Re: Decrypting fails unless card status

Hi On Tuesday 15 December 2020 at 12:49:26 PM, in , Felix E. Klee wrote:- > No. I do have an accessible private key, but it’s > more than 9,000 km > away, and traveling is not so easy these days. So not really that accessible (-; -- Best regards MFPA

Re: Decrypting fails unless card status

Hi On Tuesday 15 December 2020 at 3:13:05 AM, in , Felix E. Klee wrote:- > Note that I have to run with faked system time since > I cannot extend the > validity of my key. Is that a consequence of using a card? -- Best regards MFPA

Re: Ask for passphrase once, but require confirmation each time a key is used?

Hi On Thursday 19 November 2020 at 9:08:25 PM, in , dalz via Gnupg-users wrote:- > I could configure gpg-agent to not cache the > key and ask for the > passphrase each time, but that is very annoying with > a long passphrase If you use a password manager, the length of your passphrase doesn't

Re: Five volunteers needed (EU .... Are you sure that this is really advantageous?

Hi On Wednesday 14 October 2020 at 8:09:56 AM, in , Stefan Claas wrote:- > Alice can purchase tamper proof NFC stickers which > when stripped off get > destroyed. :-) And Eve's replacement sticker added over the top of the destroyed sticker. -- Best regards MFPA

Re: Five volunteers needed (EU .... Are you sure that this is really advantageous?

Hi On Wednesday 7 October 2020 at 1:33:04 PM, in , Stefan Claas wrote:- > Later when Al Gore 'invented' the Internet I thought Tim Berners-Lee invented the internet in 1989. -- Best regards MFPA I miss civilisation and I

Re: Five volunteers needed (EU only please)

Hi On Tuesday 6 October 2020 at 5:23:40 PM, in , Stefan Claas wrote:- > I like to promote the postcards option because the > postage is cheaper than > letters if not done regularly. Only in some countries. Always been exactly the same price where I live. -- Best regards MFPA

Re: Which keyserver

Hi On Sunday 20 September 2020 at 11:29:07 PM, in , Mark wrote:- > I'm the one that asked the original question in > regards to GPG4Win. I > know with the latest version the default is > "hkp://keys.gnupg.net" Thanks, Mark. hkp://keys.gnupg.net is an alias for

Re: Which keyserver

Hi On Saturday 19 September 2020 at 7:34:13 PM, in , Phil Pennock via Gnupg-users wrote:- > The original question was: > } I use GPG4Win and I've noticed that > "hkp://keys.gnupg.net" is not > so that's what I answered. I asked a different but related question that occurred to me when I

Re: Which keyserver

Hi On Friday 18 September 2020 at 4:32:55 PM, in , Phil Pennock via Gnupg-users wrote:- > keys.gnupg.net is a CNAME for > hkps.pool.sks-keyservers.net -- which is > now returning zero results. The GnuPG manual's description [0] of the Dirmngr option "--keyserver name" still ends with "If no

Re: import of multiple secret keys is stopped as soon as a wrong password for one of the secret keys is entered

Hi On Friday 7 August 2020 at 6:16:10 PM, in , Ahmad via Gnupg-users wrote:- > The issue is that I lost the password for one of the > keys (the third one in > the list) and I can't get past this to the next keys. > Is there any to get around this? gpg --delete-secret-keys [key-ID] gpg

Re: Key-Server Issues

Hi On Monday 27 July 2020 at 1:55:11 AM, in , JACOB EDWARDS WIESE via Gnupg-users wrote:- > If I use the web version > > then it says "Error 502 bad gateway". Try

Re: Accidentally deleted ~/.gnupg/pubring.gpg

Hi On Thursday 9 July 2020 at 9:19:39 AM, in , Werner Koch via Gnupg-users wrote:- > Even the fingerprint will be > different because > the creation date is part of the fingerprint > computation. If the OP just wants to decrypt previously encrypted data, wouldn't the options

Re: GnuPG for WIndows and key management files.

Hi On Sunday 21 June 2020 at 4:36:34 PM, in , Ingo Klöcker wrote:- > pubring.gpg is also gone. It has been replaced with > pubring.kbx in modern > GnuPG. Oops. I forgot about that. -- Best regards MFPA There is no snooze

Re: GnuPG for WIndows and key management files.

Title: Re: GnuPG for WIndows and key management files. Hi On Friday 19 June 2020 at 9:43:32 AM, in , Илья Пирогов wrote:- > I am interested in the question of where to find the > files > pubring.gpg, secring.gpg and randseed.bin in GnuPG > for

Re: Comparison of RSA vs elliptical keys

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hi > For sure the MUA knows your own key. No. The MUA just passes the email address to GnuPG and GnuPG selects the key. - -- Best regards MFPA Eat well, stay fit - Die anyway

Re: Comparison of RSA vs elliptical keys

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hi On Friday 22 May 2020 at 9:52:35 AM, in , Werner Koch wrote:- > No, it is better to let the caller (ee.g. the MUA) > pass this option How would it be used only with ECC keys? The MUA doesn't know the flavour of key/subkey. - -- Best

Re: Comparison of RSA vs elliptical keys

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hi On Saturday 16 May 2020 at 9:49:55 PM, in , Stefan Claas wrote:- > out of curiosity, you signed the reply with two sub > keys, The RSA signature is for the benefit of recipients who can't handle ECC keys/signatures. Probably not needed

Re: Comparison of RSA vs elliptical keys

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hi On Monday 18 May 2020 at 7:33:47 AM, in , Werner Koch via Gnupg-users wrote:- > You are using --include-key-block; this is intended > to be used by MUAs > to send the encryption key along with a signature to > allow for immediate > encrypted

Re: keys require a user-id

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hi On Friday 15 May 2020 at 11:12:31 PM, in , Peter Pentchev wrote:- > to generate a random UID? Would a random UID be the way to go? How about a placeholder UID that was replaced at the end of key generation by a UID that matches the key-ID or

Re: Comparison of RSA vs elliptical keys

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hi On Thursday 14 May 2020 at 11:41:00 PM, in , Stefan Claas wrote:- > GnuPG should accept > such public keys, > without using extra parameters and that you can > easily add them to your > key ring, with a simple label, thus not revealing the >

Re: Automatic encryption to several recipients

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hi On Saturday 18 January 2020 at 10:32:44 AM, in , mailing list via Gnupg-users wrote:- > By the way, why is there no option like "--use-secret"? It's called "--try-secret-key name". - -- Best regards MFPA

Re: FAQ change

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hi On Monday 21 October 2019 at 6:09:17 AM, in , Robert J. Hansen wrote:- > Due to Yahoo! Groups closing, the PGPNET mailing list > has moved to > groups.io; I thought PGPNET's move was prompted by degraded performance on the yahoogroups

Re: a new free smime service, but...

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hi On Sunday 20 October 2019 at 3:20:41 PM, in , Uwe Brauer via Gnupg-users wrote:- > I just found that > https://extrassl.actalis.it/portal/uapub/doProcess > Provides a free smime certificate. [...] > does somebody know whether there is a

Re: a new free smime service, but...

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hi On Sunday 20 October 2019 at 3:20:41 PM, in , Uwe Brauer via Gnupg-users wrote:- > I just found that > https://extrassl.actalis.it/portal/uapub/doProcess > Provides a free smime certificate. [...] > does somebody know whether there is a

Re: How to improve our GUIs (was: We have GOT TO make things simpler)

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hi On Monday 7 October 2019 at 9:15:54 AM, in , john doe wrote:- > would it be possible to add the ability to > checksum the binaries? When a new GnuPG version is announced, there are checksums in the announcement. For example, see

Re: How to improve our GUIs (was: We have GOT TO make things simpler)

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hi On Saturday 5 October 2019 at 7:05:55 PM, in , john doe wrote:- > In other words, how can I only install the command > line version of GPG on > Windows. At https://gnupg.org/download/index.html#sec-1-2 there's a link to download "Simple

Re: "There's always light..........."

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hi On Friday 16 August 2019 at 1:30:44 PM, in , David wrote:- > Would the --comment command add it to the private and > public key?? I think it would maybe add it at the top of an ascii armoured keyblock, after the "-BEGIN PGP PUBLIC KEY

Re: Key poisoning

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hi On Thursday 15 August 2019 at 7:07:34 AM, in , Andrew Gallagher wrote:- > Also, if thousands of > separate keys have > signed another key, making it unusable, how do we > decide which of > those thousands of keys are legit and which the bad >

Re: Key poisoning

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hi On Thursday 15 August 2019 at 10:26:31 AM, in , Peter Lebbing wrote:- > Plus, the attacker could just create a signature that > looks likely to be > real (self-sig or existing third-party sig seems a > good candidate). Would the attack work

Re: Difficulty of fixing reconciliation

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hi On Wednesday 14 August 2019 at 10:39:56 AM, in , Alessandro Vesely via Gnupg-users wrote:- > I'm no expert, but it seems to me that 3rd party > signatures should not > be allowed. Perhaps a "keyserver no-third-party-signatures" option would

Re: allow-non-selfsigned-uid issue with key from keys.openpgp.org that contains no identity information

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hi On Friday 2 August 2019 at 12:50:15 PM, in , Playfair via Gnupg-users wrote:- > Easier still is for her to > create an Enigmail > PRR associating my key with my email address Or a group line in gpg.conf. - -- Best regards MFPA

allow-non-selfsigned-uid issue with key from keys.openpgp.org that contains no identity information

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hi I have the option "allow-non-selfsigned-uid" in my gpg.conf. I downloaded a key from keys.openpgp.org with no identity information. GnuPG told me:- gpg: Invalid key 0x84D0F6B3F5007E2C made valid by --allow-non-selfsigned-uid but

Re: Essay on PGP as it is used today

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hi On Wednesday 24 July 2019 at 2:36:36 AM, in , vedaal via Gnupg-users wrote:- > but for the default size GnuPG key of 4096, The default key size is 2048. That is the size generated if you use the --quick-generate-key command. - -- Best