Re: Migrating from PGP to GPG question
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Laurent Jumet wrote: Hello Smith, ! Smith, Cathy cathy.sm...@pnl.gov wrote: I've tried using the --yes option without success to suppress this interactive prompt doesn't pop up. This encryption does need to run in a batch job. What do I need to do in order all interactive prompts are surpressed, and that the assumption is they are answered yes. Try using: --batch --yes --no-tty Why not try adding to gpg.conf trust-model always This will suppress the prompt/warning as well. Of course, since the Keys still have their Signatures Cathy could always rebuild the Trustdb. JOHN ;) Timestamp: Friday 05 Mar 2010, 07:39 --500 (Eastern Standard Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: http://www.gswot.org Comment: Personal Web Page: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJLkPt5AAoJEBCGy9eAtCsPyqQIAJkQ2GW6nYRWmhA2g2jrYbJ4 sy5fuPSXS5jn+c8yoTO5vDpJK4ibdqGF4zghzsRP7FhSKxehYCdqHm1nYT7Kge8+ OwdCL2F6hwIZ4Dui+cHBaSXc6MCY5rKVCoKWduXDiNMU77D0aD4wI007rITlhRJh qs1KNZraV1416/rM4udjTUQqqNl8+YVlF9YQ8o+UzVQ81wVgKkWJAOihYxnAX8xI JpAkrVR2zIIKKq1bq9Q6v1uXn/08V4GnylRBQaOtOoyozODm/urlyM++lMkdNj/x iiJ445n9yUsc4H+MN2+wIza3/LDNV4S3YxgpVsjTSlr4Svw1bcnUOJXMpWAQyvM= =Dq6B -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Memory forensics
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Robert J. Hansen wrote: http://jessekornblum.livejournal.com/259124.html For quite some time we've known that hibernation files present risks for information security. However, there are always those who say until I see an actual demonstration, I won't believe it. The upshot: we now have an actual demonstration. The takeaway is that you should be very, very careful about hibernating your computer while passphrases are cached, or while GnuPG is actively processing a file. Most 'Hibernators' I know are laptop/notebook/netbook Users who are too important to wait for boot-up when the unit is Opened. :-D JOHN 8-) Timestamp: Friday 05 Mar 2010, 16:42 --500 (Eastern Standard Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: http://www.gswot.org Comment: Personal Web Page: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJLkXrbAAoJEBCGy9eAtCsPAiMH/RuY+C0xEmAhBKZb0t/K8bDP 6uxToYMhb1IaLZQhXvbdJqCRXKQrodqpM3Pt80/lkQptnS16QDECjEieuB2zblaP NUCYsnUv4MrXkWWKUymZIEqtMoPbAnMSw4Ip7/Jclx6JmsmWweTK+85ZEZOk2l/Z zhEdPDPXd1SA6WlDkdsCFaXUSxnI54mQCpUSlkpHVUkJNI/1/SFOQpZIDOoxQkBV vI+u7jYf3x1oi5QV07XU13731m1Ec+YrfVgem9sCTUZlMy5JqBQRgME5OUsJKp4h 0GaSJ3OmZXicy1mTwZMo0LdgOOqPSiMKtoyTUaCi8KKPe/EdgU7WLm4zAXSVbhY= =VJ+y -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: key question
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Jerry wrote: Maybe not totally apropos to this discussion; however, I worked in traffic analysis for several years. If given enough leeway, you would be amazed at the information you can gather about an individual, and at its astonishing accuracy rate. Just listening on various mail forums, I have been able to learn more about certain individuals than they would believe possible, or want known. Its all in knowing (and having the proper equipment and authority) in where to look. UAV Missile Operators don't need to know what the message said; just where You are at the time it is Sent. Radio transmissions are targeted using Huff-Duff GPS; Email is 'targeted' from the kludges. True enemies in 'hot combat' don't care what You're saying; only that You never 'speak' again. ♂ JOHN ;) Timestamp: Saturday 27 Feb 2010, 08:23 --500 (Eastern Standard Time) - -- There are two kinds of people, those who do the work and those who take the credit. Try to be in the first group; there is less competition there. - --Indira Ghandi -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: http://www.gswot.org Comment: Personal Web Page: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJLiRz1AAoJEBCGy9eAtCsPTrMIAKF3pduOatVIePKgJxkKKAR7 HymACsEHjfs5gkgXzRcbqpHEtyqGy1TiAoJjAGM6FWVvo7SFvI5yJ2rojIceuv5d uAaUDc6sx7bAgNTFZ+GZJPYBy4kxb6mLbDmutvhChXPaIxPEt+SFhBqqCbD7DICK iXIBpYeNWBWL+w12g6uWGLVF5kgM3IwwSn5VPxbRPyv9uvLng5tAbib+wlUhY+ln DcVihZv3PMHeRqeMS2nqjURlZh4FeLUZoqc7ck3j0oCM8xIG38Aa2Ob7SJdqIXyq rGd3nxrTtUconL8x9Sdd/nZSTar/AuWTdEhgOWZX/eC6i6qUGpOBRXRo5qSy1SU= =0q7a -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: key question
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Tobias Holz wrote: Hey Folks, i succesfully installed gnupg on my Win7 machine. I want to use it with Thunderbird to encrypt personal eMails. Now I've got some questions: 1) What does happen if I lose my private key? Can I burn it to a CD/DVD? If You actually 'lose' Your Private Key [i.e. Secret/Private half of the Keypair] or lose and/or Forget Your Passphrase You are FUBAR. This is why the Enigmail Manual Quick Start Guide both _strongly_ encourage the generation of a Revocation Certificate [actually just a Special Signature File] which You should then store somewhere away from Your Keyrings. Enigmail has a 'Wizard' for this. :) 2) Where can I find the key, I just got the passphrase? Under 'OpenPGP' on the toolbar at the top of Thunderbird You will find an item in the Menu labeled 'Key Management' which will graphically display Your Keyring(s). [Hint: the default setting displays nothing until a Key ID or Email Address is entered into the Search Box /unless/ You have checked the box 'Display All Keys'. Where are the actual Keyring(s) in Win 7? The crypto-geek answer is under %AppData% → Roaming Directory/Folder _or_ C:\Program Files\GnuPG assuming You accepted the Defaults when installing GnuPG. :-\ You can also use WinSearch and enter: secring.gpg or pubring.gpg. This is the Secret Keyring and Public Keyring respectively. If You choose to burn either of these [or both] to a Disk or store them on removable media then I also suggest You include the File trustdb.gpg since this File contains Your Assigned Calculated Key Trust values. It is located in the same Directory/Folder as the other 2 Files. I generated the Keys with OpenPGP-Plugin for Thunderbird. I got the public key (something_stands_here.asc) and encryption works fine :) At the risk of being called a heretic by My fellow Members of the Enigmail Development Team I am also going to recommend a companion GPG Frontend to You for use on Windows: GPGshell [http://www.jumaros.de/rsoft/index.html] is an excellent tool for Key Management [manipulation] that offers many 'clickable' options not available within the Enigmail Key Manager as well as greatly simplifying Command Line usage. [Another Hint: in order to fully enjoy exploit all of GnuPG's many features some Command Line familiarity is gonna be necessary] Going way out on a limb I am going to assume that You are as yet unaware of the gpg.conf File and it's usefulness. Please do not hesitate to Ask more Questions within this Forum/List as well as accept Google as Your Friend. As Questions specific to Enigmail begin to develop I heartily suggest You also Join the Enigmail Mailing List as well. [https://www.mozdev.org/mailman/listinfo/enigmail] ;) HTH more than it confuses. :) JOHN ;) Timestamp: Wednesday 24 Feb 2010, 19:32 --500 (Eastern Standard Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: http://www.gswot.org Comment: Personal Web Page: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJLhcVYAAoJEBCGy9eAtCsPQ3oIAIAmFY/3blwse4tNLEV0cNwH G3Z0KnbX2t9XoHqUt+AoLFQDXxvFHivsIAu+7p4z7D4Dy5Zw7ya2+Stdmmf147Sy qmPg647cNT3N2YB/VqW/aq36a2cD82mZr8ltoVa+3VD2s1fwe6o2xcNiP1JbdxZW Gp4/x1lzOALwkD3BCKjuv3SIG8Pyh0AZNKJBrkP6q318WjWOv4J6AAwKD3bRLxSr I3CNTooN0GDVoF7nyc/pETsxQbWSDwy348cwvvpe5im5Y2UYTdqAgqhVbFl9DaRL iC9KrFF2bN158Ot7IInUO2cTU9CUQISuE0HUt5pFzqsFOcFHtqLiBzXoyC1+c3s= =m/vO -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: digital signature primary key and encryption subkey
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 John Clizbe wrote: M.B.Jr. wrote: Thanks again, David. The last dumb question, I promise, would be: There aren't any dumb questions. Yes, there are! They are the Questions that _were_never_ asked! JOHN ;) Timestamp: Wednesday 18 Nov 2009, 19:34 --500 (Eastern Standard Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: http://www.gswot.org Comment: Personal Web Page: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJLBJKhAAoJEBCGy9eAtCsP3jcIAKOAy3S48Ngu+Ea+muRbr6Vl ci/lWWJqH3OArDL0Y7baBvTzIoYzqsUCkLi9eJj5Xe9x5z2M0xm+yA0tt1SyPjHN +eC/xdMNzVJA9QmVGteUgDdDjxisROqgZJGV81GsBdyc/KC7WP+O5F49zYl6fYb3 vRMqBVBtmZx0Obs50L5FbdCpcqXKR8MyKDZ36VZBWrt8TTm59FjauXhqn56s7E1m VxeXItZCLmOmIpEoaEzH7TVds0g9GF0DfFG3An2fyaci0bGxNpkM15GFmkMTEPAb Z9WzOdyCjr4GBEzBKCz6jxh4lFAE2/Ayh4hXezFWF31Pf8lbYR9ceIT14Moxtrg= =eNLs -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: A Couple of Questions...
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 sari Al-alem wrote: I dont know if this is the right place but im new to this encryption software and i would like to ask some questions: 1- does GPG have to be installed on all users who will recieve my mail? Short Answer = Yes. Long Answer = every Recipient will require an OpenPGP Application of some variety. GnuPG is the superior one, IMHO. PGP is also used by many but is available only for Windows. 2- does it have to be installed on the mail server? No. Of course every Rule has it's exception and My understanding is that at present, use of OpenPGP on the RIM Blackberry Smartphone does require PGP to be installed on the Blackberry Email PUSH Server. HTH JOHN ;) Timestamp: Sunday 25 Oct 2009, 08:19 --400 (Eastern Daylight Time) - -- http://tinyurl.com/6hztec -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: http://www.gswot.org Comment: Personal Web Page: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJK5EJuAAoJEBCGy9eAtCsPnMwH/3+Ve0u6lG+bJ9wvUb3n1CoL IGP5/OmDc9KR7p1Wfauojzj4LxDIeVvWwKlQUsawdnPyLRT6c3aFU7bsWDQkG2sG DT/SONrWBl5Cvbu0L1tYZZMlaaHBmGqYDi46Nzu1jZJw0cK/gc/Iy3lCcSBIsGAe uyErXVanEzUu/2pewAOcxTUV8RKurmgtUbnDI+tbBYy8Gdv1o7PWjqtK99MaA03C sXdK8LWMIkvmE7dw1OvQODZ+LKW+anXC2sw9QQUxdBgmXkeD1Z67hRlb+XAnCNea w1ZZnERCOU5hhkqJGrHMC2KQKdKbyNTYhjFmaUufZCzE/+wht7IeKCEs9BiZQGM= =DQ9g -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: OpenPGP error
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Sean Wilson wrote: Why is it when I sign an email and someone replies to it I sometimes get the following error: Part of the message signed; click on 'Details' button for more information in the details it says: OpenPGP Security Info Error - signature verification failed gpg command line and output: C:\Program Files\GNU\GnuPG\gpg.exe gpg: Signature made 10/11/09 14:13:48 using RSA key ID xx gpg: BAD signature from Sean Wilson s...@xx.com Why does this happen? Oftentimes, the individual replying to You uses a Mail Client that doesn't strip off Your prior Signature armor block and neither do they do so manually. [far too many folks _never_ clean their replies] When GPG encounters the Signature Block embedded in the Reply it 'stumbles' and refuses to verify it. JOHN ;) Timestamp: Sunday 11 Oct 2009, 12:11 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: http://www.gswot.org Comment: Personal Web Page: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJK0gOnAAoJEBCGy9eAtCsPsUoH/0vs3euBSVeaS+ytnOgmeNDX ASFIJumjGVixY2ZCopW4iIvcCfwSxe5v/fd39OHlfBorb7Vprjh3rdGRLIcei3hk f2LS6fTXC7ffXZ0+Xh3QAXxB1LjHNupC0uUFVud4Z/OKp5kPScH0kwivQucXyp3c t//wYfGH6OcxyiJRnEpvHLG7dKAB857Myg4pfCI6zWL3Bq0vma46ECJ1Wap5KaWv lOzDXCTwlesr6OSmxzw78ygf+Bf1eynQ+C7GaS+DK0YNrbSgeiJgq25rUt9b/6rt c9OKaaKbMI7y84KqZluqND8YhapyPCe6fI/x3hWtUs4E8Slaq42dvSkzSCCkuKA= =sgcA -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: beginner type questions
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Durant, Dean wrote: Hello, I noticed, on windows (which I truly despise), when I type C:\Documents and Settings\me\Application Data\gnupggpg --gen-key I get: gpg (GnuPG) 2.0.12; Copyright (C) 2009 Free Software Foundation, Inc. (add'l copyleft info) Please select what kind of key you want: (1) RSA and RSA (default) (2) DSA and Elgamal (3) DSA (sign only) (4) RSA (sign only) on ubuntu, I get these choices (the version of GPG is 2.0.9): Please select what kind of key you want: (1) DSA and Elgamal (default) (2) DSA (sign only) (5) RSA (sign only) What is the difference? Isn't RSA better? Robert's answer was accurate but I'm not sure it was the answer to the question You were asking. Between versions 2.0.9 2.0.12 the Default for Key Generation was changed. This change is viewed as minor by many which apparently includes the Ubuntu developers. :) The reason the Default was changed was to make better use of available Hash functions. DSA Signing Keys are limited to 160bit Hashes unless DSA2 is invoked, RSA Signing Keys can utilize all the Hash functions without any 'games' being played. To eliminate any confusion in the future and based upon the number of folks who eventually migrated away from DSA Keys to RSA Keys due to personal perceptions the Default was changed to RSA. Additionally, in the very beginning RSA was encumbered by patents which have now expired. You can easily work around this in Ubuntu at present by selecting option 5 and then generating an RSA Encryption sub-Key. HTH JOHN ;) Timestamp: Monday 05 Oct 2009, 16:02 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: http://www.gswot.org Comment: Personal Web Page: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJKylDaAAoJEBCGy9eAtCsPdPgIAI/SfIwVc2RVR8I8lhBcem8s vJzcAz+gZ41vH0afLPRo3RbUmJbxhkzX2qxPZ8w8mH4csTSIAfCtdlG9h+sqXWK/ HB8Hxxk1zVahPSqHo8i5PT//cSM1SMES5K5dw9dFZrCO0IcQZwy81MDxJt6sw7cK mxCO89fZVC1PpPgh352jWh1DUKqvQ1K5hok8zAzvQvdKimWfoG7K2sRXMuvDfn30 6F6+kWCGEzM3C+oMqEhLXAqhQl1FCfv4slyfmZUhHLc8Q30RJy3R4gIYpigVl0h0 pP5ZQy01SqklRBxg1naWBx/rVAUuWYdIiKnGXPVNf11GLA7mOMsZVIzXni6HYXU= =ycQz -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: GPG Software
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 michael GRIFFITHS wrote: Sorry I forgot to actually answer your question. It will appear under the add/remove programs. For windows it will most likely be named “GnuPG for windows” IIRC, it will appear under Add/Remove Programs as GPGOL. [GPG /for/ Outlook] JOHN ;) Timestamp: Friday 02 Oct 2009, 06:40 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: http://www.gswot.org Comment: Personal Web Page: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJKxdiaAAoJEBCGy9eAtCsPbxgH/1nWTl0gQz7xtpluar+mQgDd p0bxpR/f1crSt6Uwy2jOOa2cK+N4Qmj66skfxy25uUlkVcblhGoi+ISj75J+wF2J MjAMMNlME6Z9cJgXZXNfZclwzXbCV0/qCn3VzwZybWmrKXIywlV+AZ4o3g/pYYfc sjGmYKs5ejZ9zKsSFBI02+6rPBttKLFxEjXO98890J8GA9tXNtxk28jxy98T13/6 os/4zdl+R1J0brqLJZFRsHswGeKuvCdENEnoU7wXekPq1lCuTeKCkvifIpSH++6W 3l88gGgoXivS48YBU2go2VkhrC3LA/RS6VRGudQFCBUoaeQhzVAEYXo7utPoMuw= =NIqC -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: choosing an encryption target from a User ID
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 John Clizbe wrote: IIRC, it's the first usable key with a matching User ID. Period. First one it can use. My usual 'solution' for this is to 'Disable' the non-preferred or unused Key until such time as it is Revoked or I have been otherwise informed it is deprecated beyond any further use. JOHN ;) Timestamp: Tuesday 22 Sep 2009, 16:09 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: http://www.gswot.org Comment: Personal Web Page: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJKuS8VAAoJEBCGy9eAtCsPIAMH/iHFYbkgRit0CWEPDq9Oyhdi PvJwBnppkbU1YXF54MEV2y9+88FSl3A5crZyBkLt+MKvMEuYZO906+7xxmNQZ6u6 7wCNYjX5VbiKVHyT4k4N6AJBn4fuZB3jswK9yWylo2Loz2YjDfvnnpXIbxhuM2co ct8aiCjOKPMdvaw9KwhgcczOia0GGZlK9Rp7qCrt6TS/WguRecQX9h/NpZR8jjSY S6MpSIuVXvoPWU/GlednH2Rmp11f7xdOKHwYkwDV9gq03ql8l8sTdzFr6T0LEBY+ tEZRroTaoUfu53+yvJm75kkkqBlRpbVEphKQaGbaSWaxCDaoU5kYkfLlztlxXlQ= =X28H -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: choosing an encryption target from a User ID
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 David Shaw wrote: [1] PGP has a GUI nowadays, so this sort of thing doesn't apply in the same way any longer. I don't have my copy of PGP command line online at the moment, so I can't check what it does, but I'd be surprised if it didn't either take the first one or give an error message. Like GPG it utilizes the 1st encountered Key that matches the Send To: address is valid. JOHN ;) Timestamp: Tuesday 22 Sep 2009, 16:57 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: http://www.gswot.org Comment: Personal Web Page: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJKuTosAAoJEBCGy9eAtCsPZH8H/1ARVU6lWN9IoaWrMGgf/z86 U33uTXD5rRMUZcdpmoFvwkso6Gc5vU7AM6yYcl5A8yYBWkQ9USfVhGZEVB7pX8/n AGKcHfm2TALDxCknqQWXrI7k1CHY10nQ9gNjwHooHTYIV1gTavm6tQGYPmQOsOds aKBITuxIw3hIcb6tm8gObi4V0I1NT7Qp4oeMWHJAhcDHJJ/KIoSRe4a4N1176eYC vdc2S6VT7tLqiuAH22np4e7Je1epTTq+0QNwnrKuMLTv80EGnYf7qixotOhaNWrC 18TSYarG9t5biEzc/vJEAWQEdCoN6af+mr/2aiGNBX5ikh/mRC/bA180ejtoKR0= =dbA2 -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: choosing an encryption target from a User ID
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Daniel Kahn Gillmor wrote: On 09/22/2009 04:57 PM, John W. Moore III wrote: Like GPG it utilizes the 1st encountered Key that matches the Send To: address is valid. this is not what gpg does. gpg simply chooses the first key with a matching user ID, whether or irrespective of the calculated validity of the User ID in question. I was referring to the validity of the Key; _not_ the UID. If the Key isn't expired/revoked or disabled; GPG will use it when it comes upon it in the 1st order encountered. So does Command Line PGP. JOHN ;) Timestamp: Tuesday 22 Sep 2009, 17:07 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: http://www.gswot.org Comment: Personal Web Page: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJKuTygAAoJEBCGy9eAtCsPB+UH/0OUuuUAXhTG7n4lTpXkedjO TwsYHPLsCvTws9Zgym+Ojw/NuPeD27hb82AWHz128mF+iL/88TJ5MCdLb/RV7tm8 fAMlSDVDjJQELUDKwLyhT3+eFKSh3SU+PegRmf0yZzEdj01Fv9LURb9O7e8TxXWQ sOMTxv9b4LL68ievBfWURE+AW2MtVBGRCfrIbbEQfeMsMGjKDD0jTZ+CoOWuaeY3 rWhSHQt8Fn23r3Wxc0D3FL1Tkk3KojKNt39NQI9XBMk/1D3/CIz4YS1Dw3dOVH0z 8FI0eRLTnm7RIN6i5C5cDOLUuUBdAkTmOSJ9zkikBAeOfs7K5i/rQKDDZjjAMe0= =W8qb -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Build Question RE: svn5158
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Attempting to Build svn5158 with the MSYS/MinGW Environment I came up short with an Error I haven't seen before. In the doc Directory the line below caused the Build process to Fail. gnupg1.texi :4: @include 'version.texi' : No such file or directory followed by 4 lines of WARNINGS then stopping with makeinfo : Removing output file 'gnupg1.info' due to errors ; use - --force to preserve There were also 2 recursive Errors preceded by [make] Since this one is new to Me and of course I am only interested in the executables and not any documentation I am asking if anyone here can offer some Good Orderly Direction or can 'school' Me as to what I have done wrong. TIA JOHN ;) Timestamp: Sunday 06 Sep 2009, 16:10 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: http://www.gswot.org Comment: Personal Web Page: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJKpBeBAAoJEBCGy9eAtCsPLE0IAIuRSwS3sAmcMaJjvf6rT0Ra dAFDpX4uqTNl4BlL+aYMa0DG7MVJ4YTw0N6hlDmdto5eARoF7dRNNwbTjHDfH0vq 5/YbRPgOgZpnOwvRXqWQyS4V5Rri0OdXX0JngHoAqc3rzPrhrgqh1yBln46uSZJy 5GT0ejD8E4CMTzsXlaYCHGCLWvmsZE/Se9wPMGiKWJdg6fI77cEAaytLkcGB7v80 xbHOH8hVGkZYSvwkm1rb7Wtag1kW0ZHibSaqc4eiJ4Cbk2CDYBaOmIAAXvbbmZG4 sOfGM/jcog16RxYcx+PqAIFgVS8+25YnQ/6e1WO9lFk2aoA7n6OoYdoB1I4pQKs= =YIdN -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: BZIP2
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Werner Koch wrote: ftp://ftp.gpg4win.org/gpg4win/gpg4win-light-2.0.0.exe ftp://ftp.gpg4win.org/gpg4win/gpg4win-light-2.0.0.exe.sig and select only the GnuPG component. If anyone tries this suggestion I would be interested to learn if it is compatible with GPGshell. TIA JOHN ;) Timestamp: Saturday 05 Sep 2009, 06:20 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn5068: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: http://www.gswot.org Comment: Personal Web Page: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJKojt8AAoJEBCGy9eAtCsPn9IH/1adLG5ewWiu9csl+u6fPECZ JGXQw0tJ27Pkz8cNXRCxbOGpd0apyH6E7aTFsTmuodT6MkaFIylToqLXXYhs4MgL nNldo642TfgxfnJy/hryuUdeevXkSr2rb67u0nP7wggVCsGRZBStV0Oko/hyD0GP O6aHCqtsjuww+iLB1SvBr19DJPjkej0gJIHyCSjaOCMuaiem6gSJgzUvO6s3MHGD 6TChaODWWUtsnKlN4sdRG3ZhYCl2LUUesdq52dc9vyImCukrEi+g3lCoLay2yMS0 GQQIBRsCb6IxvnRonJE8yF7WE1MUBta9m6JkdDeymEP7piLazZ1axMoJzzsJT5A= =aCcZ -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: BZIP2
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Sean Rima wrote: Just removed 1.4.10, installed just the gpg section and restarted GPGshell under Vista and it works fine Since Werner and the literature state that it is Ok to install both side-by-side is it really necessary to uninstall the 1.4.x version? =-O JOHN ;) Timestamp: Saturday 05 Sep 2009, 12:50 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn5068: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: http://www.gswot.org Comment: Personal Web Page: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJKopb1AAoJEBCGy9eAtCsPNdQH/j/R/D8XyFtYBeXRCs5CB3Xb VWE9FCrpJyiJj3wnPdlxA4ADCexXvA+CTycV9jntexGwYdX8vNQZb5QYLut4Rvjn WRz4T6NP2h4aJQS/iOy7PuNXqJ8+z0bg952Xt2JmPAiQzRHo3b5NFWbHV6XtnQM2 QXW9P00TIxPZMsfKy8cqkyrtPb7rPy4BLeqMZyOq/WoVcbNeEJhsUwq8FQN67T9n GuWSddGN7SBOuvaroYJx618/jTefLzSSh5jvXoTQoqOh1VUXEq3A5r40UQqI1QXX W19+icIDFuUXNZVHpx/BqKKCtolqY2RS5J8vJUcwAIKnamfS+aQn3TLJvPB445I= =kMAj -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: 1.4.10 BZIP2 in Windows Build
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 David Koppenhofer wrote: I asked the same question in the form of a bug report on g10code https://bugs.g10code.com/gnupg/issue1126 As you can see from the bug, it was recommended that I use gpg4win - nevermind the fact I don't want or need all the 'extras' that come with it. Thanks David. Rather than resetting the preferences on My Key and then asking every correspondent to update the copy on their Keyring I suppose I shall remain using 1.4.10svn5068 to avoid receiving messages that I cannot decrypt if they were sent using BZIP2. SIGH JOHN ;) Timestamp: Friday 04 Sep 2009, 15:44 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn5068: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: http://www.gswot.org Comment: Personal Web Page: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJKoW4kAAoJEBCGy9eAtCsPIZwIAJq2guyppFJ2Cf7UL/4L5k8l wrS7m7D1PQKTVMMEtTeWFoHXzzPdDIOn1B3YyaROAYjkKAcR0MhK1nnlN9YwlPQD HuVKVQ5nexhHxYV2aPolZYp3K1ZhpXPBeugfwR3Q2f9HQZyai0UTPSuDH/zkYNRZ XvEkoBXixdY5FKh1m59tJ2uiNbElXSfAKzhpUsN+49i14zvyFsOm33b2lmXN6SHf PEU9+Ujw0dWJ9N5bXxU7KZMux7JLjUOShZebsmjZ+ZHtEUBbGD6VVdmGsg51+57H ZqJAjeK8FyO9kSXdyHZ47atntvcszvkOIyh5MP60LHPy02C0QUp43ffa6nYyYXM= =g4Bf -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Two convicted in U.K. for refusal to decrypt data
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Julian H. Stacey wrote: Hi, Reference: From:the dragon ce...@hotmail.com And if you look at the cases reported, these are not system admins refusing to divulge data, or even regular people trying to protect their privacy - they are child molestors and wanna-be terrorists. Bollocks, To be charged is not necessarily to be guilty, The concept of fair trial presumend innocent until found guilty in a court of Law, must preceed assuming pronoun convicted applies to each charged. Just another example of the thinking that says 'The Police wouldn't have charged Him/Her if they weren't guilty.' Not the sort of person You'd want on Your Jury; but probably a neighbor, friend, etc. This attitude is held by the vast majority of 'all people'. :( JOHN ;) Timestamp: Thursday 13 Aug 2009, 10:50 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn5068: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: http://www.gswot.org Comment: Personal Web Page: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJKhChkAAoJEBCGy9eAtCsPNnQH/RQZKvkYc9et26rmKfp+snIZ iHh7EPTjDafjuZ5DJYVDMvU/iEWPRLFEhnjgods574zv2jh0ZqbPp5DqbfLTvx3Y ZPh48DKz53exnF2tcJ4xnRPE2ZRTnKUED0LKd0nD9X2Ddj4Bz8XekvvRmcWdAtE3 CQXNb/AXBjN9NEtqnnR7aUJTHIsfjR2OT4Yw+dJkV3tgAQt7nHXvEx7mQjgAV6bP M/KzB5ZxkdJYee5RAntjENQBTSh5+T9HN/4x2tHk/dtd5Tdd6J1LGdR5cFzEsxPw zRYRAcurr/X0pzhlvgoWYHO2z/n2Z9FCgMxPaQxxtIsdvQACADPyLg+2yU0OsM4= =3PGd -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: GPGShell caught with malware?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Faramir wrote: Take a look at http://virusscan.jotti.org/en I think it uses 21 different AVs to check the files... Virus Total is another multiple A/V site. Upload the suspect File and receive checks against 31 A/V engines. JOHN ;) Timestamp: Friday 31 Jul 2009, 08:21 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn5099: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: http://www.gswot.org Comment: Personal Web Page: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJKcuG8AAoJEBCGy9eAtCsPdyIH/0VLyolvlaLevv84T3F9kGDO J39GUblSozjGEtRVRT7jLBofy8hKxGiQ5fZgQfJmOffSWnOsjDitpUm8qZvvxdc6 ZfmYMB0MvZfFeRFI+ZYrB1kfFideWJ8ZGubc0LgKwzLzBaRYVUnaDAi+1djBpbi9 57poYwhh7CFgQ4OW6pbawNWSWvYlwqSVP3x1IBYw2ZEfGwB36CBI5TeqfymlbISR mWU7lZEpWKFpIFf6vMW3R9HRlvGLpOQDP+gcMjBe/CNN/7GcfOWOo78lKPb4Gn45 T6CjhWPZC6/9VHdIvGNlwLtB6JeBkeN0B6We8v/GNpBEbJP4fzblgYJV34WFt/k= =N8VJ -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: 8192bit RSA keys
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Jean-David Beyer wrote: Another reason is that even if increasing my key size to would increase my security in some sense, I do not want my GPG security to be so strong that the black hats would bypass it and torture the key out of me. Depending upon the sophistication of Your adversary, brute force may be the 'method of choice' even if You were using ROT-13. :-D JOHN ;) Timestamp: Wednesday 08 Jul 2009, 15:55 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn5046: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: http://www.gswot.org Comment: Personal Web Page: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJKVPm3AAoJEBCGy9eAtCsPgtgH/25b9+z5sFdPKGFt3Cs6LhD5 JIyCFugs6DUfTgiKBtgiBhsjwd2uQ3F9yhMykPRIkkIcQn6nCjQHbYMCCvUXlUry 2a7yaUwoOeuons93f5kUyq278nx88h6A71oe/RqC2g5yVdk7h6RdtkDKJhaPd4Yf BVpJjdU4dOTidxHIoBpr4tkkeHjOcr9M7rzSZ21LINnqvJpGEVNbSMaYDyWVEmRN OiBAaZfU8DDDXYciAzaZGl3JRjzmfawyU2q/PrWXkthUcvzFnhXPG7b20rRfW/oF fsHIZfF+4HdIaS5S9ox+/NaPSRSNtB/OFhFc08QtJ3wXz5bPqn6XYz6XOo6aex4= =Drlu -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: verifying rpms - public key not found
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Chris wrote: Why is my old email address still shown? Is the UID with Your 'old' address still on Your Key? You may wish to Set Your new address as the Primary UID and then revoke the UID with the 'old' address. HTH JOHN ;) Timestamp: Friday 03 Jul 2009, 11:37 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn5046: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: http://www.gswot.org Comment: Personal Web Page: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJKTiW1AAoJEBCGy9eAtCsPy6EIAIRK8j1YBGDi5SxaLW/c/caA H1SZQEguI1cFXzBrUVp2Zt38x1UcqVdLPPHb9ZXgSWs5hRYGwvSY8wLUOmZTP3Dv dFwxhy0Ii0uuOPlmG/SjWe5d/4Ns5tezielJRZmhE6JZ5aCHvdjeMcgapLLkuvGS Qiyw9W8zlxtNRNU9/DWUBQpuiCwn0Z8UfKlNdYHMIvdPqfPoF7SVWN+nhwseLCZX yQGb+KOQKboOYwDTExXcrFr6/RtR/uqmjfIl7paoAqlu1gxbxV1n+VIBXeMnAOuO 49B2Cai/G+UpalEKIh32PaQloHKBW3TAjoTvEXuhQS6T2fxIf6gUR28eHShjBoA= =MtrV -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Solved: Helping a friend setting up with gpg and gpgoe
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Steven W. Orr wrote: He was sending text and html as separate attachments. For reasons that are not completely clear to me, I was able to verify and decrypt the message from inside Thunderbird/Enigma by selecting: View-Message Body As-Plain text. So, people shou7ld always *send* plain text, but in case they don't, this trick may help the situation. This is because switching Thunderbird's View Setting to Plaintext is actually telling the MUA to 'convert' to plaintext which strips out _all_ HTML character encoding. This is a Thunderbird Setting and not an Enigmail Setting. It is for the benefit of folks who desire to never Open HTML Email. JOHN ;) Timestamp: Wednesday 01 Jul 2009, 23:08 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn5046: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: http://www.gswot.org Comment: Personal Web Page: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJKTCTXAAoJEBCGy9eAtCsPoO8H/1EUcR1bM1qA2cO8jddAY64J MEMIMZrHduS2qEVaE82AJa6P2Uv4eI8WVa9IZYWIYNHR/K1BKVqG5bRk8YYXNxWB 2xy+Jb5Ks8qI+8xYtLi11OkOp6Y8Bb3WU9K9emKCAe7+SKP+cUQarIsnTYvPLk/J gjqaLlHJKl8X3O8dpSQRwA9pO8HCmw+fIlWuH22cNHOtl5jb5hy//+9OpKctSsHX ZSh2eassbQrMJC8pN/1Q8Jv9WPXDlmf9xJZnmQVMyOkgT5SBQlIziRwKRZqxh2Ca A0EymtlDbVVyOc8EeBF6EMDCVo+SDFRXv7ejBkmjXViaFr3DIPKW+KGlAs9Z6Zk= =SRbn -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Key propagation
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 David Shaw wrote: It boils down to a very complicated way to say the same thing I said before: You can ask those people, nicely, to not give your key out to anyone, but that's about it. And 'Nice' PPL will honor this and those whom You're concerned about will cheerfully ignore it. In fact, Your attempt may even be seen as a challenge. JOHN :-\ Timestamp: Wednesday 24 Jun 2009, 10:51 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn5046: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: http://www.gswot.org Comment: Personal Web Page: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJKQj2cAAoJEBCGy9eAtCsPYYsIAIzjZohuuIfU5f/S4xqjtHZ0 DPiZSLu7Pw7Ih3zg/pBKMjV7Z/Jp8TbjzrL2lUwfAM9L0MoThPiadiSk0S6rVnA6 lxofekyFVoXnQ5EIzjSCEMsUFEA/XsQi0vYxrUSdTQGJ1FK8UILfGGAK7Ad0VTvj +zk9qAnblO37ayeJXj1HUVOj5D5FJc9wXwkXaDA4Md7N+3qFaQ989PHsnsMoIxmu 0cowqGf8fzvGVRppT42fuLflMOvRfS3kW8rGV7Iqv7eRdDQwfT8JsurAKb/dilF+ bIpODk/1fDrTxNqoRwfRxQGNB8gfAEqNhbYdODR7Nw8y8/0siaL0Y4SDjOVccV0= =i9kf -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: PGP.sig verification with GnuPG?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 allen.schu...@gmail.com wrote: I tried recently to verify a PGP.sig file on an email, the other conversation is still going on. On the valid email that people are coming up with valid, FireGPG is not recognizing it as having PGP related information. Will GnuPG? If so, how do I get it to GnuPG to test? You may have just done so: gpg command line and output: C:\GnuPG\gpg.exe gpg: armor header: Hash: SHA1 gpg: armor header: Version: GnuPG v1.4.9 (MingW32) gpg: armor header: Comment: Use GnuPG with Firefox : http://getfiregpg.org (Version: 0.7.5) gpg: original file name='' gpg: Signature made 06/21/09 16:11:31 using RSA key ID F55651E0 gpg: WARNING: signature digest conflict in message gpg: Can't check signature: general error JOHN ;) Timestamp: Sunday 21 Jun 2009, 18:57 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn5046: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: http://www.gswot.org Comment: Personal Web Page: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJKPrrfAAoJEBCGy9eAtCsP1BYH/2nM8IO8QO7wNSTwxsqZvmzr kHqYNXKW5vghExeNMhoLyKwaafKZik5bWUiwTqr8efLwUNqV9jmFUgSArgO5HhcE U6Czr8jywm6O4aHBjpGCe5REoHdBsrQ1lKKgCtVgIpZdVBIcYh6Hg9IS9/m9LlDA VUY6bU2gMcnJLic74++qd2cgT+RVphe082fq8gqU8wClZzrVDrsu0Rif5TMAofOP YL7szID2bPazdpPNsZYyMjNvacFQ2oPrHGuDueUNxBQdez6rb6soItJmaIULr5qf sx9xF9lTyraFerFDZ8bZ+jNDkHUMz4g7Ngh1v4Q4rgrpTVIrlTe5gGqcmknOPO4= =HBHG -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: gpgshell and gnupg 2.x?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Peter Pentchev wrote: Errr, unless I'm badly mistaken, gpg-agent doesn't come with GnuPG 1.4.x and to build and use it, you need some of those component libraries. And, at least for me, gpg-agent is a very, very comfortable and convenient tool. You are correct that GPG Agent doesn't 'come with' GnuPG 1.4.x but IMO, GPGshell is far more flexible and simple to use on a M$ machine than GPG Agent. In fact, having used GPG Agent I wish GPGshell were available for Linux. JOHN ;) Timestamp: Thursday 04 Jun 2009, 18:55 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn5031: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJKKFEBAAoJEBCGy9eAtCsPxlAH/2MGwu/V1x6Ol2RD19YoRO82 N8h2aPPtxk+Oin/AWJz9nnhmYD5QKSxyvN4/jgNy/ZrqlMrX1pM5Bs4eYUS1yKKc aFmZEpMnfsVH+QfLwhNOWWzW519NcIp+wHfucqrPSi1/lYoPYf+Rjv0OV+ujIMMn 95sG/5ryo4r2GQmiYrlezKU/efRCu+KaGx2QN5jS3eU1IKpOM7K2F+cXoZBWFsBO Ioy8FeMNBdMo/TilmpB2AYh1j+ORa0ACoGmVp8c0j8L9UX4q2wXgICaVl2OslyXS EpngnyfmBFqwkuRJde49a/xE4nuPzQlsyN0wJFkS/c5+PU81z5OJ1SoUd3m3ODg= =XWRS -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: how to sign files inside a folder?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Faramir wrote: Hello, I saw a question in the support list in Spanish language, and it is about how to sign files inside a folder, in Windows OS, without using additional tools. The goal is to have a tree of folders, with files inside, and to sign individually each file (with detached signature, if I am not wrong). Since I have never had to do something like that, I don't have the faintest idea about how to do it, if it is possible to do it. Compressing the folder an signing the compressed file is what the person behind the question wants to avoid. I recommend the addition of the GPG Frontend GPGee [http://gpgee.excelcia.org/] as You may run this app on a Folder and You will be left with the Folder appearing unchanged but each individual file within the Folder/Directory being Encrypted. Signed or Encrypted Signed. Just remember that if You wish every thing left Encrypted You will then need to Open the Folder/Directory and then Delete/Wipe all the Un-Encrypted copies. HTH JOHN ;) Timestamp: Tuesday 26 May 2009, 23:18 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn5021: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJKHLEjAAoJEBCGy9eAtCsP6kcIAKeCf4X4mDyAK2TEE+Hp2A+i 1lpWB0qUHzo4nERT785sdKg2nqndmyYIVTyzbJYEZya38gyUyr60xcNkQKMGHDQO /ogLfvZI+JjgiYeizWz9SFNaR90hqjnbaYYpXJIf8nk92tQCzRdzZZLUtEn1qvvb tOMf8kZEqNRk32lenjv6K8LR7cQ6kaO16qMNiMYHzSHxA9ufHXRSqKdfjxy48fyB JMRtXtLb0oJesXwNAid4eX1a0EhUl+GAtKnABxFCBjsEJjrfpYIlVYr96qHOkaQ9 lesfHohdWkxmRZzzUOpWDCUVn5J/ezDXWnUJSySPPz5dhCLjbvfEYbp+wP/Q+zI= =Pmsd -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: GNUPG 1.2.1 problem
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Pawe³ ¯uk wrote: I can not upgrade my current version of gnupg Can You please be more specific regarding why You cannot Upgrade GnuPG? Since You are apparently using a Windows O/S [based upon the version of Thunderbird this message was sent with] I am wondering why You are unable to simply swap the pertinent Binary Files with ones for a newer version in Your installation. :-\ JOHN ;) Timestamp: Thursday 21 May 2009, 13:38 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn5019: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJKFZGvAAoJEBCGy9eAtCsPkBUH/AwyMlaJ+evYieKI8GG7Xi2E sQ07BoNoYzFUo1ELxYYK/J8H3hduC7TtoWVV7eUFqU6qqTCHSlzAPQk9M+jc4k4u YcPchp4lpBQ+suA6eOtBiePqvca86ggYKNtEp9XxMwTqlvy81ULIwTC9PsN0zKyh JCFYkZhAAa0X6eX573u3UcA7wDSAm3LhMNhBZL/FvmTToEg3WNJVWFO3QZOsKrjQ urV5USDjfCK68Dd8BxXevRXCPI1g9AQFVDewTaxRAPgF/ntMBIxHT9k3ukZJkF9U 0JTseIVCQDWe6NnyZNqO12ZcR2Ccpy09HUVsxxMHwBIP/b4WiYH4RSJNjZMbLtI= =vtIb -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Key Transition Letter 2009-05-21
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Allen Schultz wrote: Thank you for the information. I will clearsign this using the new key only. Let me know if this signature does not work either. OpenPGP Security Info UNTRUSTED Good signature from Allen Schultz (aldaek) allen.schu...@gmail.com Key ID: 0xF55651E0 / Signed on: 5/21/2009 12:47 PM Key fingerprint: 16AD EFE1 D68F C8A8 B086 68CD 1A35 85C7 DAD4 736B Works much better with just a single Signature. :-D JOHN 8-) Timestamp: Thursday 21 May 2009, 14:17 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn5019: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJKFZreAAoJEBCGy9eAtCsPooYIAJvpfHU++TMnzzIk+WeK2TJt /aHasNt68bdMw0O9MDc7pHkzuH4tEpW5LSa9sf9M6/EexbNovLBkb1JFMeGajHSc VrTtiozjXos33qcL9D155gCHb//T0QtFKvDKZWCsYP403wtlMEiQL8YiP3lwGmLk H3+g0O0/rS0k+ZSyiEYjYk0n92W40SoOOJyBtN87DEjW/av66OQRJSFjSO2Avk1j OZRHvkh+HM/xZWbNI1ffCaaGJKMSTLHKA/xtMOiC+NdUpWuNo+pZvVQTZLqjI4NW JM+qQU0aeS5tSo9EwqMKflBGOWPDm5VL6+mVBMe76+uawOqSXQL45Tp8dBeBons= =jnd6 -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Import Secret Key
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 jnhemley wrote: I was sent a file to decrypt. I got an error saying secret key not available. I then tried to import a secret key from my original file. I got an error permission Denied along wile file rename error and error reading file. What am I doing wrong ? Sounds like the 'failed/forgot' to encrypt the file to Your Key. Perhaps You should request a resend. JOHN ;) Timestamp: Monday 18 May 2009, 07:10 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn5005: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJKEUIZAAoJEBCGy9eAtCsPK64H/RiRmwRBZgd3GLmtWUDrH2p7 8vCP3isy9IuKzMZ5OjmG3oYJP9E/M8zLwgs5U1Vvvy/lhCiLrRp40ixCyABM0eU4 OiHxjPhvK6K6TPR3LCHc7zTE1HVr3Y41vcBDmlBZBwLBUE9dJ1Y3Quz0WwaylYc+ rlNGpoU5EJ6+Bg+tHdhALtuMSYcVPYod8CXmaeJaBNV3bnfsyYMyohSF7eM2EmDj C/wAFXv93vYr0coGHpE3n/46cbxXVBr0d1/n5EZb6JzhSc+x9LqY6x/XQG7lgxpV fxiDHs15vYo/th16/i0sFAmkbuh8+mGVLBHQv+GXBgzksPbxBSorbI3VkUvyaYs= =tDpU -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: GPG 2.0.11 and Vista
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 pin_sf wrote: I would like to know if the latest version of GPG supports Vista. Thank you!!! Short Answer: YES! JOHN ;) Timestamp: Tuesday 12 May 2009, 13:31 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4995: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJKCbKAAAoJEBCGy9eAtCsP/84IAIdQx20GFZiALpv2pyx0+tSO hsQ8rJOW00w+uhAgzyudopXzgGgN+JRYgAr3JAIZamYZxy+NgqhnZYRQDAh4gTQp +ZhpoGA35lkberSr1ukcAnR8vd0EPFR+lkMl71O9jskIPCVKs1/zAUNy2lBM3hQI 95l/wnA8VJB8Y/Prmk+9uzft9Z1hUBAxD4ghhJJWuJULPmJjdUaS29WX9oZncCwi sgNUDIslLK8bmCXkU98+cKUBmYADz6il+nvdVOwvs2BEvyKON51HjrLf8VCQqLBW v4vbDG1E0pjTQRmSHyFkX0uzW0tWjJAHQjduPpK9J0RO9efDHjCzv8RrIHCver8= =e/eE -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Problems changing hash algo for clearsign
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Tyler Spivey wrote: Hello. I'm trying to make any message I clearsign have a hash of SHA256. Here is what I've done so far: I've added personal-digest-preferences SHA256 to the end of my gpg.conf file. According to the manpage, this should be enough; since the manpage states: The most highly ranked digest algorithm in this list is algo used when signing without encryption (e.g. --clearsign or --sign). What do I need to do to make it default to that on signs/clearsigns? Ranked = the 1st digest algo listed in the preferences string. ;) JOHN 8-) Timestamp: Sunday 10 May 2009, 11:52 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4995: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJKBvhvAAoJEBCGy9eAtCsPZYwH/AiRUr6KRxbviBsiazyttNM/ ouOeMjIpkFSccLWsnDBE6vIOU+JUDXbS9cl/DjO4W+FbNWlnlUz4yjwbzygMao3o 2eeUMNUJNRqidB5NXzX7+z+IZxho3x6MJh+017bhlAwdFCcYjedPR7CJsKzSPDK3 UOcnLNZ0DngontojFyT/SoeZKO7WF/xu/6uZW/24Q9HmqNbelVOOfEjaFWtd6J1+ NNvQyal1QK2yqMcVIRdoz6weBpEsSAtx3+pZGm8/MDwhXhgiYnCRFGW/L+KYOaoS F8/xfbPzzXr+5b95CQBbaxA4zu2U3LXHLQ4xFhX/0t/giM4hlwzcJxUEs+TmHos= =SyjZ -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: delete bad UID from key on keyserver?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Anonymous Remailer wrote: One of my email accounts is unusable so I deleted the UID from my key and uploaded it to the keyserver. That accomplished nothing so now I figured out I should of invalidated the UID and then uploaded it. I can't do that now because I deleted the UID from my key. I have to get rid of this email address from my key or people will continue mailing me and I won't get the mails. Is there some way I can delete this UID from my key on the keyserver. I figured to try to add the identical UID back and then invalidate it and then upload the key but before I screwup again I figured to ask here. Thank you. Ahem Refresh Your Key from the Keyserver and then Revoke the UID which You will have fetched from the Keyserver. Then Upload the Key with the Revoked UID on it. Then Clean Your Key in Your Keyring and be prepared to repeat having to deluid every time Your Key is either returned to You signed because the revoked UID will forever remain on the Server. For this reason many folks prefer to maintain a Listing on Big Lumber or a Personal Web Page because only that way can You control exactly how the Key is retrieved by Others. HTH JOHN ;) Timestamp: Friday 08 May 2009, 15:44 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4995: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJKBIvJAAoJEBCGy9eAtCsP3HsH/2Gec8jz1JA5iPcABwckiT10 alEwOt/jHsLu5oB13+6loh16yB44iueIiOrZPRIChjOICNFSB17XyMggK4nUXBQl PMmJZRraSwuzD1pjtWMmSUZ9HhreqvpmKd0usDFRu53KZLawuIYiLzvL0Vp4rakl GNAdTNwSvcaE07JAgVNrIpegnXU04A0bCuyV1nDym06zjeJb4bVYlbpNoq+JG4gB Wlas3Lo0eno/xKfgvzfeiWQTov3SrlApBDB/ikVfIPcEjdPMTdWTIQZ24GP1mCB8 lusK2QFDd64SFDko5Igx7AEzQAaEOOURLzoLJ9a3QAyn+3GEXkvZM4SQVDS6nxo= =Sm8l -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: How to 'un-sign' a key?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Joel C. Salomon wrote: Folks, I foolishly signed a key I had not verified well, and the signed version is on a keyserver. How can I unsign it? Select the Key with the offending Signature and revoke the Signature. the command is --revsig form the Edit Key prompt. Promptly disseminate the Key with the Sig Revoked via Key Servers and perhaps a direct email to all correspondents. The 'trick' will be to get the Key Owner to re-Import His Key with the [revoked] flag on Your Sig. :-\ JOHN ;) Timestamp: Thursday 07 May 2009, 12:36 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4987: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJKAw4cAAoJEBCGy9eAtCsPdtwIAIFITPdWscLfZrAwo8C+RKRF K+89j6hDze1oP3U3xKMsn1n+Q025aoFs8pUalA9ziHKurIrV8tzt5vk+hRWjlx8Z 8JoibmSS/dkEnSN4EL+4VNzCw7hRJofNVqIDYTP3Oa4Oo5JOLR+Lt1SLWYMkHh2R wdQATUmW+zaK5e9e6e7EhGKuLTi64GsGDSUb6BBMQzEjiWbzcAVJs34IVi/p75pf pn9bNJDm/Poc0vYhtVTaoMIvw9lflCUHS+MNz6jQhIYfUIqhVugUEI9jGdGBimwM XvyVNBx/xH7yKDQ9pEsc+4+Rh5pU5WqxASfpsRzngAyZGzDPceE6w2wFaTu1JKE= =lVmM -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: New results against SHA-1
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Nicholas Cole wrote: How does GPG cope if two keys on the keyring have the same FP? AFAICS that would make things very difficult for most of the front-ends, especially if they had been relying on the uniqueness (in practice) of the FP to specify which key to operate on. Please show Me an example of this happening in the Real World. JOHN 8-) Timestamp: Monday 04 May 2009, 17:00 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4987: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJ/1eSAAoJEBCGy9eAtCsPd68H/Ry2RX3rN0VqnB/hpjv0TlK/ grc0FkSF4CKeC4JBG/9mNOnTIrwR33mJlRa7mLuxH6kd/o/9YNfc+UTKVyxenPTh fBj3CSsBGtzz3HknIOyKNz/N2tujZRxGnCMAm+40DQ9UqgUMzQNPvZeFOpzrjO3Q rTI2KPejEfuqZc8tS/eSegzo/QNIvJtp5XngEmAASJ4VwNg+jdiijONHUGpP3v7X UJfeFM+F1pVB8vjA9yTmHxrp6GISTvvscFqrqr9HwXF24MVKBxbfGcD6mAlSuBed Jl7wsgyYeNCw5ifsW+WTDi8ikcM+T1ztaFx4NLM5qJyaGjVhFR8kBUiiyO0kAyg= =ouDV -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Use other hash than SHA-1
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Simon Ruderich wrote: I would like to use a different hash than SHA-1. I tried setting personal-digest-preferences SHA256 in my gpg.conf but it didn't work. What hash can I use with my key (default DSA/Elgamel key) and how? Which version of GnuPG are You using is it DSA2 compatible? Try using the gpg.conf entry digest-algo SHA256 JOHN ;) Timestamp: Saturday 02 May 2009, 08:11 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4987: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJ/Dh/AAoJEBCGy9eAtCsPt20IAIMlEK5VhAwkgkxakM4c1B31 Ienm5Verbm6N6QQ0BOoZ+ac6oZq9z3Aflt9FY2FIXKQzDJ/B9Y1Aur59HemL6E3A +dNr3iLJy3dVz5A6F2l+ZGIPX2r+Vnz5iK0dkmlIf+0eVNDG16VWK1wPFcr3O32c 8qDACPgIGZ0zTpQyl3YsMMcPnIfLaRgpHN1LCPMwHdMgnrJbwpRrHCL2mozDz4zo lMn9doPwN5c12HY2xQvfD+/y25VmAb3ZpxbJRfj7efllTZne96aoGGSpYqcrD7lX OYEceo/qA0RPQp+Fe/o2p3QKQAlhke4KAatLngREjkJKmBdjEAmrwTzPPQWh06c= =nHuP -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Selecting cipher to generate a key pair
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Robert J. Hansen wrote: Smith, Cathy wrote: The customer said they have a proprietary implementation that only supports Blowfish or 3DES for the key. I'm still trying to find out exactly what that means. Okay, that much makes sense now. I would suggest adding: cipher-algo 3DES ... to your .gnupg/gpg.conf file. This is a sledgehammer solution, and not one I'd generally recommend; however, the downsides are pretty minimal. Then encrypt a message using their public key and send it on to them. If they can read it, great. If they can't, then the problem is their proprietary implementation of OpenPGP is shoddy. Riddle Me this, Robert; _if_ The Customer has a requirement that 3DES must be used [and they are associating it with their Key] then wouldn't this mean that the *only* preference broadcast by their Key is 3DES? If this is the case then wouldn't GPG automatically select this cipher algorithm by default as the only compatible one between the two parties? :-\ JOHN ;) Timestamp: Friday 01 May 2009, 19:49 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4987: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJ+4qAAAoJEBCGy9eAtCsP3o8H/ja6jCWz1bYjjTNXbhLzd5OE BIgvdlCCsR0Nrm4VY5jGXiOPbk9NYse/43F/DZyQQyyowuRBj3whtpUx6Ueacy+o u5R6skOdk5AG+HKPVwQ4Zgb4LZhl1Fu4VxOOxWXSW01MnJoxVdtwpj5ylZU5vC7C EtytAK4HOh1DuQLQYLICupYXhK4TvnbeDRR9s2n6s9n+q1JXFpOEIk5w5d1iJfOk vn2p8TQ9PrTkMFxweA9gbNoTesH9U5tqmXockb1Mp6JoUz1n56pPWLCyWMxub6f2 GyQNc17RZ/J5qwiY+qK+Mf1L1ONJO3y2zCJfJQxqL0MpODaZFYiOyr3Ws9tVafU= =A7I6 -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: WinPT Enigmail don't show the same keys
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Joel C. Salomon wrote: I was under the impression that GnuPG kept track of everything, but I noticed that Windows Privacy Tray and Enigmail do not always show the same keys. Both are accessing the correct version of GPG (C:\Program Files\GNU\GnuPG\gpg.exe), and at least WinPT knows where the GnuPG keyrings are (C:\Users\chesky\AppData\Roaming\gnupg). Can someone explain to me what’s going on with my system? While this Question more properly belongs on the Enigmail List [https://www.mozdev.org/mailman/listinfo/enigmail ] I shall ask at this time if You clicked on 'Refresh Keys' in the Enigmail Key Management window? JOHN ;) Timestamp: Wednesday 29 Apr 2009, 11:13 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4987: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJ+G7CAAoJEBCGy9eAtCsPxD0IAKDIAKjR1NHsQlArWkeRkcUb 8NrHxvEt0Hk8dDaCzm9OaqNZnbsCoHFrF6cRteHmi7LeJLgDToGdIaLXhXM0c5sK B/xJTysLo3LLDsaDoSsXaxAOaGkGVgRjSu8adPtPbh9DXb7jrz0IKomRoSTD6KYR J3Fu9AMJm4PC0CyZhgXqzbsgIwiJ/qlld6GhwdVpqklA5zs2oC8TPdsl/tpc1wlq wpqBmXmgFjb/nXC7r/fji8wPcJb3x0+YFMaSCtjnCnPoluvlapNi+KOuHJLrtBH6 w3BAd08Kct3dLtRGbXx/fMpzSj8kZJGkMLKNO2fHT3MM2dQU9cLFeP0KQYyg6js= =FGvf -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Looking for a good port80 static-DNS keyserver
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Brian Mearns wrote: Is it considered impolite to advertise one specific keyserver (like gingerbear, for instance) in my sig? Not at all! In fact, many use a Comment line to direct folks to Big Lumber or their Own Web page to locate their Key. JOHN 8-) Timestamp: Wednesday 29 Apr 2009, 15:40 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4987: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJ+K1HAAoJEBCGy9eAtCsProEH/0ifoMeeBMqV+Nmthn9sTlAS PNmCQLGKbgVHlgRt/IQg7UTH2yICkzHNq+HKT45qnmOAWB8mkevzKfcl87I/wTLK Ony7pNXYGH/HOHLam2aKMhBaJcdOhDvAgI1/u87tKWB6tKjEInEtkRFbMVb/CQFz txSQlOXzBHLqWmDl5xJFcL2J+jhHnCaSbz211cRa0KLyIe9/XGWgrqyEIm1xLzhc 9Xah4OUn4lfPPG1PhhWmBHcztccU++Y1tVPh11GJ2/rNm6ZXeQ6DjIM98Q1Pcc6P GUZrqbarufabQbFubqQTZ1/oGC954ER/qUwn32rW0WfexlkyN4cR0wuHlUWP/YU= =LL3f -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Subkeys...
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 James P. Howard, II wrote: On Tue Apr 28 21:48:52 2009, Allen Schultz allen.schu...@gmail.com wrote: I made a key with default settings. Can I delte the encrypting subkey that has not expiration date and remake one with an expiration date? You may be better off revoking the subkey and adding a new encryption subkey. Definitely Revoke the old sub-Key and send that to the Servers to prevent having a Key marked valid floating around on the Servers. JOHN ;) Timestamp: Tuesday 28 Apr 2009, 23:16 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4987: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJ98azAAoJEBCGy9eAtCsPBMAH/3n32M4kKW41arszOodKfpwS AHzLM71QJGecZQZyq9PTM9WjLJ+N4zeuJpH7QzwFibbTr3b/0rbhPyNPxMMZf1bR iiN5XGkCY2iTK/USvy8Fe7Udbovda/g84QtPiDmByQcUrIHJ0/lFGm7sPQJN3oCE T6aELu4RmKSXCp5yYANl92vHSQ5rGe/b5fk5Cl/+31owcOMQGts4Ivx9hzVe7Ybp ybDQHwbSZ2mGcQ21hP8cXCsMpO0Mtb2EI7TpN44Rl0hSArq2ZmU+WgeHCGRhXLAq YDYOxqFCHK25lT2c5rWTSaDehAjkGgZu60QF5dq5FcXcUPewVbc6/QUenyV4uVM= =2PAN -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: GPG and Gmail inline settings?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Allen Schultz wrote: What is the recommended word wrap settings in gmail and gpg for inline messages to work more consistently? 70 72 respectively. JOHN ;) Timestamp: Monday 27 Apr 2009, 07:15 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4987: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJ9ZP0AAoJEBCGy9eAtCsPJf8H/0mQLGHtuNeEWfwHh6DyCY/V N8bRZCF862dqPpxxDb4M6NiebaJLwjIIWaUWwb5bfqBpbGG6NR+2mIqZnPbJCgZ0 3SG5D+8PCQPg/6E9EiZNDPes5WsBeyLz9k+73OUv7mIYQXyOv3CmAvkNRWLjuzJ4 i/0wsro345Wo+yhQCc8c2nKOqf0jb2GzGKMbHeERBAibrWKtLopAQP98L5IYX1uw GjCqF+tse04MSWiDAn5f4nx7aj0aoDnEG4fgQgZU+71zzZ8BRQNafveHWuZV+tZl dDHPaB62NG8qUaJ8CkcVwln92nY4HHhN+TNygEdGirOUF+Ufd+f3pF1qj25ijL4= =YW5B -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: certificate chain depth
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Raimar Sandner wrote: In the end it is of course a people thing whether you trust a key or not, no mathematical model ever can replace your final decision. So there is a big difference in gpg saying fully trusted and you thinking fully trusted. This is why both Owner Trust Calculated Trust exist. One is a mathematical result and the other is a Personal evaluation. JOHN ;) Timestamp: Saturday 25 Apr 2009, 15:59 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4987: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJ82vEAAoJEBCGy9eAtCsPm5QH/RfSaHGZH+edqH37FByiwBJZ cDLodzPtQZRAy2ylgmjtLoAC7tIllGiNtN21Gj8V398+Iu3xeOboQ0sTKHYa8psq CarHkh2hrIqusTBgt5L7kUCy83wFwVeezlMiCCSNbQJ1bYTbRtJs7UPe5o4QUDkd t+dnTauyUZJg5ZoYRkQtdlbDQb9VVA7ehgVsS3SQ7HDzR7Pkk/pPLyaeEQ+LRYv3 hugGcqONscRofURAVSLYuir2dZB8alvud2imI0dYwLlzPVTTNTuWbp/cXHiy0/UM UZ1YxTDjeJsCElBZwT1/sb79KRUz5OEsOncnKIwCiPOLM3ZL5NVwEA7tDoLMIr8= =PzT0 -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Bad signatures on Gmail messages
Werner Koch wrote: I have signed this message along with a simple text attachment as an example. Note that some version of the mailing list manager Mailman unfortunately breaks all kinds of signatures. gpg: armor header: Hash: SHA1 gpg: armor header: Version: GnuPG v2.0.12-svn4945 (GNU/Linux) gpg: original file name='' gpg: Signature made 04/24/09 04:12:59 using DSA key ID 3D52C282 gpg: NOTE: signature key 010A57ED expired 12/31/07 13:09:19 gpg: using subkey 3D52C282 instead of primary key 5B0358A2 gpg: NOTE: signature key 010A57ED expired 12/31/07 13:09:19 gpg: BAD signature from Werner Koch w...@gnupg.org gpg: textmode signature, digest algorithm SHA1 I have Updated this Key to no avail. :( JOHN ;) Timestamp: Friday 24 Apr 2009, 07:41 --400 (Eastern Daylight Time) signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Encryption failing due to missing(?) or unsigned(?) keys
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Galloway, Gary wrote: I'm having an issue on a new server (Debian-Lenny) I'm migrating to. Encryption is failing with the following message: Some keys missing or need signing: us...@host.com mailto:us...@host.com us...@host.com mailto:us...@host.com To the best I can determine( since I'm new to this encryption stuff), the keys are not missing, they are signed and trusted. What am I missing? Just for Grins; try add this line to Your gpg.conf: trust-model always The only other 'thing' that comes to mind is perhaps some Keys are not properly cross certified. You could also try adding this line to gpg.conf as well: no-require-cross-certification JOHN :-\ Timestamp: Friday 24 Apr 2009, 16:32 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4987: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJ8iHVAAoJEBCGy9eAtCsPWkwIAJ6g1b7oUndc1kYg4XG5Ybri Gn0OudIUuZerJ3viNnWWPd5LpALakyaIjqvWrpLGUiVfOS/nBf0W+5af3Ip4Vien Q3etexTpokVjEukTGmoq/bH80P1pp6hUUrC8rf7LHEcKj82FWzVY6POdlFyrNDak P9NAT6rOSwkvAhMQPcCIH6JuuG1Q/yXLXqWjufTfN1Jt+08UxO536LxRAEZLo8W4 TogMdHkNXQ/S1biA25QieWVrptfi05wJ8r7nVKieKrzuXg/Y5PvP5U6ayBMlMziz y9mxld2ssbSFiz6Y6RYwiul+sYIK2OBhM2n0glI5fpp/53LfI5o1U6iSVfWqc0Q= =3auO -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: DH/DSS vs ElGame/DSS?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Robert J. Hansen wrote: Many people think Cylink has a history of regrettably close cooperation with the NSA. Some people consider their products to be suspect as a result of this. Given that, it should be pointed out that PGP Corporation was licensing the algorithm, not the implementation. PGP and GnuPG both use their own independent implementations of the algorithm. I'm not sure how much faith I put in the Cylink/NSA connection, but I know that some do. If you're one of them, you can rest easy. :) Hmm... Well, if anyone is paranoid to the extreme of distrusting /every/ Vendor that NSA contracts with then Ya better stock up on the Xanax. At one time or another the Puzzle Palace has 'partnered with' or spent huge sums of money with almost every hardware a helluva lot of software Vendors. [this particularly includes most Telecoms in the World] JOHN :-D Timestamp: Friday 24 Apr 2009, 16:45 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4987: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJ8iTdAAoJEBCGy9eAtCsPglMIAIWWYmsS1+N/v5qjkqRkVeOY ub9LKG0RKxhg2b+ZpqnS0nleMqM3qdUM0cszD1qKASsq3yigFBHSk+ytqy1SqeC0 A2eQTNppsrwR9gORbE+V9WKz4CZYEBaj1Bvzm/8nOAnVWI6vRM9coF32OYGfvbO9 fdZH8EpthjUdsCcyBHuRD121EPbeK9VFx38oqhF/w1lDnWN8w0qEMr77Wszk9JjO C+QihIIncY0ywI3dr+oORrPtQRwn1ZgZFt8N/7HCxIsB06gtpcMXPjg7bAkjIJFc ZwzuF5ZY+iH4gylTMkNzt0yiSxr5TXj4alYDoR0oR8iJGV1JBaKuiRHnSm2nrcM= =tf/M -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: DH/DSS vs ElGame/DSS?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Robert J. Hansen wrote: Absolutely true. That said, very few directors of the NSA have gone on to become CEOs of telephone companies. William P. Crowell served as DDO and Deputy Director for the NSA up until he joined Cylink in '98. Not CEO's but; many have become a paid Member of the Board of Directors whose major contribution has been to 'steer' Project Bids through the maze of NSA procurement. ;) Likewise, when the Agency requires cooperation from a Corporation it isn't shy about asking a former 'Official' currently 'advising' said Enterprise to gain the collaborative efforts desired. NSA is primarily a Military organization and the revolving door between retired Military and Defense Contractors spins just as fast between Ft. Meade and the local Technology Park as it does elsewhere in the Military-Industrial symbiotic relationship. JOHN ;) Timestamp: Friday 24 Apr 2009, 18:56 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4987: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJ8kPFAAoJEBCGy9eAtCsPfDoH/3K4EAIZSQv63TelvA8fbQZ5 cw2xoGGir3yH466bJUnNRNfKqlCfEDJKOdercdQBOU4QHYtm9l2PovNaS9DEzNCX 7WNIhq1SgElnRK3SkjIpN6GdwHKBO39nplDzti1Ou3pC+nqy7cmkJDRC0Fqfk/0R n8ntz6QOWF4g5oI9kjMeDvynjQzd65VoCTF4uuIrpxX5abKNEbNaNu6APlHpltlQ iESBKQl/vQff2s6KeaOoh3H7O6E/XNOBfN2OLNllU0Ut3nUj/+LCYau6Rv9pKatH EytkI4KgJ4euPJ3u14y0Br+VunFTCFQ2V+dDKtvkuKIsmz1R24sVzIs3W1sD9ag= =Rm4K -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Bad signatures on Gmail messages
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Brian Mearns wrote: I just wanted to let people know that I finally woke up and realized that messages I was signing and sending with Gmail are bad because the mail client is inserting linebreaks in order to wrap lines. This is standard behavior for a lot of MUAs so that certain mail readers don't have problems displaying them. From now on, any messages I sign will be written offline with short lines, signed, and then pasted into my mail client, so that the signed message already contains the correct line breaks. The Google Webmail interface allows the setting of word wrap within the Web Compose screen. Look under 'Settings'. JOHN ;) Timestamp: Thursday 23 Apr 2009, 16:14 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4987: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJ8MxBAAoJEBCGy9eAtCsPDTEIAJK9Fv3pUBMcoBy3BIO58Rhp TRhgmag5vg5v5y8abDxrzFIysymJ8e/d1Zv0DHlvz1qD8X+k0LVwlYU60NR/b0YH m29m9SPm464AF2kFp/5/+DkFEoie4KJ1FL+v0GBIKJvn+1PDWBRCMMiJFr6RV+3s 2UWPfO3+tuVN0CFV5s8+adrweHIQojCEI8rESG5KwOsCfLNnjG/ZWyz8dhtp5xse EuGbiNjFVu8V26X0PHEoYdvbdYF/zV+mzDG7LBD8hp35mmGfkxNe/Qx8PNpe/yd2 RkiYoO/tCGZbzi1D8PerxQF8pPU+VDN64FO++kNw7hWq+batBhwFBx6TiqEKssg= =f6Pl -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Bad signatures on Gmail messages
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Brian Mearns wrote: On Thu, Apr 23, 2009 at 4:24 PM, Werner Koch w...@gnupg.org wrote: That is why PGP/MIME is the only robust format and higly recommended over of the simple clearsigning mode. Could you elaborate on this Werner? I'm not familiar with this...does gpg support this? GPG supports PGP/MIME without any trouble; but not all MUA's can handle PGP/MIME. Most notably, all of the MUA's distributed by M$. :-\ However, when used with a Frontend such as GPGrelay PGP/MIME is easily accomplished using even Outlook, Outlook Express or Windows Mail. JOHN ;) Timestamp: Thursday 23 Apr 2009, 23:15 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4987: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJ8S7aAAoJEBCGy9eAtCsPyDAH/3/bQ8fum/15CT9Nt2RxMhj+ d0izoEFkXBnf8tfNVm3OLPfQVo8tv+fhYhMAUkNWwt1iLmEOGIZCPeEjy0F6bJ7t Qo+ORKrhJjhUc3+IHJWECxNStQlKjzpTJsCY5nNbslnoy50LnitkOV3QC2/Xl8qF U4w0fK9N6tbQfpJD9fLCZC0ED7mbeMqw7LXLnrQQNO9T/ADg+X62Rpu9lYGQ72bT Rh406LCAmDZ/qugY2TtV+Wgn04ycQxxnveqw4sI3+AvdGP9LnlU/qR585BMj3Hqj H8ZnLU0r1qV75nPtjk9NCXpbyZeinIBun1M5yIZMjP9bhd/LvTMPZqV8ESJF6po= =ERy6 -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: New to list - though lurking for a bit :)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 david wrote: Are there any issues I should be aware of prior to or installing gnupg? I want to add enigmail to thunderbird. You should have no problems under W2K Pro. Is it all plain sailing under Microsoft O/S? recommended frontends would be helpful. My personal favorite is GPGshell [http://www.jumaros.de/rsoft/index.html] but Others will surely differ. :) I also recommend that You acquire GnuPG from ftp://ftp.gnupg.org/gcrypt/binary/gnupg-w32cli-1.4.9.exe and then follow the defaults. HTH JOHN ;) Timestamp: Tuesday 21 Apr 2009, 16:03 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4987: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJ7iadAAoJEBCGy9eAtCsP9ToIAIutxlYvQ0EZ8wGtqi//j6Bw zP6N5TN1C74PxZiHubb3XDrRSn8FDeoSnrolC7HMRnzaRwtpRsPvR8f2rBz+5SjZ AP3TgFbpflpjWZaARTY+fse6iXw52XgI/D7iynyIoOst0HnronzR7Ae6cMpS+J8j 8ExrLpcCZDVu7qT+WzIt+gZECu3AM+3XEvKTUu6G6DFkhbAQ2Kyx5NEFfwnkci2f gbnHfQKOSdC/1rsgTW42OTrWSEfU9SsnbyCHyk5P987ZB1LgDl559iUOh4A3lLHJ T22SpQZxBvJ9aM45vxH9hN9ojZLK/kfqhR5gp2HIDabDAUgwPF4Hbaaw4EcyKRk= =51ap -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: keyservers
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 gerry_lowry (alliston ontario canada) wrote: AFAIK you can publish your key to https://keyserver.pgp.com/vkd/GetWelcomeScreen.event; it will be synchronized AFAIK; you will need to confirm every so often that your key is valid so PGP do not drop it. PGP GD doesn't gossip/share. I prefer hkp://pool.sks-keyservers.net After Uploading to this Server it'll take no more than 24-48 hours to have Your Key very well propagated. Earlier You asked how to accomplish this. Are You using a Frontend for GnuPG or doing everything from the Command line? JOHN ;) Timestamp: Saturday 18 Apr 2009, 11:41 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4979: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJ6fTKAAoJEBCGy9eAtCsPxAgIAKW/Nl5M3q0yzC9YpySG54QY b9pB4gsfNs7biLgQyrwHlLWnZ0tAiv1llGXhcB5ylBTCAwXNByfxcdi5BEATm6Q0 dDOV0RbMTv9kEE2xes2G4EWC2SsywnDO67ntLvnHS3iOms/bVuZKUq4JiGsfyeSG gd3WLA4Dm9rLYzGcVAX1rN/f51smN/5eHT0r2HaJtBiPmXU1WnYgMIGDFJCfEoOM PkwIGI+9fHoQfO+bMl8yKDiHyEdNvKpbwrm9pWuUuSiojQ5QQNXtBT8yRdVaJ9wP 0DRKNwuq6H2+YA91tNXGWHiB9wJe7tB4cSP+q9f6N9Bp1ZXxSJpBmvtZitwWNMQ= =NMXg -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Upgrade from GnuPG 1.4.5 to 1.4.9 breaks signature verification in PGP
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 David Shaw wrote: You might try asking your client to add --pgp6 to their GPG command line. PGP 6 is not really completely up to the modern PGP spec (it's a good few years out of date), and --pgp6 tells GPG to try and be compatible with the older version. Succinctly understated. I admire Your self control. :-D JOHN ;) Timestamp: Tuesday 14 Apr 2009, 23:40 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4979: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJ5Vc/AAoJEBCGy9eAtCsP9lQH/3J7V2MCgxutGJDXyVIPeUWF VQI5bU6XnpsssMRNiEV634SvzBE0P+Hw7W/T3GbOmnzPU3SP3I/L72Qlr3bkr/h/ EeawAvvDPNcRr05SMbyMH2sThm90KQWQMsdqWfuhL/6rf3oaI2PmLIHiYdltIghS W5qvervBnI40raep0vq4vdaUIb7C1e3C+5LKar9AIThoIO0AGsF4GvJQ1MgcPFcO hO8gO9Q6AcuXCur72E/o5DUcXCu3BSza2K0zSbRhk+iBosxR15mB7eNI0pJEeqJD mfGIYtemWS6Xr/79gYGgRn6Y+fJSOCUVSw5w+hHQVHcL8fp6F+IlyDobOxWNcaI= =h1qV -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Keyserver doesn't honour signature removal
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Dominik George wrote: Is it even possible to remove signatures from a key and distribute this change? Or am I doing something wrong? What lands on the Keyservers stays on the Keyservers, forever. :( This is due to the sharing/gossip nature of most Keyservers. There are 2 Keyservers I am aware of which do not share/gossip; Big Lumber PGP Global Directory. Of these 2 _only_ BL prevents anyone but the Key/Account Owner from 'changing' the listed Key. Listing Your Key at www.biglumber.com will allow You to display Your Key exactly as You desire it to appear and folks may be directed to retrieve it from there via a Comment line or a signature tagline. I am not aware of the ability to specify the Big Lumber listing in a 'Preferred Keyserver' flag. IMO, the benefits of having One's Key available via auto-retrieval outweighs the hassle of undesired Signatures and the 'baggage' of old/revoked UID's. YMMV JOHN ;) Timestamp: Sunday 12 Apr 2009, 08:00 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4979: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJ4dgNAAoJEBCGy9eAtCsPzH4H/3Xnt6nJw60DBZB0TU2L85s5 dBP5mjLYaUzLL0CXj4dtoWgHdfUcJRTuGyeQKNHuXEnjA9ksMjGGwozSLEk1cZTd +zxzLEK8RYEB6M0Fk8h4RrDpXTIDHLZen33JDfVIfDeWNTbHXcwaS6YAHSb7YACR /nAwYPyYryYoaTuuBz0zB+SZHpu3N71tnGciIzbBh5CvlutHOwxTQcv55Yg3daDa Yf/OCnzSWjN8H6VFBMKtRIBsBt89uzBe2V3RjKH1kh/CSkba3tVB0JBwoXc32eo3 VHeqPLoijghAz9PBXX36dJ9JKmsILKJzQ7aILAtePagFwE8k2uauG48/YRFQnYA= =KhC/ -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Keyserver doesn't honour signature removal
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Dominik George wrote: that is, I can add anything I want to my key, but never remove it? Not even signatures? This is Correct! Upload a Key with signatures removed and as soon as that Keyserver 'refreshes' during the next round of updating from all other Keyservers it is linked to the removed signatures are restored. End of story! I understand that I cannot remove keys, but I think any changes that require my secret key would be ok :( ... Err How? The only time Your passphrase is required is when You are a revoking a Signature You, yourself, made. Your Secret Key isn't, or shouldn't be, on the Keyservers. Anybody can Sign Your Key and upload it to the Keyservers whenever they desire. Your Public Key is in the public domain. This is why some folks maintain a listing of their clean, desired Key on Big Lumber or the PGP GD. With Big Lumber only You may access Your listed Key to make 'changes' and with PGP GD any uploaded Key requires verification of each UID email address via a Ping/Pong challenge before it is listed for dissemination. JOHN 8-) Timestamp: Sunday 12 Apr 2009, 12:25 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4979: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJ4hXkAAoJEBCGy9eAtCsPB8YIAINKj7JjbwEasf7tL6KXpKwJ y4cfIAqUlA6AtIjvI9lkLIAYtAvMZnAGRNpesUI9T9LBD4M2WzK3lEl93sBzQnPs 99FhCrs8POySWkx6hLuY5zJMzvon1C/xz9JMTWbgdyVct+d+ZMsMTPuRNbJuqhTz ufn4ynlKCApP+UGCD4wi/aWb7u1+8lt6sjmet/zP04GN0e6EtB5Gu+jdTnbEMu6w cYhGWQB5AyCU+3j/dhRAmovx2ekyoRMk6tFsJT+OVGYZMbZMYJ7IzZAMZ5/q/NBx +6I5CMm75opKlmCILMwAYEwb1UFPXQsqhcGfgvrwFwWvxFLOFWjO9bCSZ19qOgA= =TVRF -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Files to Backup
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Mike -- EMAIL IGNORED wrote: To protect all my gpg keys against disk failure, what files or directories should I back up? secring.gpg, pubring.gpg trustdb.gpg These 3 Files _are_ Your Keyring with Trust Settings. Remember to back them up fairly regularly as auto-key retrieval will cause the Keyring to change regularly. JOHN ;) Timestamp: Saturday 11 Apr 2009, 11:46 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4979: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJ4LtpAAoJEBCGy9eAtCsPphwH/0Y1C1Lb8DGa969fY75at05r d7WyqS/3Av9KnYIFTKCFscABOfFiLjcYA/e4cm1iI8jVLur15uqYtDIhnD52Tu/m h8Ya01Ro4ZclQfWUAZ1LnCb6oiMSLgoMO7Ytj+cPDiROJfYZ8fAb0snzBdUYNT4N +ms4bk/FXxhE/dBxvlGvekOMWBai9mZOtL+LKiW5/F7hhQc1YuoQ3JTMMNaiYnA2 q06H8HJDykWs+yRrVUXAtWar1okeW2NMVjQHrHO5lbHAj6eltlBcSnm+IBgYJvmX kYz4yrYsk9kK61X5rLq68XyU2TuhytAINi5RnlntG/rBIeKidkJz/tsdslbT7iw= =Wywm -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Singing a key with a subkey
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Faramir wrote: Because signing another key is known as certification and the subkeys don't have that capabily. It is one of the reasons to keep the primary key safely at home, because with it, somebody can sign keys as if you had signed them... At the risk of exposing Myself to ridicule; whether or not One chooses to utilize a Signing-subkey or not; during construction of /any/ Key the choice is made available to assign attributes to said Key. {Sign, Certification, etc.] therefore, without knowing which Key it is difficult to fully diagnose the issue in Question. Could You possibly provide the Key ID? [0xWTFx] This will allow other folks a chance to examine possible causes. [this assumes the Key is retrievable via ID from Key Servers] If the Key is unavailable from Keyservers, could You kindly provide the Key Block for Import/Examination? HTH JOHN 8-) Timestamp: Wednesday 08 Apr 2009, 02:54 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4979: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJ3Eo+AAoJEBCGy9eAtCsPbuUH/1n+H61Eju3wguAPHZGK/Za7 5GLKhcZXjni8yIi87GkaCQx8QEo9Qqtvk0vvzJG0uZnaenewX6CIGLgA/CVTPlxm bGxmge2hZMKltohsgL+VPbWD/2uuJw6Apl02Y7aR5tiWsP2K7rav6zvLIIc7BvwP M/we1aoMyXDXm/VwOPOChwodhenYwqIHXxJppOG+vG7w7mKNR4/gajH81Wo/1RrV evlCLCW+SFDJxPCr1TD6tlMidwOFQS/5PgDhfF0sTbFB0KliUbTk4f/djbXQ6id4 n3fBfLfiFOZBMASOKamHeHecJWk3k472ELVfW3RDe9yaXLYRpLq31yGOe4oV3LQ= =XuRP -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Singing a key with a subkey
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Faramir wrote: Brian Mearns escribió: I've exported a crippled version of my private keyset for use at work...I did not include the primary/master key in the export Closer reading of the above begs the Question; define 'crippled' and is it possible that without the Master/Base Key presence on the 'other' system is this affecting anything? i.e. More Info needed on My end. :-\ JOHN ;) Timestamp: Wednesday 08 Apr 2009, 02:59 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4979: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJ3EtEAAoJEBCGy9eAtCsP7lAH/R6+I+LhN5o+q1zyCOekc5j1 YvsuCl/fccL7+5szSMkJEYjiRPyrrqPVbD0kgfzp2m0DqQzqwDDuescCaZlnCDrR xkcqKRzRfUN0A6wFpgl2l0hIXcphJNMKnUJur2xSRwdEbc+lG98XA7toe3iZ+j16 K3dhug0Ip7t44x6wnyMwAuN4YUAOe/hXZ0Qu3k8OaOPB08esA9CQtT2iavEK5X2T ZJ6Mt1bVc28Xah/eVZQw8eyIJRo6UmzOLXUPNndjlP/q92e4py2NyWm4wy/VJnWa c9pcT5bi3qn2Lvqrsx6I3ooqxvpE6auQT/Z+ngUlsET8T9pczFXolLPN4rVzLK0= =OkMD -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: GNUPG install help
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 mukta_agar...@readersdigest.com wrote: I want to install GNUPG on my machine, I am not able to locate which one to install. Please help. I use a windows machine. Without any further information as to what/how You intend to use GnuPG I suggest 1.4.9 available here: http://www.gnupg.org/download/ Go ~ a third of the way down the Screen and look for: ·GnuPG 1.4.9 compiled for Microsoft Windows. B FTP Left click on 'FTP' and choose 'Save' then click on the downloaded File after downloading. HTH JOHN 8-) Timestamp: Tuesday 07 Apr 2009, 12:36 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4979: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJ24FFAAoJEBCGy9eAtCsPzX0H/2ZYN7OrKAMYGRvtWxcU/nIX 07723MPx5RvvzRITTUjkLWdW0H987jRTPHepGr87ZwfayV4sJkauUbI2GzN3Bx9C Qdk9cY6wZS4xas4NTYJ2jMRqc4rBZza2OGrkgGXGv1dcR9aYMzM7PtgCj2hI8OjO Tn60Xy7XZfWF83Qc1DHrPs6/CPQJZz/nR2yNWIIspwGSrU7GA8iETg2RGhYFcqkx yscPR1Z1ocZ36Nazvg1c08NH503laov2NF2pG/gb7GBMOrGiYiLdxFc0HvAuP8hW 851UfLTpu//oLTPjjULdS0PjspnKy21H4le+ZtQ8pNPxrlSky6FM5ShuJ53xsxA= =hcdc -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: GNUPG install help
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Sven Radde wrote: I'd suggest to check out www.gpg4win.org and use the most recent non-beta from there. And I strongly suggest that You _avoid_ gpg4win and simply install GnuPG 1.4.9 which proves nothing more than 2 folks have strong opinions regarding which package You decide to use. I do know that far less Questions arise once someone downloads/installs the Current GnuPG 1.4.x version from ftp://ftp.gnupg.org/gcrypt/binary/gnupg-w32cli-1.4.9.exe than We receive from folks who grab gpg4win since it 'sounds' like the Windows favorite and then they discover it is like far too many 'kitchen sink' M$ Apps. :(You should _only_ need to Answer 2 Questions: This directory OK? Create Start Menu location? Apply 'YES' to both and You are good2go! You will also probably desire a 'Frontend' for GnuPG and I heartily recommend Enigmail if You use Thunderbird or SeaMonkey. If not I then would like to 'push' You toward GPGshell: http://www.jumaros.de/rsoft/index.html But this is Me and others always 'suggest' differently. :-D JOHN 8-) Timestamp: Tuesday 07 Apr 2009, 17:01 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4979: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJ278yAAoJEBCGy9eAtCsPMQwH/19wffrU7GNauFxYNesm4iyy lDsvXANaeYmrRZYHqCA9VC4w+HSUAi//NpLDAk2uPoKFz5YJhojUDl5wdW04fES/ GRorwls2tIWXSXhBZYTJBEfnzwHmwbjtfhEDYpIlJBWEWdI+LtZEQNIT08jYOCXp B/HA1L2cCMxzGTgLtJOkOA+afLN8n9O8hOTGPMCrbg7QM7rewJ1qcWLw2lUM/si3 mWhhvTkhY0wJzmV0lKJIMytWQzAyeN620WuzYJjls2MZpMWBvlBNzANJlWXM7RIG Wfo4weAORB/uIco++ffcuD9BA0Jh+L7xEfnypXc8Ro1QFh4S9NXdvh2MGOuHXjg= =f7gc -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: GNUPG install help
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Protektor Blog wrote: and to make live even easier: http://www.gpg4win.org/ If you need help with it let me know... I am silently screaming No, No, No and praying that You will 1st try ftp://ftp.gnupg.org/gcrypt/binary/gnupg-w32cli-1.4.9.exe. But this is just Me and I always push the easier, softer way. :) JOHN 8-) Timestamp: Tuesday 07 Apr 2009, 17:03 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4979: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJ27/MAAoJEBCGy9eAtCsPOPUH/iYL6wIcWj7Fl8z3SZJxyLgR AXHe2SaxrZZsoF1WMCsknJo++elS6VmcY1ey6QB/9ZsYAGeK02eaeRsdycJ5lzP+ SrpnH82HK3iOkvWuvS4wvdcFRy1tzHzGbBtYtQLZWEhMYCNR/F0Xvn6gdxBgPIOH dZ30E8WXmQSFWQA7bq29eNIlM3684JTFjwK55m+/MYr1epQPWULWdGhnmeVjBk9v PuPLQHkSsEtgmlh4MmzPpYoaLX70VT5U5IbLcwu0IzJniCZhR5BPVa2T+gTL0Hhi J1JxkLdvZ6hLEYVa0RPuZZlCW5BdrMTuxDKzIkslaMb+6oHqF8s1M0RoK09q82w= =JHU3 -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: unable to send key to keyserver
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 caleb wrote: gpg --keyserver subkeys.pgp.net --send-keys myem...@mydomain.com.au this worked and printed my public key to a text file. I have no idea why it is not accepting my email as part of my user id when I try and send keys to the keyserver. Try using the Key ID [0xDeadMeat] instead of the Email Address. JOHN ;) Timestamp: Saturday 04 Apr 2009, 07:23 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4979: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJ10M2AAoJEBCGy9eAtCsPaEgH/3qmKCnFX6ciBfqaOJKu0IyV JCZL/U+z42Oeq2scqLejbRwFHB6FFVUcsg8wmS0VUe5MBKfdlZxTcTynjwpcxt9f pG7harvQU/wZQeE5ObZda9aG6CWmCHSM3Ms0cVcj60nUOtbnpb7mFdJ5UEeqJi73 UPKSb04SNE7nh6ZKRw9KzhEpzrXBC5qdT5B5b+Z3jKdy8SFHED95xIpMoyGcyiSq WbTY5efkUbjp67kCqTdX+kGsUEzmJc0sHCmKMDV/TsSuMKMtzdlD50Vim+07EwqQ Wjwtq+9YYdb68Cq4LGZbm+OhQhqspBF6TGtAsyJLyJXg3eijMmoIKUw5bU5OLfQ= =wBun -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: gpg: WARNING
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 David SMITH wrote: 1. I want to avoid this warning. How do I do that ? 2. Is this avoidable if I go with a trusted signature? 3. What does this warning exactly mean ? It means that you haven't signed the key that you are using to check the signature, and GnuPG isn't able to validate the key with your web-of-trust. If You desire the 'Full Monty' Educational Course on 'WoT' [Web of Trust] then either stick around or ask specifically about it. Since I suspect You really just want the 'quick dirty' Answers to the above Questions; here they are: 1. Add this single line to Your gpg.conf trust-model always The addition of this line [---trust-model-always from Command Line] will effectively 'tell' GPG that You have trust in _every_ Key in Your Keyring and therefore to suppress an unnecessary Warning. 2. Answer = YES 3.) See Quote from David Smith above. HTH JOHN ;) Timestamp: Wednesday 18 Mar 2009, 15:06 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4950: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJwUYrAAoJEBCGy9eAtCsPRzoH/3ABMvzj/kIrFSWBDlN3MGOq HgMdj93FAEKW48QuRUf5/eOlVWm/gaaVpJwpo1dgCCbcXMcF6KMEGkACPdExOrv8 sP+ornOBIxQWyMerpvPO8GcoJxKcawHDgkmWbsMlJxzBFdrQcVOUbDUjEHGt+nYS ZCd7i1JSQRV4YNLE1hMvn0VkMLjSSt5UyvO9v/BCqSAYY858yPQ28m1Ssz5Fs+Ic Q4f2M/r+UEjlQM4YoUy69QKUqI8UmSBwsRn6S8qoV4DpJkGS20Z2kjbAqUSAaNd4 1rt5KCw9IH5JKRwF4IzN79LT39n5puXFnPtBnnezZXzfHx/G9HPdn7XgmyOrhfw= =3zGS -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: GPG Shell works but GnuPG commands fail - UPDATE
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 HORNBOSTEL, LIBBY A (ATTSI) wrote: Many hours of tinkering has given me a solution. Although I haven't found an explanation for why the GPA product throws a fatal error You are using Windows and GPA incompatibility with M$ O/S's is known. JOHN ;) Timestamp: Monday 02 Mar 2009, 16:13 --500 (Eastern Standard Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4925: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJrEwkAAoJEBCGy9eAtCsPf+cH/iUBMTBcbKAgOCxE1WRKVPRd Ue5e1LiV5LxGzTeEcyJxwZaSbEnFPWqOP7phLvV/TNrBpyaeWG53NKTjimMEhKjZ XYR36KPSWXQJ4/z37Co4N5HgX0xK1YhFLrN1QE4oaLnnOcJavAheCrJro85IyYOj 0+PGsJv2GR/itCE+Vyc6ziwHTYtzYY2Fxc6sXmlEdV4hgWl/zT+5u9jlsJfEX5t1 xA71G/PJenLWH34yR3TI0inCfkNKELPYzoZVp/hAYUCsY46EQudvDzxXsFdUFYAp lJiXy9gOXM51cxrkZAJQyScVv3zO2s3jxuLZymuoH6b2RQLXW8x1TwfrMyVka0I= =eGOs -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: gpg.exe Vista Crash
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Brian wrote: I downloaded 1.4.9 and installed it. I then grabbed WinPT and when launching WinPT, I get repeated gpg.exe crashes, like I did before. I also downloaded GnuPT and installed that, which comes with 1.4.9 and running that also causes gpg.exe crashes. I then took all of the EXEs from w32cli install and copied them over to the GnuPT folder and had the same result. I am really at a loss as to how to get a GUI interface to work with GnuPG. Uninstall all versions of WinPT GnuPT [???] and ascertain that the only version/copy of GnuPG You have installed is 1.4.9. Then, I suggest using GPGshell with GnuPG for a Frontend since this can be used with Thunderbird/Enigmail also installed and provides an excellent Tray Tool and superior Key Management Tools. http://www.jumaros.de/rsoft/index.html Once configured and running smoothly GPGshell also provides a tool for transferring both itself and relevant parts of GPG to a thumb drive for portable use. JOHN ;) Timestamp: Saturday 31 Jan 2009, 19:16 --500 (Eastern Standard Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4907: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJhOoMAAoJEBCGy9eAtCsPqOwH/1z5ovnmjgNBwWSVa4Bp8PXC V+Lek7AavVUcQFVYQAsKHWbTb1RgRMpLIKeadf/GchC6djZuFd3/Mo8Xra/PiRLA fuGseAqIWKrTfSisjjSj0q15j3zxK9yjMXHB82GOa0zCwgpHVcXh+zxihP9O5yXP WB0LHYjxdLBQCvNhfCC/aYnqqSmgywQg1ssvPINpKRP1E8P5dIR5l2La5/x2bmKH JfGsDGS43i9nQaMRCOiyluZUeOZa22dEV7XPEeGfLOXsKBzr3x49R6TW9cQo9VLJ 6CR+y40hfZLh1Cy2LnnaOGfoR+B8h1+xFrhAeBIraKyVONWUJ7VqrG6jg1RWeS4= =u6JY -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Dan Brown - Digital Fortress book
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Faramir wrote: Charly Avital escribió: Hi, may I suggest, with all due respect, that this thread be closed? Why don't we move this thread to pgp-basics...@yahoogroups.com ? I Second both of the above Motions. JOHN 8-) Timestamp: Sunday 18 Jan 2009, 08:38 --500 (Eastern Standard Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4907: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJczEBAAoJEBCGy9eAtCsPX4UH/2Yh6bDScIeu/e47GCgV5Ya7 GGoeJL/wL7ppV1AzHJSx38dalGs/QqHQIpKai1vsAK66C2ytovV60xjjW5wJvKLA a3VQCr31baqXXu2eAMcW1RamqGSNgoI4qP5DKzkuCNFI3Wxw8oKDCJ9mtEY9xjGp zipzBNhp3FJ8w4DTVw7wJcBThoFHUzOm1i+WreM6xYaqtnrXzxUBNwu1/ayXAxUA kDklfuNB0vzHUgbVMjZa/lRI7rFu8k59TvfRYoTFo8+qyzodA6/uxbbKMMHT1rdt Rrk5cEQqOaqKvROBaDpbkqLrEVonJmG20vHNCZWrekcWrBeq0/R2SmU4gSZ1Zzg= =OLrt -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: how-to 1) remove a key, 2) avoid spam, 3) add a principal UID when delete ?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Raphaël Maville wrote: 1) How to delete an unpublished GnuPG key from a computer when the Passphrase and the Revoke file are lost ? This key was create without revoke file. It was not published at all on internet or to my friends. If You're certain the Key has _not_ been disseminated anywhere there is nothing encrypted to it that You may wish to recover if/when the passphrase is 'remembered' then just delete it. 2) How to avoid spaming to my mail boxes, is it better to do not mention it on a gnuPG key ? This is much debated. I belong to the camp that believes having the Email Address within the Key UID makes no difference. Not having an email address associated with Your Key makes utilizing it in some situations impossible. [Key selection by Address, Creating a Big Lumber listing, etc.] 3) How to add a principal uid to a key ? I had removed the principal UID because I wanted to modify the firstname (trema not well prompted). And then I can only add sub-uid. Create the UID You want on the Key and then set it as Primary. Go to the UID You're unhappy with and revoke it. If the Key has never been published to any Keyserver then You can simply delete the revoked UID. If it has then re-publish the Key with revoked UID to the Servers. HTH JOHN ;) Timestamp: Thursday 01 Jan 2009, 16:40 --500 (Eastern Standard Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4907: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJXThaAAoJEBCGy9eAtCsPY2gH/24to55ybDdBLbVIf91ADaQe kZI6vsZBmYqKZSeMsxbKaeTvF4ACXeicwRS5Xx9WFD1uW44i/wN3n7xAti9zeG2D H2JWcqsajzKgS2iPx7+Lo44Vb6EEeGxv0fOrFgmmenKWioWYQqIHaA9mAzAdIBju g1uexlKUB+rvsjdR5Ld65e5mawZ6HXF2c4xLtWLj31k2E1cTn2skDGEWywmElm2W 1jjZeoto/VS/uqrO1g2nm150R9IxbZ7l8L2HrqA1R2AUg5/+R5ZHepLhS5tD5SDF H2TVZrKnHib7H+wPTJNAQ594/YTSEf6x0nh/y0EN6EOd/y4mWG38V8se0c+hVwA= =G8td -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Which is the path to gpg.conf in windows?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 John Clizbe wrote: Be warned, if you specify conflicting options between Enigmail and gpg.conf, Enigmail will win. 'Win' indicates a contest or struggle. Enigmail simply passes the Commands set via 'Preferences' to GPG first so that they override any similar ones in gpg.conf. I have sent a 'Sample' gpg.conf to Marc directly in hopes of jump starting Him. JOHN ;) Timestamp: Sunday 14 Dec 2008, 17:08 --500 (Eastern Standard Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4901: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJRYPwAAoJEBCGy9eAtCsP+IYIAI+uOxXWMQO29P2JiSPC38PD /ioyyOyAOQhXdYiNnSit4nvhY+SUICfCKQVT3xCzghVh15qKqRlgfnWzpZXqT2KY GnpRXGZrYjBhGjaI6odvrStpgEy0aXO3wZsn7PG2Ic+lyGsX8TtOMXFNYKVP54up n1Dl3StunGl5lrts7FuJsqxR7tIaYSizazTs//I5FTMIMBofq31wmaTUnmJrSdIX qqPfqwexUEawRNAXrjjTtcm+COfNV0E2AuVmK9Ls+yOtCP64PaXCxHUDcbV25l4y FXOeohTE8uNfoX+30JoOsRgcANizcpsDlm07iRVl47ce0w3WyD8yN2zazR/xLM8= =Thb9 -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Teaching crypto to newbies
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 reynt0 wrote: Risk is objective; security is subjective. ... Looking for risk is being awake; feeling secure is being asleep. Well said. One also wonders if You also sell Insurance. :) A newbie who is aware they don't know much, may well *feel* the reason they need crypto is because not much is trustable, and they *feel* a healthy anxiety. And though it may well happen to be that what is called Web of Trust is among useful tools for dealing with the problems, one is not teaching newbies psychological skills of telling how they can trust or not, one is (should be) teaching how to *think* weighing risks and showing how crypto is a tool to reduce risk. So newbies may be due some slack when they don't do well with learning trust as logic, because it isn't logic. Sadly, teaching 'how to think' is the most difficult task imaginable. Everyone has a 'WoT' but they don't realize it most of the time. All a 'Web of Trust' means is Who do You rely upon to consistently behave/act in any given situation. Most folks utilize their 'brain housing group' to preform 'Trust Calculations' each every time they interact with another Human Being. They just don't realize that this is what they are doing. Weighing Risks is done with every transaction with another individual. I feel that every encounter with another person is a 'trust calculation' and is based upon the logic of past experience applied to '1st impression' re-calculated with increased observation of behavior. This is why the majority of people will kill to defend Mom because She is assigned Ultimate Trust through lifetime experience. Therefore, I disagree with Your assertion that trust isn't based upon 'logic' since all logic is the application of experience in the present moment. JOHN ;) Timestamp: Tuesday 02 Dec 2008, 08:17 --500 (Eastern Standard Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4878: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJNTVjAAoJEBCGy9eAtCsP5REH/1JlgocBtZL+7DIoBkwoggvo arwQYizWpK5WHdXhj0CI97xvWsRtVlT/3QgKV034GtK/AU4KHrRQWFLnf8BMVsKL v52ZC7fc0kcE3C0y5QaxFSqR5MMPQMGrR8c15pN/u66greWQvdwF/ZErq04G3dX2 mRDZbyhbI4vlH/jEWXzSS9BykHA0zFOPI0U4iLAKrvarprBevSe355y3iVbyUCRW /D+IXBfWLJHyfMtBR1pUvdgOzHw0HKcyQUuI2/yvN+rInmDmPpTAOq1iJ3mhgKJY UvzzJjNdVKne4H4agW5JgT8HSgwQYYzQsGGazsb0znRGtc9UAZuFylExlgNKZNU= =mNdv -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: New GnuPT-Version and new WinPT-Website
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Robert J. Hansen wrote: Mark Rousell wrote: I rather think it's up to someone posting an announcement about new WinPT-Website to provide the URL, don't you? Which dodges both the question and responsibility. He's already doing you a favor Gotta agree with Robert. If My 81 y/o Mother can point out to Me that She could easily 'change Her mind' and poison Me with a meal then I gotta admit; clicking on a Link from a 'Trusted' [there's that nasty word again] List is dangerous. Having been Alerted that an Application is available then it is up to You [the Interested Party] to obtain more information. Would You like Me to 'provide a Link' that directs You to a Site that appeases Your laziness and at the same time uses Your preferred Browser to install a Trojan, Key Logger, etc.? JOHN ;) Timestamp: Tuesday 02 Dec 2008, 13:14 --500 (Eastern Standard Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4878: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJNXtDAAoJEBCGy9eAtCsPrMwH/jR5QwFu3qXzEcNzskKpIkDx jQ3+B7qas35+pSJ7/frDSHSsV0uy2+u2I1tN3iXy67yyKtWQY2dAQYybCtZ3SVPa zi7ufWM0o/JYwvUL4d+X7Uo1tsehnzCMyw1x4VRE20EXWLotiFbABMcCfYLi3HRt TlrXi9bovb7d47GHw3vCN9s300JFL2nn03VBYARTU85LR3xGnqPng3ftbLJ5kQ5z DQ91XGjFuwdpG/vjVeBSBQVOPORFDSp9ju8rIWlV/6Vz7w9rAwmZEgvFhcyKmk8n gX+kSDF3LjVe1BMHb8U40oTemuEDu/r1LGBxSOsdQwQkBO1zP5QWPxE25p5Sdcw= =zrsp -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Rare condition incompatibility of public key
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Robert J. Hansen wrote: Unfortunately, in my experience the overwhelming majority of users don't understand trust, don't want to understand trust, and run away screaming when asked to think about trust in a logical manner. You have to bring them to rationality slowly and in infinitesimally small doses. Bring them to rationality slowly infinitesimally? I'd rather hit My thumb with a hammer. Frustration relief is more easily accomplished. Discussions of 'Trust' rank up there with those surrounding Sex, Religion Politics; as soon as views on Trust are introduced a subjective minefield has been entered. As soon as beliefs are challenged the other party lays their ears back and closes their mind. I am reminded of the ancient axiom A man convinced against His will remains unchanged forever still. Just My 2 cents worth. JOHN ;) Timestamp: Monday 01 Dec 2008, 04:46 --500 (Eastern Standard Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4878: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJM7J9AAoJEBCGy9eAtCsPJ3AH/i9X/nugRu6Aa5VlBaypM9XU TIj+6gy0/2hlPAbTl64mWRUeTmc1hklmfHsgz0ywT/tiUqwrgWImSnIqdbFhD0N6 Vg7J/ajoSm0aUrEBl7rpZJEWgCweV40n5sEquaD+rxVqdXtV/03/bS21l3YcOwQi LGesGDQtqw+wGmKOEWkP+BWf92aqBO9Mo7Qc/4Kw2/oeEecXxmTZFDrtO+sADIK/ J3sNkSXAaqAb2Qvw3DcWjYC1YUQOxVQqwpk7c+s89w4M2PUxlKhR5t+L9FQDWyAj 4W8cOCCQZYqcJiHssedstU5jIyDlbF8+ZUO+jMeJHV2GPR8aqSXGKyavNBOm3Xk= =K9x5 -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Rare condition incompatibility of public key
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Myckel Habets wrote: Hello list, Last week I had contact with someone who said that my public key was bad according his validation program. The person who said to me that the key validates as bad uses the PGPkeys program from the PGP corporation software (version 6.58, last version that was released when Phil Zimmerman worked there, he doesn't trust later versions) to do the validation. To sum this up I have two questions: 1) What is causing this problem? Is my key really bad or is this an incompatibility between PGPkeys version 6.58 and GPG? 2) Do I need to create new keys and revoke this key? Was the 'Key Bad' or the Signature? Since Your friend insists upon using 6.5.8 [deprecated] then My suspicion is that the Signature failed to verify simply because the Hash used was one which isn't available in 6.5.8.You do not need to create a New Key but You do have 2 choices: 1.) Drag Your Neanderthal Friend out of the Encryption 'Stone Age' by convincing Him to Upgrade to an Application RFC4880 compliant, or 2.) Correspond with Him/Her using _only_ a Hash which is compatible with 6.5.8. :-\ JOHN ;) Timestamp: Sunday 30 Nov 2008, 15:12 --500 (Eastern Standard Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4878: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJMvO1AAoJEBCGy9eAtCsP9OgIAJ3tVk29PA1toYjulHFI0roD AEmV23D2DFq25TES3aWJF2tnb4YBW/Xvn1hl2lHetN7HuzKNtYZOtaumeOPZBrcG DYhlu7ag9vPw8QHFyuaMNOEluTSzpx/F8kjJp1IIGgrC3J0/Cyf8i8sH2A1OyVx+ H5gJbwZKyQ2Bsasp90vAD9wS+WO9YdliWXbA3hdiNxfQ83Z6S5fvG6NmfuJUi9Sc d1htPgQuYbHhog/vJA0/fyGRIHWZ8EkBQdy7054CDQZ3n1/SnxAW677ex8OLLpwv 7mcfA/r1a82Y22Snz8GCq55Z+AKCjFyeRzkyA2JQLwXX6ik+vDHi9CGN6Rih/Us= =dj0d -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: GPG.conf Cipher Preference
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Robert J. Hansen wrote: It can be succinctly described this way: default-cipher-preferences is a feature. cipher-algo is a misfeature. Virtually everyone wants default-cipher-preferences. Actually, the GnuPG Manual refers to this 'feature' as: Foolish/Unrecommended things One _can_ do but WHY? I paraphrased and freely admit that I do several of these things. I also accept that I am 'foolish' 'unrecommended' by most Mothers. :-D JOHN ;) Timestamp: Tuesday 11 Nov 2008, 12:50 --500 (Eastern Standard Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4845: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJGcX8AAoJEBCGy9eAtCsPTr0H/AwKWaBx7Q7qisYGSpGua20o CMt/epgF8IfM3XZnOdICyZ+9sBzC3bE5sanKBldf8ugDIIwaHSPQ9jZMdnlxSRjv RhLTA1tiXrtEUO3tPx7w+URUDwFGYQ2tGpLYKOIoq7ePWnOl8CVb512fOqSvflpI 3R2INArDoS260AjhhELXLuW9QDuwbLz+drsX6Q+cjWPYLXU2uTn2pLCwPAWukxTJ nnKWly8MTzy2qeVNu53zzpO2nFs4g7XnWGsNXkoPMg1Hz1BOoXj44BWzOtagfS8k 4LLOHiImwwxmyuAG0K7H1pkMXNIBgsywE905U0viVkJTi7atcKDBM4Rj2B5a2sI= =RD3k -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Resign existing key with higher trust
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 David Shaw wrote: If you really want to sign it again without deleting or revoking the original signature, then you can re-sign it by adding --expert to your command line. GPG will tell you you've already signed the user ID, but then offer to sign it again anyway. Note that the end result of this would be two signatures from you on the particular user ID. Note that if You opt for this last mentioned method then You can run the 'clean' command on the Key and GnuPG will strip the 'lower ranking' signature from it. Of course, if it is already uploaded to Keyservers then 'refreshing' Your Key from there will again display 2 Sigs unless You also use --import-clean. JOHN ;) Timestamp: Sunday 09 Nov 2008, 11:44 --500 (Eastern Standard Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4845: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJFxOWAAoJEBCGy9eAtCsPxkoH/1QARsEb2iA97B6EIutott2v vTVHd0i9A0KhuHo6Z6wd6ZzGNRLbu4ZZnY7MMCZNLvY86YPW8xFfd1ACm063NaSF WoLVF5X04SoYUirKuDYyhyrBGOE9r+2oS6c7sguz8GtJq8Inu1sWRo85lKaPpvdu I6o33XxCrd7R96Ybp9UeJCuK5GowBqLlo1B3AArmeuInoXXZqTHTGwKPsTYT2e57 l9YnqX/Bf9T4OxrT536ZX7omoy5gcm683L3qrouNbfG5HJqDtQ0wMH/t7Q8dZ/T4 abmEU6INBb52vIavqmAbq87TVMpJw6wYk8IAXNHwf2ltLVhourNX8v/1wsNqhkM= =Tx9I -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Signature semantics
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Robert J. Hansen wrote: (As an example of what suggestions like this lead to in practice, look at Vista's User Access Control. HCI studies have shown UAC does not provide better security. UAC is designed to give users a last chance opportunity to prevent programs from running with elevated privileges, but it does not actually do this. UAC was not designed to train users to blindly click Yes without thinking at all about what they're doing, but that's what it actually does.) Actually, what has occurred is disabling UAC is the most common popular 'tweak' to Vista. In fact, UAC is rated such a High Annoyance that it has been made more User friendly in Windows 7. - From My perusal of early Windows 7 Alpha reviews the 'Newest' M$ offering appears to be Vista re-released with 2 years of Vista hacks incorporated into the default Settings code. This goes back to Robert's statement that the Developer Goal is to make successful Applications 'User Friendly' rather than 'Idiot Proof'. JOHN ;) Timestamp: Tuesday 04 Nov 2008, 12:41 --500 (Eastern Standard Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4845: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJEIlcAAoJEBCGy9eAtCsPr7YH/iLFKlbrJrvEyoU4CL+LC+yt gc4a+yJHeC5PijhHZWSnn7qqXRpAXPKAAba2PcTl4HjLspD1Uy4/RucR+Ydb4Tu3 pws49C3ZGXMfDAbmKCNpCJDcFjsdppD7hr1MZDRXTdON+zgvrfCSzWAoYLiVG5Tj 2qzmSJMm0fN88YNLfGHT3pX6dVDwvQQVWmzV5UXq7G8yA5CNZQdSNu4hbzDI/t3R fnqwY8AfgmsuzVdp7Zarv34ESGYkMHQPqxdeE+rn+vu1Vo8Ty74wTt3NMxINSgwO STCuKbagU9RlypbY/1i7jcmEXv6XL0Gm+bpEp0hpduFd/RvGHicaJNbMgL3KkNk= =UUTf -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Anyone know what became of the Gaim-E Project?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Robert J. Hansen wrote: Interesting concept, however looks as if the project was abandoned. It died due to lack of interest, mostly. Some IM protocols require short message blocks; OpenPGP messages are usually quite long. Thus, Gaim-E was never able to support as many protocols as Gaim/Pidgin itself could. A different project, OTR, provides confidential instant messaging. I have some minor quibbles with it, but all in all, OTR seems to be the best thing going for IM confidentiality. There is also a Plug-In for Pidgin called RSA Encryption that provides seamless IM Encryption as well. JOHN ;) Timestamp: Sunday 02 Nov 2008, 23:09 --500 (Eastern Standard Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4845: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJDnmEAAoJEBCGy9eAtCsPi44IAI0G34gAc+2qheLPdkAdG0ay 8Bhg+ncfuJfZOp6JnnyXhd1bqamsFZl1A333zC41ncW47vZwpb1ETsF4sslxIyrp eOa61AIFPP2cWZoOshxfMNR5jb+OY0w5mtwdWBqXBMhHfR3x812dFltHesll19LZ EURXlvAU02NkNYoiP/hJRBQXk7Q/qCCmjBvoRLomkKHp3ttuBuJ9a0+/Zs5OE4+k EkOWIASmCMG8yfJ4ua4n+lLM0jJ2FHJ044yq/aXijMuPyfCKORE/AOcKaym42SSd I7KyI9kGzwiBK2QNjhVgPmtWUd+3rRELGNhgur7NdjLQASvIGF1Y48wSV+s1V+w= =LtVH -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: receive my signed keys
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Ramon Loureiro wrote: Imagine that I loose my pubring... Is it posible to ask a keyserver for all the public keys I have signed Short Answer = NO Assuming that You have 'Signed' Keys and returned them to the Key Owner then there is no guarantee that they have 'shared' Your endorsement with the 'Servers'. :( Look in Your GnuPG Directory and _always_ back-up 'trustdb.gpg' so that Your assigned Trust will always be available. JOHN ;) Timestamp: Saturday 01 Nov 2008, 07:56 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4845: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJJDEQVAAoJEBCGy9eAtCsP3SUH/ib+LmbJfbSCDhtmnNddeRiM DH1KwvSa9hTFxxxU86rxeTUJc5KhX7gyEZO8DZW+YGJT18+bXX0BK2isajQ65eg1 2sehbdq4EIPXqbd/sODm2UClhg7JuWPiM+SFIa5cjwoTlNP9hXHsttjZGPBgwBxO 2q3jW8Pdt4paRmrX0Nqm7PSZEzTb9ngMophqDVdWTdnnysTHwnkbtkpEP/hUQgiP TYNCLnta7FBG5iJvU78x+gpEehzQ+Fw+yVCWL4/MbPsb5F5crYE/WEPKHETcc5SX YyTrUEcp1wXkMjvDmwB/y5uKMSyP2mIdbWaRvM1lM75QxsvoA9zJSphYqnrAe6s= =3uIb -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: set type digest mode?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Werewolf wrote: Been trying find references on net etc Is there way to set which digest mode gpg uses for clear signed messages depending on which uid is set as the primary?? Tried edited the uid with setpref S9 S8 S7 S3 S2 H8 H3 H9 H10 Z2 Z3 Z1 but it still adds sha1 and messages are set with sha1 even while h8 (sha256) first in the list. In gpg.conf add the line: digest-algo SHA256 Or in Enigmail on the 'Additional Parameters' line/box under the 'Advanced Tab add --digest-algo SHA256 You can also add these lines to gpg.conf: personal-cipher-preferences S9 S2 S13 S10 S4 S12 S8 S11 S7 S3 S1 personal-digest-preferences H10 H9 H8 H11 H6 H3 H2 personal-compress-preferences Z3 Z2 Z1 FWIW; about 3 weeks ago there was a fairly extended thread on this List surrounding the 'benefits' of the 'personal -X-preferences' lines. JOHN ;) Timestamp: Wednesday 22 Oct 2008, 23:42 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4845: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJI//K9AAoJEBCGy9eAtCsPD4MIAIhiwcwPemFW9KiCxeuGG16i Q4ocI6GdvzWSwlhUwi1g8y4YPDDVX0zLiq87blNOKdn+V7uh8+bv8Adib+kPGsv6 j0uG+tYWceeXPk7r8xQ1ApS/NEcrTOg3TokhoQChybQbdzyVFpwlJ6ycbYZnaT89 5D+lvbOBeQviFQs9GHyNwJvHccHpLlhgKrALTvyMLdCHeabQZA2RYkzUyA8cx66d x0w26tdY5PqnGN2VeRRX49sSvjZ5E9trtZTSDsqW6M0YhqEKh3KLriyo1FL2vok4 tHDUaDW6Pqfq20fl5HmdXYCRTljPVUnMghY/AmgOAmtV5lqHONhkcGEhgTt5CN8= =IkI2 -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: set type digest mode?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 David Shaw wrote: In gpg.conf add the line: digest-algo SHA256 No. Do this and you shoot yourself in the foot. It violates the OpenPGP protocol. I didn't advocate the wisdom of this practice; merely answered the Question: How to force SHA256? I referenced the previous thread surrounding this issue in a lame attempt to make the arguments for the OpenPGP protocol. Then again, I would instruct anyone who asked in how to load a newly acquired firearm without ever pointing out the silliness of a lethal weapon in the hands of someone so obviously unfamiliar with it. :-D JOHN ;) Timestamp: Thursday 23 Oct 2008, 00:06 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4845: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJI//hFAAoJEBCGy9eAtCsPY/4H/0GybtSlLog8D39J3Vevdcn+ ohcU+MTZI7K9KQV8hoP/UcqQOX80GTTLqr+Mnhzq7FJOgx/7VHa4vc+icKg1to9e uKU85DOrqX8y3SvexE3pSv2iS7673Mn+wRyOLNm33hswAUs22l3KeirLOPXhohja tiepYPJNPyJkrpafTxAsKI+3FUOJ0DD2fo9F5mBn4kl8Uw8icZurPpJpJYWSP7ee bWgGi8w0A7Qs67w2FvroRGIx3KgorPUcMQRRrgM9w1VFqzDyIhr+KTcrdDcvU/qA htjQXvGc1/LFG9ANq4zvbC07q7VtiMWaNl0qzGbg1NNloFCS4RR7Q772Kwzv7Eg= =f+ZH -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Key ID format: short or long?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 David Newman wrote: I was thinking... in case I want to put my key ID in a business card, what format should I use? Short format (8 characters) or long format (16 characters)? With or without the '0x' prefix? I would use the entire fingerprint in the same format as reported by --fingerprint (10 groups of 4 hex chars). The key ID is last 8 characters of the fingerprint. At one point I even had a rubber stamp made up with the fingerprint so I could just stamp my business cards with it. Since 'fingerprint exchange' is the most widely recognized form of Key Identification I concur with David. If space/character count affects Cost issues then I would default to the 16 0xformat and then, secondarily to the 8 character 0xformat position. David Shaw just Posted so I am gonna see what He recommends. JOHN ;) Timestamp: Tuesday 21 Oct 2008, 15:05 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4845: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJI/iggAAoJEBCGy9eAtCsPUtkH/3DxpfUFghcmhbVWoa4jLD0p NleoTmwjtT0c7nAyQ+UrIpbKCkcw2oDAgiHl0DVLbGptXCjCKM1xnf6VgGNrlqfs EqjqZkjaHo7omL6n/z4YOGKndFIJ4eIryVen0htOobTSKBckWmrLQqcSxWxokW46 DSTDHskUywgTb6dE8zLFzsWAokfkUsd9vk17/Ut6xEU0OWKbYAq775riZrJiltnw qhlXj3CCSF0SNFutZMYXAqkMgcbGm7aEkAUR2yIEBN/wGzB5fM1N39mjNlNdImXW jsOKL9AS+TSuxI+MIWZIM+fGHyYFvjydqf05j0+W1ULUl7wAjweZ30tFyYFKbzw= =G6Mo -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Key ID format: short or long?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Faramir wrote: I just hope people can actually read the small font I used for the fingerprint (lol). In My experience; those that understand what they are seeing will have no problem 'dealing' with a full fingerprint. :) JOHN ;) Timestamp: Tuesday 21 Oct 2008, 16:42 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4845: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEbBAEBCgAGBQJI/j66AAoJEBCGy9eAtCsPgTcH+Mzc3mTC9LjCSAlcqVQubbom gg0LWp3nE2sUIdMr8meRpC6ZDFvfIjLpljT0Arci6g41mRtM1i0H3uw9IkhPhQD/ 63efxG+egEIUxCzmXeApHpCdPcOIsim5NU9qkiSmTD9x3L8TIUTiJtpmeI5N2vGV 9+7vYw++xLy32XnZCIK68QFWz4oicXK8SFCdguQ5rwyOODIcsLSB1dE3Qd4HAQj5 Y+c6epVtw/IP0Bo8ApT2fQfDeiTBf7XXPF5SXfqCinfTaeNLsqYRrZhJGU+GPcDB WwQgRDQShbwKhKiNguzEcHHD8Qfq7Kdtis7axpJETzh57jHhllOdCF7GxLBm4w== =fYdy -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: There is no limit on the length of a passphrase,
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Robert J. Hansen wrote: Morton D. Trace wrote: Dear list readers I just found this article. Be careful of anything you get off the internet. This article is not especially good. Mega Dittos! [I know this sounds like Rush Limbaugh 'listener-speak' but it is _all_ too TRUE!] Calculating the entropy of a password is here well explained, I don't know if it is mathematically correct, [shrugs] Yes. No. Understand what [shrugs] really means.You are proposing a mathematical challenge to a List that is really more focused upon facilitating the 'concerned User'. Robert is a professional Mathematician and actually _loves_ Numbers. If You truly want mathematics then Email Robert direct. Stand By to Stand By: He will Reply and address You as a mathematical Equal. Fair Warning: HE's GOOD! He fills His refrigerator, however, the same way You I doHe earns a paycheck from someone who likes the way He applies His brain. Ya gotta understand that whenever You ask a Question that deals with 'Random Chance' Robert is gonna seriously consider it as a valid Question form a knowledgeable/teachable Interrogator. You _will_ learn if You read/study the Answer from a Guy who buys gas and I'm sure occasionally says to the Cashier gimme a Quick Pick on the Fantasy 5 knowing full well that the odds of winning are a gazillion to 1. The reality is that very few people let a CSPRNG spit out a base-64 password for them to remember (six bits of entropy per glyph). They're hard to remember. Good passphrases are easy to remember but hard to guess, which means they need to be rather large pieces of text. entropy? CPRNG? glyph? Please bear in mind that this is a 'public' List and if at all possible Post in 'laymen's terms' or risk confusing Every One else who reads this forum. All the terms/words are valid but without Full explanation You are attempting to benefit without 'sharing' with everyone else. [soapbox put away] Per Shannon's estimates, there are roughly 1.5 bits per glyph of English text. one unicode character has approx three times the entropy as one ascii character. Agreed! Gotta A-S-K again; Who are You attempting to 'share with? I'd really like to see UTF-8 supported in GnuPG and be able to type some characters from my keyboard, UTF8 is supported. However, your OS may not support it. That's an OS-level issue, not a GnuPG issue. My Mac supports UTF-8 just fine, including exotics like circled ideograph wood. What O/S are You using? MUA? and additionally select some cool unicode letters from a language only I know. If only you know it, then kiss randomness goodbye. Someone who wants to attack your passphrase will focus their attack on symbols from languages you know. The only defense is to pick randomly. only I know? Then it ain't a Language! Language presupposes that Others speak it among themselves. Either it is completely 'Random' or it is available for a Social Engineering attack. Can GnuPG accept UTF-8 Characters as passphrase input? Depends on your OS. Short Answer = YES Yes, but this is a case of buying a few hundred yards of rope just to make _sure_ you have enough with which to hang yourself. I would say that a Man who jumps off of an 80 Story building thinks He is 'flying' for 79 stories. It is always the 'sudden stop' that is painful permanent! No 'HTH' here simply because I don't care. I do believe that everyone is entitled to a 'Bad Attitude' day. :-\ JOHN ;) Timestamp: Tuesday 21 Oct 2008, 23:58 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4845: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJI/qTpAAoJEBCGy9eAtCsPCfUH/Aqk7xLt+YBZpiXwUFwd1jk+ UGKHBDsGttgg5LOKuob89wt/aoerrMlz3gOrjLpMiQ2oeLxtlnOQtxfTnU5YOkHd Z3N5Yfuqdidv0WNds3iLWi5cj0rpo03eV7uTukAM8JiFO3QDKKV5P6STqxuyOw2j 2OPSUuuaKEx10Yv15UjQccl/DiLIRUDLpjp7kCDw16IRYOPr5Mjs4bP7UWSn1AuF dmQC/Mi/FA0y0kYPbLeZoHXcCinvGRdif2HLTtnlLBz/8pzico3C6crJRKFROsTo tXcUpAvsqHWz1OdFLYBT0df8wX6WYcbaqa8UGv2Jr3VnCvgTB/6GEyH+qfbVkog= =0p/t -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Greetings
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 MD Keith wrote: [Tries using Firegpg to create a reply] Enigmail version 0.95.7 (20080808) Firefox Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US; rv:1.9) Gecko/2008052906 Firefox/3.0 Firegpg 0.5.2 Gmail set to plain formatting Guessing bet 10 to 1 signature fails On Wed, Oct 15, 2008 at 6:48 AM, Alexander W. Janssen wrote: UNTRUSTED Good signature from Lover of Lycra [EMAIL PROTECTED] Key ID: 0x76E6C1BC / Signed on: 10/15/2008 8:52 AM Key fingerprint: D508 2C9D B3A9 2F0E E472 95A8 2D8C B9E6 76E6 C1BC JOHN ;) Timestamp: Wednesday 15 Oct 2008, 10:15 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4845: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJI9fs9AAoJEBCGy9eAtCsP+LIH/ja+dTTAirg7ZBvCcqDt+50X OYD6HMeNrCpJFoHhZ07ByiLV/i4kdel4MmAAEL3PVuBE0W5+t/mpWlOStoh/HJx1 jXSESFpdmTsZ2CRv71ZQNWD/IizS41KcIZuiF06t/w7HemUVjyBLV/GDSKvMhWYZ nvxQjS5NqrMbh4cPi44rwTESW3wCsgNyNaBOE29NUlD1Jbx6rruGFh/p1P/1iU2S DQIWaLSBHoHFJrmEKTYNJ86xapeFWwZftnqez68ajdEP9DejnyXMKf4I+YXYBOFN fZ6wk0WisoUzQQlQlHKgLsTjqVuPEmeTjxo0k7eMh9EZYee2HmI0kTSWhmIRWCc= =ee/o -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Greetings
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Werewolf wrote: Just an email to say hello to the list Been using Linux since 2002, but never found any my email folks interested in PGP or GPG. So finally thought join the email list Welcome! Since You're using Thunderbird I personally also hope You've discovered Enigmail too. :) JOHN ;) Timestamp: Tuesday 14 Oct 2008, 19:41 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4845: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJI9S4+AAoJEBCGy9eAtCsPA9cH/2tr4gSDQ4QLa/nuD+N5lqlO xaI7vyxkIJL1dv+fixUzq0sSwIjMWlI/7rndgDKjl/ijFk3KAB5ot56DVnruZK1J y7E7IjbTDjt52q7GIg1FneaYLh/cu3Cr0PHEaa8+2GRTWbslOZo9L1UY6UIURf1K UB5eh9TGF0gITIyEQOSTx7cES+Fvn3DsM4fWnS9Nm8jNYQczpmQQGb/dtRs1P62+ YyL1uIgEj7Qouj0w4INst59XX/KYMB77ard4eilWLFLCp9cb3bULzNv7Z+4QMwRJ Qw2kHL8oU7F9H/HN3lUheL6Qt3RaoqmD9Q0p/b9hiN7HqbnlAJW2YD6bfknp1Hg= =UNn/ -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Is there an easy way to know...?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Faramir wrote: When I began using GPG, I signed a few keys, until I learned about local signatures... And I'd like to know how many public keys, signed by me, are over there... I can check the public keys in my public keyring, one by one, but I also remember having deleted some keys from people I don't see writing so often in the list... So, is there a way to ask a keyserver about keys signed by? Assuming that You did _not_ Upload these Keys to a Keyserver or return these Keys to the Key Owner with Your Exportable Sig attached then the Sig by You will carry no 'Weight' anywhere. When You deleted the Key from Your Keyring Your Signature ceased to exist at the same time. :) If You did Upload the Key /after/ Signing [without notifying the Owner would be poor etiquette] then Your only way would be to use Jason's 'trace trust path' from Your Key to a specific Key. This requires You to know the specific Key ID. :-\ JOHN ;) Timestamp: Monday 13 Oct 2008, 12:56 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4845: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJI832zAAoJEBCGy9eAtCsPj3wH/jioGO+u7q67STiEOUdw3x/S zYp4bBlZnXtQGKU8BBQFhKLKsnpgLYWJy6wsrmYjX9RqWfLlgwFWh47l5UzmGRUP 8Klli6l16hqdxUos+dg8vXenXaVZguMjOXTnZmOkGxR585HfXJCmC7ye8ac4zjEh c719rTafAnVDGGH+5QiqBki8ZprHEVcs9ZcW0CyPlDXrQi1i7tCwn3HfyHDe11v0 BWvwfk07Z/2xWYqrWrgXNJrlXTsKhcy23hEYUf+DJGf5FUVonfOTXuRrysoIyllh EGJouLF+mTLklFfcvUDCfiYX7aDg968UxEdpoBkSvUedTR/nHeGcZz/o6PnNWQk= =cn5W -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Is there an easy way to know...?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 David Shaw wrote: Note that this only works if those keys (and sigs) were uploaded to the keyserver net. Should You wish to Upload Your Key directly to this Keyserver net then visit here: http://wwwkeys.ch.pgp.net:11371/pks/searchkey.html Then go to: Add Key HTH JOHN ;) Timestamp: Monday 13 Oct 2008, 16:40 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4845: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJI87JMAAoJEBCGy9eAtCsPKVkH/jofDWoFYpcUiUIAg4xDBEXp mYchvxLZeCPrpcxlDfTObWGJBnAgvOf09vVsy22meKnFPGVr6MF/PFfSe+Rp/bE2 YvKFchwpew1/4CTBBkdBkQbkWKdpdSdZ9NKUG3gm9CjNp/NsW0Z0OSJu7/RBGcIY SZNocOex21jqo949R9rsKT5ElDM1ct+p8fQ7263/h/HE0bBOOuetmGPasrd1W7Es 3YJUIe9gVyHUbgoNcNboxtP08JP+nVXHxqLsVIFqqTJ/jidfoR22c9RQDazFlRTy 9MDsS/VXDSDzmm9hSplp1wdgvtpDcYkNur9+JPEdP6fVZZd3KU0IB7wwi6pWAzY= =KG2/ -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Attribute 'comment'
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 horson wrote: i think i have the same problem. i wan to change the comment i entered when creating the key. is that possible? The 'solution' here is only to create a New UID containing whatever New Comment is desired and then setting it as Primary and Revoking the Old UID. There is no way to selectively 'Edit' individual/specific components of an existing UID. JOHN ;) Timestamp: Tuesday 07 Oct 2008, 05:55 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4845: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJI6zI3AAoJEBCGy9eAtCsP3ZkIAJC9qG7WDBRVnbCMvV0z9nkR 8toY0U89aEpcaIaeXcGFXMw1aw2+7tsfPSBteP+usi14P537/ZHOPurIKEpRPIOh uxAD+R/pYbQnX9/IhpXc0nG8VyxmXmY2kAvtsh4/1iw5C3Gfeq9vcPsJMeZLjFLc J8/mh22cA1sBWoEETXTvEcDIXOknpKw1KGAWwUqX6VsLmjxKGlk9w1igCDZRdjMV GJtJL7iP9eKG/XktWWfe+WjzCOs2K4XXsiV4w1s6rL4AuJe4KGiXoiTy0G8tqmB+ lg7k8kJwFMjnDqcUz+jQAjbDsbBQXHIXQEqtku6+46OkpMGFt2o1s4z2iEynmhA= =k3W6 -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Revocation Certificates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Jorgen Christiansen Lysdal wrote: Robert J. Hansen wrote: This deputy sheriff reported to his superior, and I wound up with a thirty-day delay in the paperwork while the county sheriff made sure that I didn't have murder afoot. Were they overreacting? Sure,a bit. But they were also doing their job. They could have been overreacting to cover their own asses. In My experience the majority of folks seriously contemplating Homicide rarely to to the effort to obtain a permit for the murder weapon. JOHN ;) Timestamp: Sunday 05 Oct 2008, 07:23 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4845: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJI6KPTAAoJEBCGy9eAtCsPGz8H/0dUZfbsDkww9juRYUc1nCUH 34y689iJVDx5t5x01wNKGDkfo9DW79LooHWoJtij31E5OlHmpYccA3x7fUdr8svI ws3OUnomhXDdck3rgLkws9Y5gSkpueY9gJV8xeUJR5uaejcKR9dfOFQGSopJdrKF aN9TxAMLzzvps0njBZYBrWMpU1pZvXNfSpybaTRxlYsJ6wsXtoBNWeV+zCEg5AVV O/JusY1+4Mqu4n6iWS0BqEHa9t7fetPosjhMDHjQ9GdbISmXERJp2/Qlr/hUZVME lBTk01A43n4iz6729A1AWWBLWUiSIFOXL9sa4+LSVwmOgrVOXisZsqnngUpXfNk= =OKTR -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Adding a UserID to Your Key
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Lawrence Chin wrote: bothered me for over a whole week for another reason. I want to propose that we all use absolutely untainted clean language when we send encrypted emails (like this one is encrypted) so that we wouldn't give authority a reason to take away this privilege of ours to use encryption. It should be part of our ethic in using encryption. The Encryption genie is 'out-of-the-bottle' now and cannot be stuffed back in. Particularly here in the U.S. where eCommerce and Online Banking rely upon PKI protocols. More basic is the 'electronic processing' of Demand Deposit [checking] Payments. Even if the desire existed; the NSA, FCC FTC _combined_ do not have the resources to 'outlaw' Encryption at this point in time. :-D Even the paranoid Patriot Act makes no mention of or reference to Encryption. JOHN ;) Timestamp: Saturday 04 Oct 2008, 18:18 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4845: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJI5+v6AAoJEBCGy9eAtCsPA94IAIH5RzJergEJRx0iiSrYOMTG IGyKnB7rrJQm5eMVvPqR3nYuqdtrjA4WxlhoaWAi8FnsihHhmsDJKahBLnVxbyeD 5CY1vDIiqKUc4fJDnisL0gqR7qRG1hRKGWfI2ttrhwB7/L7Lcb+qWyYkgpEmo5wi CyskY3oi11IyF+aKfFNLA7nuvCYkwY8bkqzimmst89EAVfE6yRFXZtIVPjFcNBBw pFppBoDMpppDtUkCbHTfg/uOqcWRiU/7hahT6iHaepnyl43QB6W6/OqAfMDd75+R CmGI1waEt2G2Zbt9Sj0jEtZV3KFvhsm+uLWd0JBuIbNZG/UMUFXO5KlUsklKw1c= =Tflj -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Revocation Certificates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Lawrence Chin wrote: This is another message of Kara's that's causing me nightmare last night when I read through it. We shouldn't have words like ...Deputy director or NS adviser etc in an encrypted email! Why? Even if Reference to entities whose existence is public knowledge were known to exist; the Message was Encrypted [until re-Posted here] and therefore privy _only_ to You and the Sender. :-\ Please no body send encrypted email anymore! I'll just practice encryption with myself by writing to myself. Your choice, of course, but prior to Your entry to Encryption there have been many profane, obscene inflammatory comments made about DIRNSA, the President of the U.S. many others. At present all of these Public figures have much larger fish to fry than concerning themselves about references made to or about them. :-D JOHN ;) Timestamp: Saturday 04 Oct 2008, 18:26 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4845: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJI5+3YAAoJEBCGy9eAtCsPQJUH/2gD4wD/JUS6jRM1xKBV94qO TUbNsKBq43rABwLtRKNmWecIDALHSQ8Z8qWdpqH7TVRTZSVpyIPTKDMb5F9Ad3nW heEOyM8xg5NfgTmfOdc1aK+6jWQLLAfdajqh4Jh9N+9YdccAkSpprNFh7VmdoFqJ YFkuykdki+xNSpdlxgYvj4d4HkETFdEA4EYsgUKYRhsEhcsRz1WuZzNqDsj+BAsO dJ8vTKWOFIj6M28Af6qzrCsnROKZI0j8aeg6mU1k+Cw/RKZcNGcSi4HQDiQLN7xS cDeU5W36kR8bmQQcs+hfGlaSgtFdCOnhLN0PU3Y58xIgASMsCBqSj+LeGbvM0Bw= =TVag -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Revocation Certificates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Robert J. Hansen wrote: If you are that concerned about the intelligence and/or law-enforcement communities seeing what you write, you should be very careful about your involvement on this, or any of several other, mailing lists. More precisely; You might be better served to abandon Email altogether as a Communications medium. You might inadvertently discuss cookware and mistakenly become the focus of a bored CHP or DEA inquiry. :-\ JOHN ;) Timestamp: Saturday 04 Oct 2008, 23:40 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4845: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJI6DdHAAoJEBCGy9eAtCsP6VgH/jniB45uRzO5XxHbTgzu7Vav xIDqC/8aK+VvcezRx1UQ47HnVg4ZC3N9ALhRxq5KnnYQUURi7EfuPgO/FH82CvvE HzBQCsDcADvG8D4JbTnH+XgpAXl4Z3hkNTQxlSFINyq3ZnP3Xro6+nTN3HoPwdPw DKwHSuXqefTpnNbreAPg7Ov2ux2AwFoUKioYD40vCO8GqvpuvOB5+qHj+Hq51B3s DJcnvAON5MbPNfGYiXZqoCztB9bdLYftTq2sM9EIKp1KK7dPzTtahpDf3Pl40mHv uCUhlKwsNuPhIxMdqKXI0yjrYnc3vLZaESLVrd5RlCpaIscXdT2RnJIdSVGmRTo= =6VoN -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Preferences...
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 David Shaw wrote: them... but there is no guarantee that those messages will be decryptable, ever. You've got a gun pointed at your foot. Be careful you don't pull the trigger. Ah Jeez, David; You are too rough on the individual who incorporated the proper code lines. Hee Hee While 'interoperability' testing has not occurred; I have been able to successfully utilize Camellia without Fail. Somebody deserves a 'Pat on the Back' for doing a fine job of inclusion. I ignore the debate of whether or not another cipher is necessary; I applaud the skill with which it was woven into existing code. Just My Humble Opinion. JOHN ;) Timestamp: Tuesday 23 Sep 2008, 08:00 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4824: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJI2NpgAAoJEBCGy9eAtCsPxeoH/1drxm0XejhCLOfjRwVfyDx7 jdH06cMq6bNnvmLYOVEj/7CWkIRCWz9QWfiLg+wk3j6yefF62OJeN3AfULL+vPi1 9DLJDAci2AMF/idUn7R+ryJZArx8LsUpeb0zYBCSAT/o72i4fpbRMNN/6uIBI1NI 1JJV1nG4JO+lq7kjpzrlIHLXYra01w/3IG/vUI3ZDmfVaWAD2K2GQZranh5gC3Fl acxR1KRekJ71wpPRUwZGuN6c8Da7Q/FTCd4hJfd2Ofjfg0Nxr7A+Bq1Cs8XbJAgy lMZBQ2vpBtTDNTy6vb9bjINMU0SCG0aEDjHyKZ7nlrs+T3H+eV67ROVOOmDptpU= =gsr4 -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Changing preferences
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Robert J. Hansen wrote: Remove the option. Seriously. I think key preferences ought to be considered analogous to --cipher-algo: you can tweak them if you want, but it's not recommended and should be hidden from the user by default. If a user uses the --expert flag while --edit-keying, then present it. Otherwise, make an executive decision on a reasonable preference set and be done with it. This solution sounds awfully 'Nanny State' like in its approach. I am opposed, in Principle, with _any_ attempt to protect people from themselves in any context. When You deny Someone the ability to make mistakes You rob them of an opportunity to improve themselves. This ongoing thread is ample evidence that this is an area of common confusion to a fairly substantial sub-set of GnuPG Users; Education should _always_ take precedence over Elimination as a solution. Stick with the Defaults until You RTFM may appear harsh on the surface but is far preferable, IMO, than saying You'll *never* be able to grasp this so We'll remove it for Your Own good. Now that You, Robert, have spilled the beans regarding the 'expert' flag; I anticipate another thread surrounding its purpose, use function. :-D I once heard this described as 'unconscious competence' and think this is an apt description of what happens in most educational threads surrounding complex Applications. JOHN ;) Timestamp: Monday 22 Sep 2008, 04:56 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4824: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJI1125AAoJEBCGy9eAtCsP64gIAIpCMfp3r1dxLVuAjMR9yTVl CwFAy3sngyDG6ZZy/SlxSpW0HfGtYaodQLn91AJkeYChkOIPnzozuHHE4FQplrX0 rYXxK689BtrRfdhKvcS0BQRimNUZpMxkO7IiDHk0owGaUrAN6laP39ZufrBZFarS CBff4sKXG5/wgizVN6Ut+8WGM5dZWDaV8sF98q7OJVjYjEb7iRPcdIqR742p//yk kcYQiHd7ASy+ytvAgfSrhy6ZYloG5s22GMnxTqJy+W7fwuIaigUJzGdTuwl1yNAt L+YPz7GS28IgL/w60q5vjcqvx+Cq/7vpCigZvJMKM4VMZsSCn0kDMWou+NO7Nsw= =J4iF -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Preferences...
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Werner Koch wrote: I also wonder why so many people are interested in it. Well Werner, because You have 'Groupies' that cleave to You like they would to Phil Zimmerman if He were so Publicly available. Folks are 'interested' because it is New Different. Your tacit acceptance makes it 'Great'. Ain't notoriety a Bitch? JOHN LMAO ;) Timestamp: Tuesday 23 Sep 2008, 08:55 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4824: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJI2OdcAAoJEBCGy9eAtCsPdtUH/R9u+nFVqYEU98zdS/kr/O9x Xmk+GM5NBRbS9VcrgYAKhIJU7Oq7ySHkDM1sv5hGsRp56j0df1Y1nPs+URQetwGK 9yQiRGRcbB4fk2Ugudw2tLt7L+YXYn89JcJanXoU+nBvLxhR6BklBTAoaEtT+d9U RErBxy75enNXE2iQzWUYA4/0jIJSj35bY1eWqJC+zSPb7Pxg3jKal5mmbys8HjCk OGCt2Qa1ukiKSMtB4zSljtb4bovrTgXEx36v+Rt/upROjkWK1gvakgzukAc56b6o 6xqyzqerx6v2YNY2tgSH2/gS14rl/gSQJvxmyV/wPERkC4NDjcpKugdMRCrikCE= =6n0Y -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Preferences...
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 David Shaw wrote: That's exactly it. Camellia is a very popular algorithm in Japan. Including it doesn't buy us much new from the cryptographic perspective as we already have strong 128-bit ciphers in OpenPGP, but it does buy us something from the usage perspective. It is good for the OpenPGP ecosystem. For those who are curious: http://www.ietf.org/internet-drafts/draft-ietf-openpgp-camellia-03.txt https://datatracker.ietf.org/idtracker/draft-ietf-openpgp-camellia/ Pardon Me for pointing this out , But; OpenPGP must remain viable in a commercial sense. g10 Werner *must* remain 'competitive' in the marketplace. Some included algorithms have got to be available for 'compatibility' with with _all_ OpenPGP usages. Discussion of Camellia is really out of context for GnuPG-Users since the vast majority do not have access to it and the few that do must/should recognize their exposure to 'Experimental' implementations. :-\ Camellia, in all permutations, is /Bleeding Edge/ and unless One is comfortable with the personal responsibility required of use of /any/ Alpha version should steer clear of even considering Camellia. Just My 2 cents worth. JOHN ;) Timestamp: Tuesday 23 Sep 2008, 11:59 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4824: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJI2RJnAAoJEBCGy9eAtCsPAqQH/3qjUJG/nXMhEXK6qsfgIATK vGoTlZ3SEfK5J/MaDqXE/NLTFMphrw75cHsKsbM76krywK8ImoVEPpZfu5oqiQlt /5FkUTSPDEWC6LXx/MnG55E3+dJjeFU+obv4mGD1WUNx3l72cgl3trvgFW6/b0mM lAvV4oy6ZiyAaK7QNlBZOcgzK1roZxRMzFpB9qEB81LNo8aMyXewKwYk6HQMF2Sq 2OiWIUSi3rnsWUgiDQTs2WBq/2ltjzbeyqE1CrtNqiEVQz+xWYONB+/0fejOmeZ/ CwMw98uggLTnyM7XYrM3Ss7pp8nNpYUbcY7zS1HrHgiXes4glxOeLf3ltRf7cvY= =UftN -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Changing preferences
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Mark H. Wood wrote: Sounds good to me. It seems to cover what people mostly need to know, and is compact enough for a man page. Color Me behind-the-times but I seriously thought the Man Page was succinct and clear regarding this. :-\ JOHN ;) Timestamp: Tuesday 23 Sep 2008, 12:08 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4824: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJI2RSbAAoJEBCGy9eAtCsPcgQIAKFaKfGO65YQf3BANFOavn3k RqSGIN5qMwR4uFoP3vlJ5SktfPV1XW0X3Ia42ccWkLXk59aV55DkEA4CVaL1smHN Z1ZPx5gnibbB1lA6UsdouAwXPyVQzL1I+g5K97L1XcoLPHc+Bem2P3cU7tm8kzm4 EF8QlDWXdgAk6156L9ve7qX1Gk9KgrGRwyVWOitUzzpwxryXNOGdGwVi2EC2yZeK 5fDUlCFu/ic453fcLpuW9CGWJQCO7tqNWzD8r6J7Vpnl7/SjHbHOOm2pRIhfU5CB g/7nSav/iXIVH/Ea579X+WLQwy4FLDPSLDX7xrOcyNrV+e2aqD6ptOfzraP6kWY= =H8ML -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Changing preferences
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 David Shaw wrote: This means that GPG will now allow the various recipient keys to vote on which algorithm is chosen, and the most-preferred one will be chosen. It doesn't really change much that is visible in practice, but it does mean that if you have a bunch of recipients that all list a particular algorithm somewhere, and most of them have it as their first choice, you'll probably end up using it. SIGH So, nothing changes until a Key is 'refreshed' on individual Keyrings? The fact of the matter is that unless someone has a current Key with preferences then the existing Key will be the one that is used. I've got a shilling that says 99% of My Messages will still be Encrypted using 3DES. ;) JOHN ;) Timestamp: Tuesday 23 Sep 2008, 17:16 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4824: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJI2VzCAAoJEBCGy9eAtCsP8t4H/imnhZ324OY5ysWxsM2FHf5I oXP8L1G98bnfiI6YDZAefDmrGssx2zWqR/ddHjLmzKfk6tIsimRxX9HTulnRGGlk v1LD30ih30cUv53uYyXHQS+ChsRN65HFbsYkzltCXVevSGoBDvlbwBqd2kThQr8X Pjeunhyj8MeYP5YO9JZA/fujwxLtvFCyaOgYzO7vzRFjR6ChM66VEToBSDkS6FW1 pKVpahXmgmyzVDwqYuEAW1ROCukt8iU0j49RHQzYYRklR7tMpyymPK5IVz5025X2 K+SRBPblXHOe3CUarKiYr6fCzMAzOPRPWUR4ZRI4GkADCQCys2rmUORoHJzA72k= =CcQx -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: testing again
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Lawrence C. Chin wrote: Opps. Major problem. Didn't do it right. It seems that my previous email was still sent from that kurtc dummie account. I'm trying it again. Can someone verify my signature of this new email account of mine? (Import my public key and all: lawrence.changlung.chin_at...) Thanks. All the Messages I have received have shown the Lawrence C. Chin sender ID and have verified Good: UNTRUSTED Good signature from Lawrence Changlung Chin (l'ecrivain et l'artiste) [EMAIL PROTECTED] Key ID: 0x415BF177 / Signed on: 9/16/2008 6:06 AM Key fingerprint: 6F0A EE35 CF35 C1C9 FCB2 F217 AA1B C65A 415B F177 HTH JOHN ;) Timestamp: Tuesday 16 Sep 2008, 08:26 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4824: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIz6YfAAoJEBCGy9eAtCsPTwoH/161iZQPikWJdoqalx/pqNMO qQhxCSCmdhyYKbmBEqAV0ScvBkwXVNIe1DE6pjjLAXqxETtN8j/6VqE+mINFiZP1 LXqrpF+D5r+Ngx70Pj6Blo5Wpm1C+slFHDy6VIxNh8AzT6ouFV4xQ/B+5MvMQ5vx 11Phk3cXUE/BMEBvDS/4CWM15lI7YRjGBFdLkMwYXhP5dfqs9seKonufeaW1vmQD 1xz2FoGZpNbGi0rlAhrQKPhBkRY8LnN8DHKTpqZuGRayrbrGkyLHU0UJwBJL7q4n fJkAbRCUU6qfWh/Ipke3/ysGKd0WyAQjwSkah8Bvc/781LtiFMtvVyEN7dBKq4A= =31iQ -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Removing UIDs?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Faramir wrote: Yes, I thought about that too... but now, maybe it would be useful to be able to upload the key to that key repositorie... the one only the key owner can update... I forgot its name.. Big Lumber the PGP Global Directory both offer this but without a pre-configured Keyserver preference on the Key then most Recipients will acquire [or attempt to] the Key from a Server on the SKS Network. :-\ JOHN ;) Timestamp: Tuesday 16 Sep 2008, 14:37 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4824: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIz/z7AAoJEBCGy9eAtCsPZjcH/3fmOrzTPIbcuV19KDan9XvR ta+nkh3Nk2dPvzdEsDu01EPBEPlWKfd8He66D7kJ+B4SngfMUS17h4VzdBlu8NMV ijKRPOzNjq9rPjINu7PTBMY1bJ/K74Fe/K+LYXmSHZDoPM79T7R7LYqjdM+bM9T7 TnoiOzD6jfa8CGrPciWcoC9XvcR9JtD8wqVO5pn/uSOIjRbYegbB1RUQtUL1Ch3B haQZYi28JABuO7st6BhgFM0M8mTSh0eRfmarqhspOqR0fxNE4qqEvk2MEJD5e7XM wCxtT6WfaVmsVJdsQnHz2I4AqVUrRKwy1wMfUd6D3ll7SLE77DmrnlHYSRe7nn0= =P/uc -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Protect pubring.gpg and secring.gpg
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Faramir wrote: TheEnterpriseIsTheBestSpaceship FWIW, even with the quote marks left in place this would be foolish if folks know or think they know that You are a Trekkie. An Application that can be helpful in forming a passphrase is Diceware. I don't have the Link handy but any Search Engine will display it in the Top Results. HTH JOHN ;) Timestamp: Friday 05 Sep 2008, 16:45 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4824: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIwZqgAAoJEBCGy9eAtCsPmvUH+QHprqJvktJeSa/R0tUVRSf/ yNC1lLXAq25gZDtjUsDrv7eD+1IkJSOWvuTEUcaZBsof8j1cjQqv3aVSteE1zmTx UGI5dwgUYDzeOj+5ajH2JZ8uLnITtjWu6Ez0ApcRpgVjxbXP+5rNNuhqOqVKjW6g 4o9ZWOm3GuoDjqR79ehSwO5OrKMxOGyZpmPNwbLcZUO8S/OMqfEZ954MC2n25KSC 3Hxolm+PbnYsxV8JDrkBYlzn/9DZWO7sm/32ZMcWLpJSEUbjml54YJ+Bpr9mF/Ra nH7woNDDbDbURvlLp7tYr+UbeDjH8L1bDhoW7YB+G/x94IyS8mZMW9HFWy6Aoc8= =Crb+ -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Passphrase storage (was Re: Protect pubring.gpg and secring.gpg)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 David Shaw wrote: Out of curiousity, is anyone using one of the various passphrase manager sort of programs? Assuming they're implemented and used correctly, they're not a bad solution for passphrase overload. I use Schneier's Password Safe [v.3.14] for all My PW, passphrase Token storage in addition to the Secure Password Generator Extension for Firefox. The convenience of Password Safe is that by maintaining accuracy of _all_ Login information I can store the Encrypted Data File off My PC along with copies of My secring, pubring Revocation Certs just in case physical disaster should happen to either Myself or My PC. JOHN ;) Timestamp: Friday 05 Sep 2008, 18:26 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4824: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIwbIrAAoJEBCGy9eAtCsP1g0IAIw8Y7n8BPMiqUctrtv+Qa3L SQhXzcdys9AvUPsAPz/t0yP9IqdvC/8lmwUyQrq3YHAhnWGZsNCEAGKvr8g17mLl ZsF5wbVFBhhJPQDWzbhV73j0AOnup/BRnJmJZOdM2j/ZAxVbRgA02CYOH0bY4YM0 OMrn/ow5qrWbeipYTAreTBm+Vg+E8KCictiJYdOViVhyySBFWFPS9Suj3GfQdJdj Kr4LQVDwUYZ+TJfI1P5A/td7rLyEPxmqOx488mnVw1m8QiHHmIPMLCOSav0oXpYw eh65N82djQxa978eiIrwEt5RXgf5McQWb8uYNgNT8RBE4pqkpEx9xpJQ9yxtUe0= =qtRb -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Has anybody installed SP3 for XP?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Faramir wrote: Well, my windows wants me to install SP3, and before doing that, I would like to know if there is any known problem with GPG due to SP3. It would not be the first time an SP breaks something... and I don't want to break GPG. I have experienced _no_ issues with regards to SP3. JOHN ;) Timestamp: Thursday 04 Sep 2008, 08:19 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4818: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIv9JTAAoJEBCGy9eAtCsPMzsIAKSr+2ReiJfhT7YRDAJKUtTI Di69s5y5lPlgQgmWvOQlZh5JbGy/0vJgu52fc7YLzz9moNWe4rmq1fr2dy+VgXnM ClTZ62ApILMMad97X0bOUQb4CpdNHxXUO8xw28wFng5pFd80NQBfhnjsgEueEbtV OlBy2nvRjRtae7hGX6DfNvSuGvOTy9/c8ibElDtJ0PsgAB8oVcco9Z5v2X40/Por 7SG+PssmLhkx9eMBUuDi27LDbZkHWSCOogoTEXenzwIZAl7ryDp1fejYuy4evaVX t8mK2fkhZ2uW+Q+XO9YgZ5rSFfY9ENcxWUPX4XcvYUaO/voDmSsZ+nUbTz1rD3c= =BMZ8 -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: can't change to my real name on this mailing list
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 kurt c wrote: I don't know if this is more of a ThunderBird question. I have already changed this dummy kurtc name to my real name lawrence in the setting of my Gmail account, but somehow on this mailing list I still appear as kurtc. I read it's because the outgoing server name is still under the name of kurt c, and this outgoing server name can be changed under the Tools dropdown list. But somehow I don't see any outgoing server choice under the Tools section of my Enigmail. Can anyone give me some idea? Thunderbird Account Settings; Click on the Name of the Account and fill in the Your Name box with the preferred display. JOHN ;) Timestamp: Saturday 23 Aug 2008, 06:52 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4815: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIr+wJAAoJEBCGy9eAtCsPbU0H/R72fFR1jqzlti7tPqDHNP9J WGg+xwBap3Xqgw2xBxHpzfQRyn/Sh3EYkiij/HTTdcbSRxfaem3h7+msMitCCsCl r3dVMRDT0wID115CKMMTT7blhGD922T8qmagJ1Wzjro0OdiKEThbGeWUxGNYcaeQ pMgUoLYbckHfN81x9eMGNKcaARaqcQI/4da7I+X3C8/GOexLez+JZIbBwxXV3naF dgNSBDI1HYGaw3Sw0DnUIsHs0Q1jgmWssZIK7/4oGa3kIyyCGZV8bUuwro6Kp2/z mwMvS4mI17/I7tF+svhnmtDKNWkgm9ZxKwKl0wksUzIoxlOj6z1tg5hvNJidbBo= =VdIs -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: What does the message mean while encrypting?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 张靖 wrote: It is NOT certain that the key belongs to the person named in the user ID. If you *really* know what you are doing, you may answer the next question with yes. Try adding the following line to gpg.conf trust-model always or You can place a Local Signature on the Key. JOHN ;) Timestamp: Thursday 21 Aug 2008, 07:33 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn4815: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIrVKIAAoJEBCGy9eAtCsPEEEH/2++TVChU8VR3A+RMfsE8iFN B7smBpcN36AL0IGAOOt3vWSzRxkzD0kNEq0IoTUNcJJsVaUhC7FU9puM117mcEKJ 1qa9GAres7ny+9rNPylLqPnqxOep0REdXEDFfu5Ga2yCkMHNDIiGSDDPv3laGbnb S0rjJafLPtC9Vpy08bbDIxgOPdzF9Qcbyop85YS64etRmj+i5PCCYvIVRAhVfk3g hmzVa01GKJfOTyJHxvvpEH8SJEZZaY+FSrMzKvNKVseXAwWzhdEb9PWXZ9IHroXP noCSWSdhvMayY2rhdyiA/uznX548FmbOCpHKfB4up8YZ4V+YzJOo67qBItFOp0k= =GZHb -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users