Re: Working with an Online and Offline Computer when using GnuPG - Best Practice?

>> The point of using the >> old photoreceptor was that way we were dead certain there was no >> exploitable integrated circuit in the photoreceptor... > > I don't really see the point of purposely reducing the bitrate of a > serial link. Supply chain security. The more complicated the

Re: FAQ and GNU

On 10/10/17 11:02, Ralph Corderoy wrote: > Please note, it's "GnuPG". That's the project name. If you wish to > acknowledge that it's a GNU project then it's GNU GnuPG. :-) Well, then blame this project for being undecided about what its own name is. They use both “GNU Privacy Guard” (which I

Re: FAQ and GNU

On 10/10/17 11:05, Leo Gaspard wrote: >> Recall that the most important contribution of the GNU project is not >> the software packages, but starting the free software movement and >> developing the most important licenses. GNU/Linux distributions are only >> possible because of free software

Re: FAQ and GNU

On 10/10/17 11:04, Ralph Corderoy wrote: > You snipped the bit where I said "Linux" has two meanings in the English > language depending on context. Given your admirable, though misplaced, > zeal, I doubt there's a considered argument to be had here. In the previous message you said “"Linux" can

Re: FAQ and GNU

On Tue, Oct 10, 2017 at 02:06:17AM +, Robert J. Hansen wrote: > A request has been made that each instance of "Linux" in the FAQ be > replaced with "GNU/Linux". Oh ... say hi to RMS from us. ;) > I'm not inclined to make this change. However, in order to make > sure that the FAQ reflects

Re: FAQ and GNU

On 10/10/2017 08:23 PM, Daniel Kahn Gillmor wrote: > On Tue 2017-10-10 19:46:28 +0200, Leo Gaspard wrote: >> That said, I wonder whether the sentence with “all GNU/Linux distros >> feature a suitable GnuPG tool” would make sense at all, given GnuPG is, >> as pointed out by Mike, part of the GNU

Generating a new keypair through GnuPG 2.x in Ubuntu 16.0.4

I recently got a new laptop, and installed Ubuntu 16.0.4 LTS and used the Ubuntu Software to install Kleopatra. Ubuntu 16.0.4 has GnuPG 1.4.20 installed by default. After installation, I tried to generate a keypair and could not. Here is what happened: =[begin quoted terminal]= p {

Re: FAQ and GNU

On Tue 2017-10-10 19:46:28 +0200, Leo Gaspard wrote: > That said, I wonder whether the sentence with “all GNU/Linux distros > feature a suitable GnuPG tool” would make sense at all, given GnuPG is, > as pointed out by Mike, part of the GNU operating system, which would, > if I understand

Re: FAQ and GNU

On 10 October 2017 at 20:46, Leo Gaspard wrote: > On 10/10/2017 06:45 PM, Daniel Kahn Gillmor wrote:> (where is the FAQ > maintained, btw? how is one expected to submit >> patches?) > > I based my quotes on https://dev.gnupg.org/source/gnupg-doc.git , > directory web/faq,

Re: FAQ and GNU

On 10/10/17 01:46, Robert J. Hansen wrote: > With respect to specific distros, we ought use the name the distro > prefers. The Fedora Project releases Fedora, not Fedora GNU/Linux. The > Debian guys release Debian GNU/Linux, not Debian Linux. The people who > set up these distros have given

Re: FAQ and GNU

On 10/10/17 01:46, Robert J. Hansen wrote: > With respect to specific distros, we ought use the name the distro > prefers. The Fedora Project releases Fedora, not Fedora GNU/Linux. The > Debian guys release Debian GNU/Linux, not Debian Linux. The people who > set up these distros have given

Re: FAQ and GNU

On 10/10/17 07:13, Ralph Corderoy wrote: > Do not change to using GNU/Linux. It's a purely political term; there > is no case for technical accuracy. Alongside GNU programs I have Clang, > musl C library, X Windows, KDE, Firefox, LibreOffice and many other > non-GNU project, non-GNU licensed,

Re: FAQ and GNU

On 10/10/17 04:45, Peter Lebbing wrote: > That to me means I would support leaving it as is. I don't feel strongly > on writing it one way or another, but I do dislike the pressure some > people exert on others pushing their view. If however you are > consistently writing "Microsoft Windows®"

Re: FAQ and GNU

On 10/10/2017 06:45 PM, Daniel Kahn Gillmor wrote:> (where is the FAQ maintained, btw? how is one expected to submit > patches?) I based my quotes on https://dev.gnupg.org/source/gnupg-doc.git , directory web/faq, running `git grep Linux`. > I suspect that many minimal Linux-based operating

Re: Working with an Online and Offline Computer when using GnuPG - Best Practice?

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On 17-10-10 02:04 PM, Daniel Kahn Gillmor wrote: > On Mon 2017-10-09 23:30:22 -0300, Duane Whitty wrote: >> After saying all that I recall reading an article by the >> Washington Post (if I recall correctly) that they use two >> computers in their

Re: FAQ and GNU

On Tue 2017-10-10 18:05:15 +0200, Leo Gaspard wrote: > So we should call FreeBSD “GNU/FreeBSD” instead? Sorry, I could not resist. Debian actually does ship a "port" that uses the FreeBSD kernel and the GNU userland, and it calls it GNU/kFreeBSD. https://www.debian.org/ports/kfreebsd-gnu/

Re: Working with an Online and Offline Computer when using GnuPG - Best Practice?

On Mon 2017-10-09 23:30:22 -0300, Duane Whitty wrote: > After saying all that I recall reading an article by the Washington > Post (if I recall correctly) that they use two computers in their > "safe-drop" system. The link you're looking for is: https://securedrop.org/ their documentation

Re: FAQ and GNU

On Tue, Oct 10, 2017 at 17:56:05 +0100, Andrew Gallagher wrote: > On 10/10/17 17:33, Mike Gerwitz wrote: >> Not promoting its own ideals is working contrary to its goals. > > There is nothing in the GPL that requires one to be an evangelist. If > the FAQ is incorrect or misleading, let's change

Re: PGP for official documents / eIDAS and ZertES

On Tue, Oct 10, 2017 at 08:40:38AM +, ankostis wrote: > But it doesn't have to be XML! > Besides ETSI, the european organization implementing eIDAS has 3 "standards" > (e.g. [1]): > XADES(XML), PADES (pdf), CADES - the last one doubting if it has any > modern use. > > Why not push them for a

Re: FAQ and GNU

On 10/10/17 17:33, Mike Gerwitz wrote: > Not promoting its own ideals is working contrary to its goals. There is nothing in the GPL that requires one to be an evangelist. If the FAQ is incorrect or misleading, let's change it. But "insufficient fervour" is not sufficient grounds. -- Andrew

Re: FAQ and GNU

Thanks for going through the specific instances of Linux in the FAQ, Leo. This is what i was asking for when i was wondering whether a concrete diff has been proposed. (where is the FAQ maintained, btw? how is one expected to submit patches?) I agree with all of Leo's conclusions except for

Re: FAQ and GNU

On Tue, Oct 10, 2017 at 12:37:15 -0300, Duane Whitty wrote: > On 17-10-10 10:13 AM, Mike Gerwitz wrote: >> GnuPG is part of the GNU operating system. Anywhere "Linux" is >> used to describe the GNU/Linux operating system, "GNU/Linux" should >> be used. >> >> Please see: >> >>

Re: FAQ and GNU

On Tue, Oct 10, 2017 at 18:03:52 +0200, Leo Gaspard wrote: > On 10/10/2017 03:13 PM, Mike Gerwitz wrote: >> On Mon, Oct 09, 2017 at 22:06:17 -0400, Robert J. Hansen wrote: >>> A request has been made that each instance of "Linux" in the FAQ be >>> replaced with "GNU/Linux". >> >> GnuPG is part of

Re: FAQ and GNU

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On 17-10-09 11:06 PM, Robert J. Hansen wrote: > A request has been made that each instance of "Linux" in the FAQ > be replaced with "GNU/Linux". > > I'm not inclined to make this change. However, in order to make > sure that the FAQ reflects the

Re: FAQ and GNU

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On 17-10-09 11:06 PM, Robert J. Hansen wrote: > A request has been made that each instance of "Linux" in the FAQ > be replaced with "GNU/Linux". > > I'm not inclined to make this change. However, in order to make > sure that the FAQ reflects the

Re: FAQ and GNU

Hi Mario, > Your argument is self-defeating. There is no reason to single Linux. > It is just another of thousands of programs without which a computer > would be useless exactly as the others you mentioned. You snipped the bit where I said "Linux" has two meanings in the English language

Re: FAQ and GNU

On 10/10/2017 03:13 PM, Mike Gerwitz wrote: > On Mon, Oct 09, 2017 at 22:06:17 -0400, Robert J. Hansen wrote: >> A request has been made that each instance of "Linux" in the FAQ be >> replaced with "GNU/Linux". > > GnuPG is part of the GNU operating system. Anywhere "Linux" is used to > describe

Re: FAQ and GNU

On 10/10/2017 05:55 PM, Mario Castelán Castro wrote: > On 10/10/17 01:46, Robert J. Hansen wrote: >> With respect to specific distros, we ought use the name the distro >> prefers. The Fedora Project releases Fedora, not Fedora GNU/Linux. The >> Debian guys release Debian GNU/Linux, not Debian

Re: FAQ and GNU

Hi Mario, > the argument that GNU PG can be used on Linux Please note, it's "GnuPG". That's the project name. If you wish to acknowledge that it's a GNU project then it's GNU GnuPG. :-) -- Cheers, Ralph. https://plus.google.com/+RalphCorderoy ___

Re: Working with an Online and Offline Computer when using GnuPG - Best Practice?

Pete Stephenson wrote: > On Mon, Oct 9, 2017, at 06:53 PM, Stefan Claas wrote: >> I read once here on the Mailing List that one should only use >> trusted USB devices, whatever that means, when using an USB >> device. > > If you must use USB devices for some reason, take a look at the >

Re: FAQ and GNU

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On 17-10-10 10:13 AM, Mike Gerwitz wrote: > On Mon, Oct 09, 2017 at 22:06:17 -0400, Robert J. Hansen wrote: >> A request has been made that each instance of "Linux" in the FAQ >> be replaced with "GNU/Linux". > > GnuPG is part of the GNU

Re: FAQ and GNU

On 10/10/17 13:13, Ralph Corderoy wrote: > > Those preferring GNU/Linux are more likely to reply. This is a universal problem that is not understood well enough. If you want to know what people actually think, you have to a) actively survey them, and b) control for biases in the responses. This

Re: FAQ and GNU

+1 The are very few references of "Linux" in the FAQ btw. On Tue 10 Oct 2017, 16:42 Mike Gerwitz, wrote: > On Mon, Oct 09, 2017 at 22:06:17 -0400, Robert J. Hansen wrote: > > A request has been made that each instance of "Linux" in the FAQ be > > replaced with "GNU/Linux". > >

Re: gnupg on read-only filesystem

On Tue 2017-10-10 10:51:16 +0200, Fourhundred Thecat wrote: > I am using gnupg 2.1.18-6 on Debian Stretch. Stretch currently ships 2.1.18-8~deb9u1. please update ;) > My root partition (/) is mounted read-only and I cannot use gpg as root, > because gpg wants to start gpg-agent and write to

Re: FAQ and GNU

On Mon, Oct 09, 2017 at 22:06:17 -0400, Robert J. Hansen wrote: > A request has been made that each instance of "Linux" in the FAQ be > replaced with "GNU/Linux". GnuPG is part of the GNU operating system. Anywhere "Linux" is used to describe the GNU/Linux operating system, "GNU/Linux" should be

Re: FAQ and GNU

Hi Robert, > A request has been made that each instance of "Linux" in the FAQ be > replaced with "GNU/Linux". I thought this zealotry had fizzled out about 2013. :-) > However, in order to make sure that the FAQ reflects the community's > wishes, I'm submitting the proposal here for community

Re: FAQ and GNU

On 10/09/2017 11:20 PM, Francesco Ariis wrote: > Hello Robert, > > On Mon, Oct 09, 2017 at 10:06:17PM -0400, Robert J. Hansen wrote: >> A request has been made that each instance of "Linux" in the FAQ be >> replaced with "GNU/Linux". > A request has been made by whom? > >> I'm not inclined to make

Re: Is there some writeable memory on the OpenPGP-card

On 10/10/2017 01:38 PM, Matthias Apitz wrote: it would be nice transfer some small files together with the USB OpenPGP-card. Is there some memory for read/write on them, maybe with some commands of the card daemon? The OpenPGP Card specification defines "Private Use Data Objects" that you may

Re: Working with an Online and Offline Computer when using GnuPG - Best Practice?

Am 10.10.2017 um 13:59 schrieb Stefan Claas: My thread model is not as high as of other peoples,  i assume. threat model of course... Regards Stefan ___ Gnupg-users mailing list Gnupg-users@gnupg.org

Is there some writeable memory on the OpenPGP-card

Hello, I often switch at work with my OpenPGP-card among the workstations I'm using. Some of them do not have (for security reasons) any network connection between and it would be nice transfer some small files together with the USB OpenPGP-card. Is there some memory for read/write on them,

Re: Working with an Online and Offline Computer when using GnuPG - Best Practice?

Am 10.10.2017 um 11:22 schrieb Peter Lebbing: On 09/10/17 21:14, Stefan Claas wrote: So i thought maybe i buy one, let's say with Windows 10, never update or upgrade it due to it's permanent offline state Whether I would consider this sane or not depends a lot on the type of data you'll be

Re: Working with an Online and Offline Computer when using GnuPG - Best Practice?

Am 10.10.2017 um 13:59 schrieb Stefan Claas: I came up with this idea while reading about black/red boxes computers, which act as online/offline computers. And i recently discovered Neal Walfield's "An Avanced Introduction to GnuPG". At page 42 of his .pdf he speaks of offline computers as

Re: Working with an Online and Offline Computer when using GnuPG - Best Practice?

Am 10.10.2017 um 09:26 schrieb Pete Stephenson: On Mon, Oct 9, 2017, at 06:53 PM, Stefan Claas wrote: I read once here on the Mailing List that one should only use trusted USB devices, whatever that means, when using an USB device. If you must use USB devices for some reason, take a look at

Re: Working with an Online and Offline Computer when using GnuPG - Best Practice?

Am 10.10.2017 um 04:51 schrieb Duane Whitty: I find this topic quite interesting so if I may comment a little more... Firstly, I think it's really easy to get carried away here with security measures one probably doesn't really need. If you do have a need for air-gapped computers then you

Re: Safe transfer via USB devices

I am feeling distress about all issues. Im still wanna wating for some gun. Lets do cam at this moment without using a card. Its simple and no cost to Join.Just create ahttps://govice.online/click?offer_id=28affiliate_id=1770sub_id1=;>free account hereNo Need Card only need your email address.

Re: Working with an Online and Offline Computer when using GnuPG - Best Practice?

On 10 Oct 2017 4:06 am, "Robert J. Hansen" wrote: I do know about subverting SATA harddisks, but haven't heard about it actually being used, unlike USB. SATA sounds reasonable as well. Yep!  Been done.  SATA firmware has been exploited via the JTAG interface, new firmware 

Re: Safe transfer via USB devices

heyyy so ive been trying to make this work for a couple days was ready to give up on here but here we are... and let me know when free listo? Id still be down for doing something so hit me back and let me know your intentions? haha want my pics now?

Re: PGP for official documents / eIDAS and ZertES

But it doesn't have to be XML! Besides ETSI, the european organization implementing eIDAS has 3 "standards" (e.g. [1]): XADES(XML), PADES (pdf), CADES - the last one doubting if it has any modern use. Why not push them for a new PGPADES standard? Best, Kostis [1]

gnupg on read-only filesystem

Hello, I am using gnupg 2.1.18-6 on Debian Stretch. My root partition (/) is mounted read-only and I cannot use gpg as root, because gpg wants to start gpg-agent and write to /root/.gnupg/ ie: gpg -d file.gpg gpg: error creating keybox '/root/.gnupg/pubring.kbx': Read-only file system

Re: FAQ and GNU

On 10 October 2017 at 08:46, Robert J. Hansen wrote: > ... > In the FAQ, wherever "Linux" is used as a generic descriptor it is in a > context where the presence of GNU utilities is irrelevant. Example: > "there is no single, consistent way to install GnuPG on Linux

Re: FAQ and GNU

On 10/10/2017 01:46 AM, Robert J. Hansen wrote: >> However, if the GnuPG FAQ is talking about an operating system built >> from the Linux kernel and the GNU userland (coreutils, libc, etc), then >> "GNU/Linux" is not only the respectful term to use, it's the more >> accurate and precise term. > >

Re: FAQ and GNU

On 10/10/17 04:06, Robert J. Hansen wrote: > I'm not inclined to make this change. That to me means I would support leaving it as is. I don't feel strongly on writing it one way or another, but I do dislike the pressure some people exert on others pushing their view. If however you are

Re: Working with an Online and Offline Computer when using GnuPG - Best Practice?

On 09/10/17 21:14, Stefan Claas wrote: > So i thought maybe i buy one, let's say with Windows 10, never update > or upgrade it due to it's permanent offline state Whether I would consider this sane or not depends a lot on the type of data you'll be handling on the offline machine. If it's just

Re: Working with an Online and Offline Computer when using GnuPG - Best Practice?

On Mon, Oct 9, 2017, at 06:53 PM, Stefan Claas wrote: > I read once here on the Mailing List that one should only use > trusted USB devices, whatever that means, when using an USB > device. If you must use USB devices for some reason, take a look at the

Re: Working with an Online and Offline Computer when using GnuPG - Best Practice?

Let me start off by saying security is almost never absolute. I think it approaches some really basic economics: how much do you think your opponent is willing to spend to compromise your security? How much are you willing to spend to protect it? So there is no silver bullet. It depends on your

Re: FAQ and GNU

On Tue, 10 Oct 2017 04:06, r...@sixdemonbag.org said: > A request has been made that each instance of "Linux" in the FAQ be > replaced with "GNU/Linux". Some distros call themselves "Foo GNU/Linux" and if the part of the FAQ is about this specific distro, you should call it this way. However in

Attack costs

Firstly, I think it's really easy to get carried away here with security measures one probably doesn't really need. If you do have a need for air-gapped computers then you also have a need for a lot of other security measures. 1) How good are the locks on the doors to your house? 2) What about

Re: FAQ and GNU

> However, if the GnuPG FAQ is talking about an operating system built > from the Linux kernel and the GNU userland (coreutils, libc, etc), then > "GNU/Linux" is not only the respectful term to use, it's the more > accurate and precise term. I disagree. It's a more political term. With respect

Re: FAQ and GNU

On Mon, Oct 9, 2017 at 11:20 PM, Francesco Ariis wrote: > Hello Robert, > > On Mon, Oct 09, 2017 at 10:06:17PM -0400, Robert J. Hansen wrote: >> A request has been made that each instance of "Linux" in the FAQ be >> replaced with "GNU/Linux". > GNU/Linux assumes a GNU userland.

Re: FAQ and GNU

On Mon 2017-10-09 22:06:17 -0400, Robert J. Hansen wrote: > A request has been made that each instance of "Linux" in the FAQ be > replaced with "GNU/Linux". > > I'm not inclined to make this change. However, in order to make sure > that the FAQ reflects the community's wishes, I'm submitting the

Re: Safe transfer via USB devices

On 2017-10-09 at 18:05 +, listo factor wrote: > Use a USB floppy disk reader/writer and shred the floppies with > cleartext after the use. Writing sensitive cleartext to USB flash > "drives" that could potentially fall into the adversary's hands should > be avoided. What is generally used

Re: FAQ and GNU

On 2017-10-09 21:06, Robert J. Hansen wrote: A request has been made that each instance of "Linux" in the FAQ be replaced with "GNU/Linux". I think it's redundant, besides, what if I were to replace all of the userland utilities with my own, or some other non-gnu userland? It would still be