Re: Second OpenPGP-card

Am 20.02.24 um 17:20 schrieb Jakob Bohm via Gnupg-users: On 2024-02-17 12:37, Juergen BRUCKNER via Gnupg-users wrote: Hello Jacob, Am 17.02.24 um 12:04 schrieb Jakob Bohm via Gnupg-users: [...] I don't know exactly how the situation about this is in Germany. But here in Austria many mobile

Re: Second OpenPGP-card

-shop.de/de/security-privacy/smartcards/13/openpgp-smart-card-v3.4 -- /¯\ No | \ / HTML |Juergen Bruckner Xin |juergen@bruckner.email / \ Mail | smime.p7s Description: Kryptografische S/MIME-Signatur ___ Gnupg-users mailing list Gnupg

Re: Second OpenPGP-card

a SIM card punch with which you can punch out a micro-SIM or nano-SIM from a standard-SIM. Maybe this helps regards Juergen -- /¯\ No | \ / HTML |Juergen Bruckner Xin |juergen@bruckner.email / \ Mail | smime.p7s Description: Kryptografische S/MIME-Signatur

Re: Second OpenPGP-card

hope this helps. Best regards Juergen -- /¯\ No | \ / HTML |Juergen Bruckner Xin |juergen@bruckner.email / \ Mail | smime.p7s Description: Kryptografische S/MIME-Signatur ___ Gnupg-users mailing list Gnupg-users@gnupg.org https

Re: Can IPAD or Android Tablets create Keys and use gnupg

(+ Crypto-PlugIn) which supports BOTH OpenPGP and S/MIME. All of them are available for a small fee. best regards Juergen -- /¯\ No | \ / HTML |Juergen Bruckner Xin |juergen@bruckner.email / \ Mail | smime.p7s Description: S/MIME Cryptographic Signature

Re: WKD proper behavior on fetch error

Hello Andrew, Am 18.01.21 um 13:17 schrieb Andrew Gallagher via Gnupg-users: On 18/01/2021 11:33, Juergen Bruckner via Gnupg-users wrote: Hello Andrew, Am 18.01.21 um 12:17 schrieb Andrew Gallagher via Gnupg-users: On 18/01/2021 11:07, Juergen Bruckner via Gnupg-users wrote: Sequoia accepts

Re: WKD proper behavior on fetch error

Hello André, Am 18.01.21 um 00:03 schrieb André Colomb: On 17/01/2021 21.39, Juergen Bruckner via Gnupg-users wrote: And as far as Sequoia is concerned, Stefen's explanations only confirmed that this is software that I definitely don't want to use. Software that accepts an invalid digital

Re: WKD proper behavior on fetch error

Hello Andrew, Am 18.01.21 um 12:17 schrieb Andrew Gallagher via Gnupg-users: On 18/01/2021 11:07, Juergen Bruckner via Gnupg-users wrote: Sequoia accepts an *invalid* certificate for the host 'foo.abc.github.io' and that is "failure by design". This is incorrect. Sequoia *does n

Re: WKD proper behavior on fetch error

Hello again Stefan Am 17.01.21 um 22:27 schrieb Stefan Claas: On Sun, Jan 17, 2021 at 10:16 PM Juergen Bruckner via Gnupg-users wrote: Hi Juergen. Your showcase with github.io also says nothing else than that Sequoia considers an invalid certificate to be correct. That this happens

Re: WKD proper behavior on fetch error

Well Stefan, Am 17.01.21 um 21:44 schrieb Stefan Claas: On Sun, Jan 17, 2021 at 9:40 PM Juergen Bruckner via Gnupg-users wrote: I can only agree with Andre's words. Perfectly fine for me if you take this route. And as far as Sequoia is concerned, Stefen's explanations only confirmed

Re: WKD proper behavior on fetch error

Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users -- /¯\ No | \ / HTML |Juergen Bruckner Xin |juergen@bruckner.email / \ Mail | smime.p7s Description:

Re: CNAME aliases for wkd.keys.openpgp.org and X.509 certificates [was: Re: WKD for GitHub pages]

up WKD for 'Dummies'? best regards Juergen -- /¯\ No | \ / HTML |Juergen Bruckner Xin |juergen@bruckner.email / \ Mail | smime.p7s Description: S/MIME Cryptographic Signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org ht

Re: WKD & Sequoia

to follow policies word by word. So far you only presented us assumptions here, with a non working setup, and also a setup which never was intended for such a case. m2c Juergen -- /¯\ No | \ / HTML | Juergen Bruckner Xin |juergen@bruckner.email / \ Mail | smime.p7s Desc

Re: Mobile mini computers for GnuPG/OpenPGP usage instead of smartphone usage

are mostly sold out when looking around, but I had luck to find a German reseller who still has some in stock. Regards Stefan Could you please tell me more when you get this device? best regards Juergen -- /¯\ No | \ / HTML |Juergen Bruckner Xin |juergen@bruckner.email

Re: Thunderbird / Enigmail / Autocrypt

important for some people. For example, I configured my Mailserver to sort out HTML-Mails as Spam as long the sender is not on a whitelist. HTML in e-Mails is a very big security risk in my eyes. regards Juergen -- /¯\ No | \ / HTML |Juergen Bruckner Xin |juergen@bruckner.email

Re: Major problems with gpg and scdaemon, help highly appriciated

of OpenPGP instead of Enigmail. Sorry that I can't help in a better way! best regards and a great weekend Juergen -- /¯\ No | \ / HTML |Juergen Bruckner Xin |juergen@bruckner.email / \ Mail | Am 14.11.20 um 20:08 schrieb 22h39 via Gnupg-users: Sorry Jorgen for the mail I

Re: Major problems with gpg and scdaemon, help highly appriciated

What kind of OpenPGP card do you use? The OpenPGP Smart Card V3.3 + MiFare DESFire [1] don't support PGP operations via RFID. regards Juergen [1] https://www.floss-shop.de/en/security-privacy/smartcards/4/openpgp-smart-card-v3.3-mifare-desfire -- /¯\ No | \ / HTML |Juergen Bruckner

Re: Major problems with gpg and scdaemon, help highly appriciated

and try to sign anything using the contactless interface. As far as I know the OpenPGP function of the OpenPGP-Card cannot be used via NFC / RFID. You need to use the on card chip and a card reader for PGP operations. regards Juergen -- /¯\ No | \ / HTML |Juergen Bruckner X

Re: Traveling without a secret key

Hi Stefan Since you and Andrew are using smard cards or tokens I would like to ask the following, prior considering purchasing one myself in the near future. Well my first choice - as it is a OpenSource product - is always a Nitrokey [1], I use both the NK Start as well as the NK Pro. But

Re: Traveling without a secret key

of your key. And you have to be very careful with your SC or tokens. In principle it is almost the same as losing your credit card or passport etc. while traveling; you have to provide alternatives (e.g. multiple smartcards). regards Juergen Am 08.07.20 um 21:17 schrieb Stefan Claas: > Juer

Re: Traveling without a secret key

Well i think that's one more reason why you need a smart card or token like GnuPG-Card or Nitrokey (or a Yubikey for my sake). Regards Juergen Am 08.07.20 um 18:36 schrieb Stefan Claas: > Ryan McGinnis via Gnupg-users wrote: > >> Six years ago Snowden said to assume the NSA can try roughly 1

Re: Certified OpenPGP-encryption after release of Thunderbird 78

Hello Patrick, > Let's first define Standard users. The majority of users who use > smartcards that *I* know are expert or power users. They can handle this. > > The "Standard users" I have in mind don't use GnuPG for anything else > than encrypting mails, and they don't use smartcards either.

Re: gmail smime, sends two messages one is not encrypted. Experience?

Sadly i know many CA's who don't give the user any choice about this. They say as a 'user friendly service' they generate also the key for the user and send him a .p12-file. Am 10.12.19 um 17:01 schrieb Mark H. Wood via Gnupg-users: > > Oh, I hope not. The point of asymmetric crypto is that you

Re: gmail smime, sends two messages one is not encrypted. Experience?

Hi Stefan Thats not the approach PGP pursues. PGP was, is and should continue to be decentralized in the future. It was never really intended to validate identities in a wide circle, but to secure communication, and - im parts - to ensure the integrity of software. The so-called WOT has proven

Re: gmail smime, sends two messages one is not encrypted. Experience?

Hi Stefan, well... what is a trusted and a untrusted CA? Is a CA really trusted just about the fact it is "build in" in a browser or mail client? Is a not included CA really untrusted? I think it is more a personal decision than anything else. The past few years showed us very good examples why

Re: gmail smime, sends two messages one is not encrypted. Experience?

This question is very easy to answer. S/MIME has some advantages over (Open)PGP. One of them - the most important for the usual S/MIME users - is, that S/MIME allows the uniquely identification of a communication partner, which is only limitedly possible with PGP. In addition, educational

Re: [gmx+gmail] (was: gmail smime, sends two messages one is not encrypted. Experience?)

Hello Uwe, i use Gmail for business for a very long time and never had any issue like that. This message here should reach you as S/MIME signed message. best regards Juergen Am 05.12.19 um 23:43 schrieb Uwe Brauer via Gnupg-users: "UBvG" == Uwe Brauer via Gnupg-users writes: >

Re: Future OpenPGP Support in Thunderbird

Hello to all, well it's a good thing, that openPGP shall be included to TB directly. But ... as the Mozilla wiki [1] states in the FAQ-Section the following: Q: Will OpenPGP cards be supported for private key storage ? A: Probably not, because we don't use the GnuPG software that's usually

Re: Your Thoughts

Hello to all, Am 01.07.19 um 00:23 schrieb Ryan McGinnis via Gnupg-users: > Does anyone know what PGP’s peak adoption rate was? I always loved it in > concept but very very rarely saw people actually trying to use it in the > wild, outside of the types of people who read this list. Well

Re: New keyserver at keys.openpgp.org - what's your take?

Hey all, here is a article (only in german) from Heise: https://www.heise.de/security/meldung/Neuer-OpenPGP-Keyserver-liefert-endlich-verifizierte-Schluessel-4450814.html regards Juergen Am 19.06.19 um 00:53 schrieb Earle Lowe via Gnupg-users: > On Fri, Jun 14, 2019 at 7:35 AM Stefan Claas

Re: Enforcing password complexity for private keys

them the weakest link. > >> On Apr 30, 2019, at 13:21, Juergen Bruckner wrote: >> >> Hello David, >> >> have you ever thought about using SmartCards? >> GnuPG has a built in SmartCard service. >> >> regards >> Juergen >> >>> Am

Re: Enforcing password complexity for private keys

Hello David, have you ever thought about using SmartCards? GnuPG has a built in SmartCard service. regards Juergen Am 30.04.19 um 12:55 schrieb David Milet: > Hello > > We’re considering rolling out GnuPG at work for developers to sign git > commits. > How can we prevent developers from

Re: What to do with public key signature

Hello Chris! Well I think it is NOT your task to publish this key on a keyserver. It is the decision of the owner of the key to publis it or not. So in my opinion the best way is just to sign it and send it back to the owner. my 2 cents Juergen Am 11.04.19 um 10:57 schrieb Chris Narkiewicz via

Re: Generating revocation certificate

Hello André > I'm using (up to date) Trisquel. > That is a Ubuntu-Flavor based on Ubuntu Xenial (16.04 LTS). This Version needs GnuPG 1.x for the signing/validating of the Repository-Keys. So you can't uninstall GnuPG 1.x regards Juergen -- Juergen M. Bruckner juer...@bruckner.tk smime.p7s

Re: Generating revocation certificate

Hi André, which Operating System do you use? regards Juergen Am 06.04.19 um 21:21 schrieb André Ockers: > Hi Peter and list, > > > Op 06-04-19 om 21:02 schreef Peter Lebbing: >> The error message is really unclear, but the problem probably is that >> you should have used "gpg2" instead of

Re: Gnupg-users Digest, Vol 184, Issue 22

03.02.19 um 21:56 schrieb Stefan Claas: > On Sun, 3 Feb 2019 21:43:34 +0100, Juergen Bruckner wrote: > > Hi Juergen, > >> ever had a look at "Jami" (formerly 'ring') [1] >> >> >> regards >> Juergen >> >> [1]https://jami.

Re: Gnupg-users Digest, Vol 184, Issue 22

Hello Stefan, ever had a look at "Jami" (formerly 'ring') [1] regards Juergen [1]https://jami.net/ Am 03.02.19 um 12:49 schrieb Stefan Claas: > On Sun, 3 Feb 2019 04:14:06 -0500, Robert J. Hansen wrote: >>> Maybe someone, in the future, can pick-up the idea of PGPfone and develop >>> it

Re: Garbled data in keyservers

regards Juergen [1] https://wpia.club -- Juergen Bruckner juer...@bruckner.tk smime.p7s Description: S/MIME Cryptographic Signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: a minimal version of PGP/GPG for the Win32/64 bits for command line

gt; > > ___ > Gnupg-users mailing list > Gnupg-users@gnupg.org > http://lists.gnupg.org/mailman/listinfo/gnupg-users > -- Juergen Bruckner juer...@bruckner.tk smime.p7s Description: S/MIME Cryptographic Signature __

Re: Need help with GPG + Thunderbird + Enigmail on a RaspberryPi

reproduce this error/failure on another Raspi too. regards Juergen Am 18.11.18 um 15:34 schrieb Stefan Claas: > On Sun, 18 Nov 2018 14:52:14 +0100, Juergen Bruckner wrote: >> Hello Groups, >> >> I do this as crossposting on gnupg and enigmail - lists. >>

Need help with GPG + Thunderbird + Enigmail on a RaspberryPi

Hello Groups, I do this as crossposting on gnupg and enigmail - lists. Raspian: November 2018 (Kernel 4.4) Thunderbird: 52.9.1 - 32bit Enigmail 2.0.8 (20180804-1515) all installed from the Raspbian-sources At the moment I try to etablish a "Backup-Mail-Client" on a RaspberryPi with Thunderbird,

Re: OpenPGP key verification + legal framework

ieb Damien Goutte-Gattat via Gnupg-users: > Hi, > > On Mon, Nov 05, 2018 at 05:13:41PM +0100, Juergen Bruckner wrote: >> I just tried to register with a key who has several user-ID's >> (e-mail-adresses) and I always got the error that the user-ID is not the >> same as in log

Re: OpenPGP key verification + legal framework

Hello All! I just tried to register with a key who has several user-ID's (e-mail-adresses) and I always got the error that the user-ID is not the same as in log-in/registered e-mail. And yes to see the list of Notaries before registration would be very good. regards Juergen Am 05.11.18 um

Re: GPG on Android

Hi Werner I know its not the perfect setup, but it is practicable for me, and as i usually just work with subkeys i feel on a more safe side with this. Tokens are always a good idea, and if anyone can use them its recommended to do it that way. There are good reasons why GPG supports

Re: GPG on Android

Hello Roland, I for myself did configure MailDroid that way, that for each crypto-operation, decrypt, sign, encrypt I have to enter my passwort each time. With pincards on Android I have absolutely NO experience, but im sure, one of our fellow list members can give you a answer on this specific

Re: GPG on Android

Hello All, in this topic I forgot to mention another android-mail-app. Thanks to Chris for the hint! This app is from an austria developer (rundquadarat OG) and called "R2Mail 2" [1]. It has fully GPG and X.509 (aka S/MIME) support. This app comes in a test version with limited functions and has

Re: GPG on Android

> -- >> >> Message: 5 >> Date: Sat, 3 Nov 2018 19:13:52 +0100 >> From: Juergen BRUCKNER >> To: gnupg-users@gnupg.org >> Subject: Re: GPG on Android >> Message-ID: >> Content-Type: text/plain; charset="utf-8"

Re: GPG on Android

Hello Masha, as you are new to this whole topic, I guess the easiest way to use encrypted mail (either GPG and/or S/MIME) on a Android device would be the app "MailDroid". It comes in a free version[1] (with advertisings) and in a "pro" version[2] (without advertisings) and supports both GPG and

Re: Slightly OT - i need the proper wording for a signed document

Hello Stefan, Hello all, of course it is possible, that several people sign (and/or timestamp) a document. Just a example out of my business: There is a contract to be signd by mor than 2 persons or parties. So i make a document of it - for example a pdf file (which is recommended) - and send it

Re: Slightly OT - i need the proper wording for a signed document

Hello Dirk, Am 02.11.18 um 15:20 schrieb Dirk Gottschalk via Gnupg-users: > You mean, you "tampered" with the file and the signature is still > valid? Are you sure? Then Adome does sometging really bad, IMHO. > > Such a signature should ensure that the file is unmodified completely. > otherwise

Re: Choice of ECC curve on usb token

Hello Damien, Am 2018-06-29 um 18:07 schrieb Damien Cassou: > Moreover, Nitrokey Storage only supports NIST and Brainpool, nothing > else. Im not fully sure but i guess for your purposes you would need Nitrokey Pro[1] best regards Juergen [1]

Re: gnupg.org Listserver maybe misconfigured?

Hello Mark! Thank you very much for your answer and clarificattion. Am 2018-06-18 um 19:18 schrieb Mark Rousell: > I note that your bruckner.tk domain appears to have a p=none policy so, > if I understand all this correctly, it should not matter to you. > > In short, there is nothing to worry

gnupg.org Listserver maybe misconfigured?

Hello guys, could it be happen that the Server for the GnuPG.org Mailinglists is kinda misconfigured? My weekly DMARC-Report says that gnupg.org sent in sum 477 Mails in the name of the Domain 'bruckner.tk' last week. ---snip--- gnupg.org 217.69.76.57

Re: [Announce] [security fix] GnuPG 2.2.8 released (CVE-2018-12020)

I did NOT encrypt the Message, just signed it with my PGP-Key - This message is now without sign or encrypt Am 2018-06-10 um 22:50 schrieb Jean-David Beyer: > On 06/10/2018 01:25 PM, Juergen Bruckner wrote: >> Hello Werner, >> >> i Use Linux Mint 18.3 with GnuPG 2.1.11; whi

Re: [Announce] [security fix] GnuPG 2.2.8 released (CVE-2018-12020)

> (Could you please trim your quotes? Incidentally, this would have > prevented the problem in the first place, both on the first and on your > reply). > Thanks for the hint > It would appear that at least Enigmail (mine is from Debian > stable/stretch) ignores an inline encrypted block if it