th time! REMOVE ME FROM THIS MAILING LIST!

Please for the 601st time, follow the directions you have been give before:

List-Unsubscribe: ,
 

And while you are at it, STOP hijacking threads.

-- 
Jerry


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: AW: Seperate Session Key and Encrypted Data

[Daniel Kahn Gillmor]

On Fri 2015-10-02 04:10:16 -0400, Christian Loehle wrote:
> Thanks for your reply(and all the others of course).  Personally I'm
> going to use non-pgp AES probably, although I'm not quite content with
> that.

AES is a cipher for a single block.  For files larger than the block
size, you'll need to use it in some sensible mode like AES-GCM.  All
modes of course require a high-entropy key and some of them require a
well-chosen nonce or IV (initialization vector).  Please use caution in
making these decisions!

   --dkg

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: AW: Seperate Session Key and Encrypted Data

[Werner Koch]

On Sat,  3 Oct 2015 18:16, d...@fifthhorseman.net said:

> Do you mean "more generalized" than generate-pkesk-with-session-key?  Do
> you have a spec for what you want this command to be?  Can we open a

- Add new PKESK packets to an encrypted message
- Add new SKESK packets to an encrypted message
- Delete selected PKESK and SKESK packets (to allow forwarding a long
  message without revealing the original recipients).
- Add a new signature to a signed or signed+encrypted message.
- Delete a signature for a signed or signed+encrypted message.


Salam-Shalom,

   Werner


-- 
Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: How to get your first key signed

[Robert J. Hansen]

> Please! For the 600th time! REMOVE ME FROM THIS MAILING LIST! 

You have been told how to unsubscribe.  Perhaps try following those
instructions?

To recap: visit this URL.

http://lists.gnupg.org/mailman/listinfo/gnupg-users

At the bottom you'll see text of, "To unsubscribe from Gnupg-users, get
a password reminder, or change your subscription options enter your
subscription email address:".  Enter your email address there and click
"Unsubscribe or edit options".

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: How to get your first key signed

[Robert J. Hansen]

> So you three will share the same reputation on the mailing list.

Probably not.  But if so, I'm fine with that: John and John are good
people.  And the point we were making -- which was that people invest
way too much trust into unvalidated keys and/or possibly untrustworthy
people -- was important and worth making.

> If at least one of you commit crimes with your signed messages,
> you will share the same legal liability...

If I commit a crime and it gets traced back to the certificate we
shared, then the authorities would have to figure out which of us was
using the certificate.

The idea that OpenPGP signatures are non-repudiable is a fashionable bit
of nonsense: I am aware of no court, anywhere in the world, which has
recognized OpenPGP signatures as being non-repudiable.

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users