On Mon, 22 Aug 2011 18:05, y...@yyy.id.lv said:
So, order of certificate hashes, relative of certificate order in
keyring, is critically important?
No. You need to make sure to not use lines of more than ~255
characters. Check that your editor didn't reflow a comment block or
similar.
On 2011.08.23. 10:07, Werner Koch wrote:
On Mon, 22 Aug 2011 18:05, y...@yyy.id.lv said:
So, order of certificate hashes, relative of certificate order in
keyring, is critically important?
No. You need to make sure to not use lines of more than ~255
characters. Check that your editor
On Tue, 23 Aug 2011 09:39, y...@yyy.id.lv said:
For some certificates gpgsm asks during import, whether to trust them
(and if confirmed, add entry to trustlist.txt automatically). Is it
possible to make gpgsm to ask whether to trust it, for any certificate?
It does that for all proper
Hello!
How to verify if a certificate (in keyring) is valid?
I tried to encrypt file using gpgsm and no key specifiying methods worked
(http://lists.gnupg.org/pipermail/gnupg-users/2011-August/042580.html)
Could that be caused by invalid certificate?
On 2011.08.22. 15:03, Werner Koch wrote:
On Mon, 22 Aug 2011 11:07, y...@yyy.id.lv said:
How to verify if a certificate (in keyring) is valid?
gpgsm -k --with-validation USERID
without USERID all certifciates are validated. In case you want to skip
CRL checks, add the option
On Mon, 22 Aug 2011 11:07, y...@yyy.id.lv said:
How to verify if a certificate (in keyring) is valid?
gpgsm -k --with-validation USERID
without USERID all certifciates are validated. In case you want to skip
CRL checks, add the option --disable-crl-checks.
Shalom-Salam,
Werner
--
On 2011.08.22. 15:18, yyy wrote:
On 2011.08.22. 15:03, Werner Koch wrote:
On Mon, 22 Aug 2011 11:07, y...@yyy.id.lv said:
How to verify if a certificate (in keyring) is valid?
gpgsm -k --with-validation USERID
without USERID all certifciates are validated. In case you want to skip
CRL
On Mon, 22 Aug 2011 15:27, y...@yyy.id.lv said:
This certificate does not have BasicConstraints, maybe this is a cause
of error?
Quite likely. That is required for CA certifciates.
Is it possible to override check for BasicConstraints? Is it a bug?
Try adding the relax keyword to the
On 2011.08.22. 17:31, Werner Koch wrote:
On Mon, 22 Aug 2011 15:27, y...@yyy.id.lv said:
This certificate does not have BasicConstraints, maybe this is a cause
of error?
Quite likely. That is required for CA certifciates.
Is it possible to override check for BasicConstraints? Is it a bug?