On Wed, 5 Feb 2014 04:15, mailinglis...@hauke-laging.de said:
Wow. Does that mean that PGP can verify OpenPGP keys with X.509
certificates (in combination with a related OpenPGP certificate)? Or is
this just a theoretical feature?
IIRC, the PGP desktop client also integrated an IPsec
On Wed, 5 Feb 2014 19:04, pe...@digitalbrains.com said:
An X.509 certification obviously certifies that a certain X.509 certificate
belongs to the person or role identified by the Distinguished Name. But seen a
Almost all X.509 certification in public use certify only one of two
things:
-
Mail From: Abimbola, Gbenga
/ Message starts here /
Hi:
I sent the message below, and did not see the request in March 2005 Archive. Is
this the right mailing list?
Can you help with respect to the message below?
Meanwhile, during the configuration (./configure) and the make make
On Mon, 28 Mar 2005 18:43:12 -0800, Kai-Min Sung said:
and here's the input file:
---input start---
passwd
old_pass
Y
save
Y
---input end---
If you use such a canned input file, make sure that it is only used
with gpg versions you tested. The correct way is to parse the
status-fd
On Sun, 27 Mar 2005 12:03:06 -0600, David Gibbs said:
I get this error anytime I try to start up WinPT on my XP SP2 system.
Sorry, you need a newer GPG version.
GPG version 1.0.4 requred GPG version 1.2.4
You probably have an old version of GnuPG somewhere. I suggest to
install the latest
On Tue, 22 Mar 2005 19:04:17 +0100, Thomas Marx said:
every key is listed twice. The difference is the usage of the slash and
the back slash.
I just checked it and the reason for the duplicate listing is that we
use a caseinsensitive compare but care about slash and backslash. In
this regard
of my main key (really?).
Correct. The secret key is not on system2. This is indicated by a
hash mark like:
sec# 1024D/5B0358A2 1999-03-15 [expires: 2009-07-11]
uid Werner Koch [EMAIL PROTECTED]
uid Werner Koch [EMAIL PROTECTED]
ssb 1024D/010A57ED 2004
On Thu, 7 Apr 2005 11:56:39 +0530 , Thutika, Srinivas (ODC said:
But when I try to import from from --import I am getting keys only I am not
getting the secrect keys
--export dies not export secret keys because, well, they are secret.
If you really need to move the secret keys to another
On Thu, 07 Apr 2005 00:32:31 -0600, Kurt Fitzner said:
p.s. btw... I suppose I should ask if these type of announcements are
kosher for this mailing list?
As long as it is Free Software those annoucnements are welcome. If
you want to post it to [EMAIL PROTECTED], just go ahead and
drop me a
On Mon, 11 Apr 2005 10:08:10 -0700, David said:
1. What are the advantages of this smartcard for storing my keys over
other external media (especially if connected to an unsafe computer)?
Without physical access to the card it is not possible to extract the
keys. With physical access it is
On Wed, 13 Apr 2005 09:08:24 +0200, Christian Rank said:
according to a notice at www.basiccard.com, the BasicCard manufactured
by ZeitControl cardsystems GmbH should support the OpenPGP smartcard
specification. Are the OpenPGP cards sold by kernelconcepts.de such
BasicCards?
The cards are
On Wed, 13 Apr 2005 14:19:04 +0200, Sargon said:
like to feed gpg w/o importing it first in its public keyring and
afterwards specify the ID of the public key. According to my
researches on the net and on the gnupg.org site, there's no way to do
this though.
Can anyone confirm this?
On Thu, 14 Apr 2005 08:20:13 +0200, Christian Rank said:
So the OpenPGP cards are ZeitControls's BasicCards with RSA encryption
and the OpenPGP application loaded and put in state 'RUN' (no further
programming of the card possible)?
Exactly.
What I'm missing from the OpenPGP card is the
On Fri, 15 Apr 2005 07:45:23 +0200, Christian Rank said:
operations without success, but that may be due to the fact that I have
an OpenPGP card version 1.1, while the OpenSC support is for version 1.0.
That does not better. The changes in 1.1 are: 4 new data objtecs -
OpenSC does not know
On Thu, 31 Mar 2005 16:20:29 +0200, Peter L Smilde said:
I tried installing pcsc-lite from their website, but this only installs
a libpcsclite.a and libpcsclite.la.
How do I get the Smartcard working under Cygwin? I found no information
on this topic (OpenPGP smartcard cygwin) in the web.
On Wed, 20 Apr 2005 14:40:34 -0700 (PDT), Bluthgeld said:
1. Is it possible to clear all passwords in agent
regardless its ttl, without killing it? I mean
something like ssh-add -D?
pkill -HUP gpg-agent
2. Is it possible to force agent to reload its
configuration from file given primarily
-Shalom,
Werner
2005-04-21 Werner Koch [EMAIL PROTECTED]
* mpicoder.c (mpi_read): Changed error detection to always return
an error while maintaining the actual number of bytes read.
--- mpi/mpicoder.c 20 Dec 2004 10:05:20 - 1.33
+++ mpi/mpicoder.c 21 Apr 2005
On Fri, 22 Apr 2005 07:17:01 +0200, folkert said:
Will that also fix gpgme? It seems it has the same troubles.
gpgme uses gpg, so if it is solved the problem for gpg, it also does
for gpgme.
Shalom-Salam,
Werner
___
Gnupg-users mailing list
+3RUgCeKeZvWsVNJDK5Mm5GKRmTzPjL
/sMAoLmKF4+61cYHk/NxKUlmqUxSIq2T
=yxLM
-END PGP SIGNATURE-
--
g10 Code GmbH http://g10code.com AmtsGer. Wuppertal HRB 14459
Httenstr. 61 Geschftsfhrung Werner Koch
D-40699 Erkrath -=- The GnuPG Experts -=- USt-Id DE215605608
On Sun, 24 Apr 2005 22:11:01 +0200, Matthijs Mohlmann said:
err = gpgme_op_keylist_start(ctx, NULL, 0);
Replace the 0 by a 1 to list only keys where a secret key is
available.
while (!err) {
uid = key-uids;
subkey = key-subkeys;
printf(%s: %s %s\n, subkey-keyid,
On Sat, 30 Apr 2005 01:03:49 -0700 (PDT), wolfe said:
gpg --no-tty --export-secret-keys --armor '$EMAIL' $IDENT.sec.asc
gpg --no-tty --export --armor '$EMAIL' $IDENT.pub.asc
Do you really have a key with the string '$EMAIL' in a user ID?
I guess what you want to use is
gpg --batch
On Thu, 28 Apr 2005 00:11:20 -0500, Alex L Mauer said:
When GPG is set to use the gpg-agent but the gpg-agent is not available
(error message gpg-agent is not available in this session or can't
connect to `/path/to/non-existent-pipe': No such file or directory), it
produces a fatal error code
On Tue, 03 May 2005 10:34:28 +0200, Daniel Musketa said:
Is there a size limit for creating gpg files?
In general no. However there might be a problem with the Windows
version. There is a workaround which will work for sure:
gpg -e message message.gpg
gpg message.gpg message
This way
On Tue, 24 May 2005 06:41:24 +0200, Chris said:
How can I use the smartcard in KMail? I cannot choose its keys in the
Identity
management.
Does gpg -K list your key? This is what Kmail displays.
You are using a decent Kmail (with all the crypto tabs in the
configuration dialog and the
Hi!
Ryan, thanks for explaining this. I agree with you.
Let me add that this is a classical type of side-channel attack and
nothing really new. It is a general problem to hide things from other
processes when sharing hardware. It is possible to make it hard but
there won't never be perfect
On Sun, 22 May 2005 15:07:57 -0700, Alex Liberman said:
is it possible to extract public key from ssl cert (actually have
already got that far), and then use gpg to encrypt message using
that public key? THx
Yes. It is whoever some work. With the integration of ssh keys,
X.509 certs and
On Tue, 24 May 2005 18:35:45 +0200, Alexander Hoffmann said:
(rfc2268.c), but it will not be compiled (i concluded it from
libgcrypt-config --algorithms output). What should i do to get the RC2
There might be a bug in libgcrypt-config --algorithms. However there
is no need to do any special.
On Tue, 31 May 2005 14:45:05 +0200, Sascha Kiefer said:
have attachment of Content-Type: message/rfc822?
The easiest way is to use PGP/Mime? But is it decodeable by anybody? Are
MS Outlook can't cope with it. Every other MTA with a full MIME
implementation should be able to handle it.
On Sun, 05 Jun 2005 11:36:32 +0200, Martin Geisler said:
I don't know how Outlook (not Express) handles things.
It won't be possible to verify a signature with Outlook due to the
fact that it is not possible to get to the raw MIME headers. It might
be possible to write a plugin which uses
On Sun, 5 Jun 2005 13:45:30 +0200, Kiefer, Sascha said:
Well, as far as i see there is no difference between the MIME format of
rfc2015 and rfc3156.
Correct, 3156 has only minor clarifications.
So, what is right?
RFC like:
Content-Type: multipart/signed; micalg=pgp-md5
On Mon, 06 Jun 2005 16:16:54 +0200, Sascha Kiefer said:
The PGP/MIME RFC states that you can first sign and then encrypt the mail.
Doing this on the MIME level allows you to easily strip the encryption
layer while leaving the signature intact.
In S/MIME it is allowed to first encrypt and then
On Wed, 08 Jun 2005 02:09:59 +0200, Per Tunedal Casual said:
Issuers of X509 certificates use 1 year for soft certificates and 5 years
for card certificates. I don't know their calculations behind that decision.
That is a different thing: It is the expiration time of the key;
something one
On Tue, 14 Jun 2005 05:08:45 -0700, Erpo said:
I can connect, but I can't get any sort of login prompt. +1 data point.
Its up again. The problem is that the server leaks file descriptors
and have still not being able to nail the problem down. I guess I
need to switch to a newer kernel.
On Sat, 18 Jun 2005 18:28:59 +0930, Alphax said:
Recently, I discovered the following message on GPG startup:
gpg: signature packet without timestamp
gpg in general needs the timestamp of the signature to figure out the
latest signature. However when the signature is not used we should
not
On Sun, 19 Jun 2005 21:30:11 +0200, Ralf Cordes said:
card the next day nothing worked. Neither my new PINs nor the PINs which
came with the card. I also wrote a mail to KernelConcepts but got no reply.
What does the gpg --card-status show?
Now I have a nice card without function. Is there a
On Mon, 20 Jun 2005 11:26:32 +0200, Ralf Cordes said:
PIN retry counter : 3 0 3
That is not a real problem. The CHV2 tries have been used up. In
general CHV1 and CHV2 are synced however when you enter a wrong PIN
the corrsponding CHV's retry counter gets decremented.
Please check why you
On Mon, 20 Jun 2005 09:08:30 -0400, Jason Markley said:
However.I can't seem to get the plugin to work with outlook. It
crashes every time I try to decrypt or encrypt an email. Also,
there's no toolbar buttons on the main outlook window (for those of us
that use the preview-pane). Are
. g10 Code GmbH, a Duesseldorf based
company owned and headed by gpg's principal author, is currently
funding GnuPG development. We are always looking for interesting
development projects.
Happy hacking,
Werner
--
Werner Koch [EMAIL PROTECTED]
The GnuPG
, Werner
--
Werner Koch [EMAIL PROTECTED]
The GnuPG Expertshttp://g10code.com
Free Software Foundation Europe http://fsfeurope.org
Join the Fellowship and protect your Freedom!http://www.fsfe.org
On Tue, 21 Jun 2005 09:11:51 -0400, David Shaw said:
You can't. GnuPG does not currently support merging secret subkeys.
To do it, you need to delete the secret key on the second machine and
re-import the whole key.
We might however add this soon. IIRC most code is already there as we
do
On Wed, 22 Jun 2005 21:08:18 +0100, Adam Funk said:
I think there used to be a restriction that gpg --import secretkey.gpg
wouldn't work without setting a special option. Is importing secret keys
by accident no longer considered a risk?
This was fixed with version 1.0.7 about 3 years ago.
On Mon, 27 Jun 2005 23:18:26 -0400, David Shaw said:
However, GnuPG can call other programs to do other tasks (keyserver
access programs, JPEG viewers for photo IDs), so it's not impossible
that GnuPG could call an external secure viewer program. I don't know
of one offhand though.
Nor do I
On Mon, 27 Jun 2005 16:30:15 -0500, Alex Mauer said:
I purchased an SCM SPR332 card reader, based on the Smartcard Howto's
statement (about the SPR532) The pinpad may be used to securely enter
the PIN. I have found that I cannot use the pinpad, at least not with
As of now the may be means
On Tue, 28 Jun 2005 04:58:52 -0400, Charly Avital said:
I may not understand what you mean by portable.
I suppose that a secure viewer (software program) could not be nearly
ported to GnuPG?
GnuPG is a command line tyool which only manges text input and output
and as such it is pretty
On Tue, 28 Jun 2005 11:16:00 +0200 (MET DST), Johan Wevers said:
Which makes me think... outputting the text to a .jpg (or .gif or .png)
with secure fonts shown in the picture. The picture could then be looked
at in an external vieuwer. That would be completely portable.
Actually a neat idea.
On Tue, 28 Jun 2005 10:35:58 -0500, Alex Mauer said:
As I was afraid of; perhaps the howto could be updated to clarify that
We will do this.
The longer answer is that I have worked on it and added code to the
CCID driver to check this out.
How about the SC daemon?
Its the same code
On Thu, 23 Jun 2005 17:40:36 +0200, Konrad Mathieu said:
I have to adapt a shell script to work with GPG instead of PGP and it
contains the -f option for acting like a filter. Actually,
There is no need for such an option because gpg, being a good Unix
citizen, does this by default.
the
On Tue, 28 Jun 2005 23:49:54 +0200 (MET DST), Johan Wevers said:
Are you saying that my idea to output a picture with tempest-resistant
fonts won't couse a problem, or that even if tempest-resistant fonts are
patented only the fonts from the above URL can be used for this purpose?
In case
On Wed, 29 Jun 2005 10:55:02 +0200, Janusz A Urbanowicz said:
Some form of secure viewer was present in PGP 2.3 and 2.6 which were FLOSS.
Huh, that's new to me. Both versions are pure command line tools
without a graphical part. No way to make use fo filtered fonts.
I am not sure what kind
On Wed, 29 Jun 2005 16:54:39 +0200, Janusz A Urbanowicz said:
The aim of the secure viewer then was to make difficult to obtain eyes-only
message text as a file or a pipe. It checked if output is a live tty,
Okay, that is something different. I was solely speaking of a tempest
resistant
On Wed, 29 Jun 2005 12:29:33 -0400, Charly Avital said:
I have grown tired to receive out office notifications from
[EMAIL PROTECTED] everytime I post to the list.
That address is now on my junk list.
I have disabled mail delivery to that account.
Salam-Shalom,
Werner
On Thu, 30 Jun 2005 11:23:17 +0200, Mark Kirchner said:
Yes, as long as your key requires the use of IDEA-encryption,
everybody who's trying to encrypt to you has to use an IDEA-enabled
Nope. IDEA is an optional algorithm in OpenPGP. All OpenPGP
compliant applications will use 3DES as the
On Thu, 30 Jun 2005 13:34:21 +0200, Janusz A Urbanowicz said:
Yes, but if the threat model involves TEMPEST, should it also involve
TEMPEST from optical wavelenghts (reflected light)?
I depends on your needs; closing the shutters is one solution against
it.
Shalom-Salam,
Werner
On Thu, 07 Jul 2005 22:47:58 +0200, Eric Tanguy said:
I have gpa 0.7.0 installed on FC4 system. When i try to search a key a
window saying connecting to the server hkp://yyy please wait and that's
all. I have tried all the available servers and this is always the same.
gpa keep this window as
On Tue, 05 Jul 2005 17:40:54 -0700, Penelope Fudd said:
On this system, there are about three dozen GPG key files that can be
loaded into my rpm database, and I'm pretty sure that one of them is the
right one, but I don't want to load them all.
Import them all. It doesn't matter becuase
On Tue, 12 Jul 2005 20:31:15 -0500, Wes said:
Hmm... That seems a bit kludgy, but certainly something to consider. I
assume it would require two gpg commands - one to retrieve/import the key
and one to do the encryption?
I don't think this would help with accessing private keys, though?
On Sun, 10 Jul 2005 09:15:45 +0200, Henk M de Bruijn said:
gpg: CRC error; 4BF535 - 4F6694
The ASCII armor has been garbled somewhere on the transport.
Salam-Shalom,
Werner
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
On Thu, 14 Jul 2005 12:48:58 +0200, Tobias Roth said:
gpg --clearsign -o signed.pdf original.pdf
You can't clearsign binary data.
Shalom-Salam,
Werner
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
On Tue, 19 Jul 2005 13:05:16 +0200, Federico Munerotto said:
My user is the group scard but as long as only the root user can have
access to the smart card it remains useless. I think it is a trivial
permission issue: any help?
With the Debian packages of pcscd anyone may connect to a running
On Wed, 20 Jul 2005 12:02:24 +0200, Sascha Kiefer said:
1. is it possible to receive a key to a file instead of to the keyring?
No. You may however use the helper tools directly.
2. what is the difference between --search-keys and --recv-keys ?
--search keys presents a list of macthing keys
On Wed, 20 Jul 2005 13:13:00 +0200, Federico Munerotto said:
gpg: DBG: ccid-driver: usb_claim_interface failed: -1
The USB device can't be accessed. This is a permission problem with
the usbfs.
(ID=058F:9520:X:0)
Use lsusb to figure out the device like:
$ lsusb
Bus 002 Device 001: ID
On Wed, 20 Jul 2005 16:27:04 +0200, Federico Munerotto said:
if the device is unplugged and then plugged again, belongs again to the
root group and isn't writable again (change its location). I need to set
up hotplug to
1. chgrp to the proper group
2. chmod +rw scard
the file that is
On Thu, 21 Jul 2005 12:25:49 +0200, Felix E Klee said:
* Can I use GnuPG for signing and decryption with a smart card and 2048
bit RSA keys? What limitations do I have to expect, if any?
Cards able to to generate and use 2k RSA keys are not easily
available. This will change in a year or
On Fri, 22 Jul 2005 19:01:57 +0200, Felix E Klee said:
OpenPGP cards with 2048 bit keys don't seem to be available at all.
However, ordinary ISO 7816-4 compliant smart cards are available through
online outlets. For example CryptoFlex and CyberFlex cards can be
Good luck getting a secure and
On Fri, 22 Jul 2005 22:42:20 +0200, Zeljko Vrba said:
I would disagree on that. Java Card is totally programmable and if you
want you can implement the complete ISO7816 command set (as far as the
Sorry, this is was a misinterpretation by me.
hardware permits, of course). The downside is that
On Sun, 24 Jul 2005 23:58:13 +0400, Vladimir N Kutinsky said:
Does anyone know what it means?
gpg: CRC error; 92501E - 300D6B
gpg: [don't know]: invalid packet (ctb=2b)
The input data is garbled. Transmission error or the usual ascii
vs. binary FTP problem.
Salam-Shalom,
Werner
On Fri, 22 Jul 2005 23:42:39 +0200, Felix E Klee said:
Your wording implies that the cards I mentioned aren't both secure and
fast. Any pointers?
No, I was just not aware that they support 2k RSA and key generation
in particular. My (old) specs don't say so.
isn't that interesting,
On Tue, 26 Jul 2005 16:35:58 +0200, Sven Fischer said:
out. Well, this seems to have a reason, since uncommenting and recompiling
libgcrypt 1.2.1 let gpgsm try to decrypt the mail, but without success (it
says no data). Where is the problem with this? Can I help in any way to
decode the
On Tue, 26 Jul 2005 19:22:06 +0200, Zeljko Vrba said:
Ugh, I hope that you'll _never,ever_ allow such low-grade insecure
algorithms in gpg or anything related to it, no matter what the public
demand is.
For sure not in an application like gpg. However for certain tools
(e.g. a crypto
On Wed, 27 Jul 2005 11:32:51 +0200 (MET DST), Johan Wevers said:
write a RC2 plugin if it's really needed. Or is there an easy way to add
new algorithms to the current version of GnuPG that doesn't require
changes in many places in the code?
It is actual pretty simple but limited by the fact
On Thu, 28 Jul 2005 10:36:11 +0200, Zeljko Vrba said:
For decryption there is no problem, of course. As for encryption.. it is
Well not supporting it _might_ help the sender to realize that he is
doing something strange (i.e. using a weak algorithm)
but you have to have some kind of plugin
On Fri, 29 Jul 2005 20:56:58 -0400, David Shaw said:
cat /good/random/source | gpg --enarmor
There is even an easier way:
gpg --gen-random -a 1 12
Returns 16 bytes of armored random; i.e. actual 12 bytes. This uses
the same algorithm gpg uses for session keys. By using 2 instead of 1
gpg
On Wed, 03 Aug 2005 14:33:57 +0200, Claudia Reuter said:
I like to encrypt and decrypt large files e.g. pdf files. I wrote some
code based on libgcrypt. I tested it with .txt files. Encryption seems
to work, but gcry_pk_decrypt works only, if there's a single line in the
txt file. If the txt
On Wed, 03 Aug 2005 19:26:38 +0200, Thomas Kuehne said:
The problem is that I cant create the first key with only C the
capability.
GnuPG does not yet distinguish between C and S. So it does not make
much sense to have a way of selecting this.
Salam-Shalom,
Werner
On Thu, 04 Aug 2005 15:16:24 +0200 (CEST), Alain Bench said:
Mutt half-recently began to force outgoing traditional inline PGP
messages to UTF-8, disregarding the $send_charset list (in fact acting
Which is IMHO a proper interpretation of the OpenPGP specs.
Despite what a lot of people
On Thu, 4 Aug 2005 08:10:00 -0500, Ryan Malayter said:
My test show 7-zip yields ~228 Mbps on a 2.4 GHz P4. The only cipher
available with this program is AES256 in (I believe) ECB mode.
Why encrypt at all when using ECB? ECB has no use except in very very
special cases.
Still, it seems a
On Mon, 08 Aug 2005 00:11:26 +0930, Alphax said:
Your other assumption is that everyone has continuous and unrestricted
(no proxies, firewalls) internet access. I can't even get GPG to work
To clarify this: It is NOT a change of the trust modeel but an
optional feature. Without access to the
On Sun, 07 Aug 2005 19:02:21 +0200, Thomas Kuehne said:
Is it possible to use more than one message digest when signing a
message with GnuPG?
No.
Shalom-Salam,
Werner
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
On Mon, 8 Aug 2005 09:37:10 +0200, Bernd Jendrissek said:
Do these TXT records support having multiple keys associated with the
same email address? For example, I use D7CBA633 for everyday signing
and encryption, and 24EEB426 for tin foil hat applications.
No. I can be extended to allow for
On Mon, 08 Aug 2005 14:24:50 +0200, Simon Josefsson said:
gpg: can't put notation data into v3 (PGP 2.x style) signatures
[EMAIL PROTECTED]:~$
Is my key unusable with this scheme?
For better compatibility with pre OpenPGP implementations, gpg creates
v3 signatures with v3 keys (yours). v3
On Mon, 8 Aug 2005 20:34:33 +0200, Marco d'Itri said:
How does this interact with DKIM?
DKIM does not work. For example, their canonicalization is broken and
one can easily fake a MIME message.
Shalom-Salam,
Werner
___
Gnupg-users mailing
On Tue, 09 Aug 2005 13:43:40 +0200, Thomas Kuehne said:
OutlookExpress displays the message just like Mozilla or KMail without
encryption plugins.
Use a MIME compliant MUA and not such a spam/DoS/virus vector.
Shalom-Salam,
Werner
___
On Wed, 10 Aug 2005 11:48:06 +1000, Raymond said:
Is it possible to remove a revocation certificate?
No. Once issued they should not be removed.
Shalom-Salam,
Werner
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
On Tue, 09 Aug 2005 20:46:29 +0200, Holger Schüttel said:
hallo bin auf diesem sektor noch absolut blank aber irgendwie funzt
das eingeben der befehle nicht habe gnu1.4.2 und ich muß doch eingeben
Bitte hier englisch schreiben oder aber die Liste [EMAIL PROTECTED]
benutzen.
Please write in
On Thu, 11 Aug 2005 01:32:33 +0200 (MET DST), Johan Wevers said:
Are uid's also stored in the secret key? I thought they only existed
For historic reasons the user IDs are also stored in the secring.gpg.
This is an internal detail and will eventually change.
Shalom-Salam,
Werner
On Sat, 13 Aug 2005 22:49:27 +0200, Tristan Miller said:
gpg-1.4.0-4
gpgme-1.0.2-3
pinentry-0.7.1-4
libksba-0.9.10-3
and the version of gpg-agent is ... ?
gpg-agent --version
Salam-Shalom,
Werner
___
Gnupg-users mailing list
On Tue, 16 Aug 2005 11:04:08 +0300, =?windows-1251?Q?=c2=e0=f1=e8=eb=e8=e9
=cf=e5=f2=f0=ee=e2?= said:
Can you help me install libgcrypt under Windows platform ? I unable to use
configure with Windows
You need t build it on a posix system. Debian GNU/LInux is the most
convenient system do do
On Sat, 20 Aug 2005 17:01:04 +0300, Alon Bar-Lev said:
The disclaimer at http://www.rsasecurity.com/rsalabs/node.asp?id=2133 states
Its is not about the protocol but about the licenses incompatibility
between Mozilla and GPL applications. AFAIK, not everything in
Mozilla has the option to be
On Fri, 02 Sep 2005 18:45:53 +0300, Alon Bar-Lev said:
environment...) It provides a generic API to access cryptographic
tokens. Most smartcard vendors, including IBM, provide PKCS#11 library
that communicates with their card.
Again: Feel free to provide one. The only thing you need is
On Fri, 02 Sep 2005 15:30:29 +0300, Alon Bar-Lev said:
Most pkcs#11 stuff is not GPL compatible.
But it does not say that GPLed software cannot use PKCS#11 interface
in order to access none GPLed tokens!
Read the GPL again and you will see that this is not possible.
I am sorry to read
On Fri, 02 Sep 2005 18:21:06 +0300, Alon Bar-Lev said:
Yes... But why? What was the reason to work so hard in adding S/MIME?
The answer for my opinion is that IT IS A STANDARD!!!
I am sorry to correct you. No mental sane hacker would voluntary
implement X.509 stupidity. The reason why we
On Fri, 02 Sep 2005 16:13:45 +0300, Alon Bar-Lev said:
Finally someone who understand... I had no such luck with Werner Koch, who
argues that OpenPGP card is standard...
Well it is as much a standard as pkcs#15 is one. Who decides what a
standard is? RSA Corporation defines standards known
On Fri, 02 Sep 2005 20:08:37 +0300, Alon Bar-Lev said:
But it does not say that GPLed software cannot use PKCS#11 interface
in order to access none GPLed tokens!
Read the GPL again and you will see that this is not possible.
I have... and did not find the place.
Can you please refer me to
On Fri, 2 Sep 2005 12:32:36 -0400, Jeffrey Tadlock said:
'gpg --encrypt-files -r System Administrator -z 0
filename_5.7GB_in_size'
I recall that I once tested it and it used to work. However it is a
long time ago so no guarantee. My current test machine has not enough
space to run a test
On Sat, 03 Sep 2005 01:48:30 +0200, Andreas Liebschner said:
But it still asks me the actual password for the user, not the pin or
the passphrase of my gpg key. So I thought I should have added some
What does
ssh-add -l
give? You should see the fingerprint of the card's key as well as
On Sat, 03 Sep 2005 13:05:50 +0300, Alon Bar-Lev said:
I am sorry if I was too harsh during this discussion, it hurts to see
people inventing standards of their own thus limiting the usage of
their own great software.
No problem.
I want to thank you for this discussion.
Its always good to
On Sat, 3 Sep 2005 10:02:31 -0400, Jeffrey Tadlock said:
Am I typing something wrong? Here is what I typed:
gpg --encrypt-files -r System Administrator -z 0 sql-db.bak sql-db.gpg
Sorry, I missed that you are using --encrypt-files. This command is
deifferent to --encrypt in that it takes a
On Mon, 5 Sep 2005 08:35:15 +0100 (BST), Nicholas Cole said:
gpg-1.9, and the thinking behind adding support for
s/mime. What is the roadmap (from the point of view
of users) for gpg?
* The most important task is to integrate gpg 1.4 code base into gpg
1.9. I did this a long time ago but
On Tue, 06 Sep 2005 19:35:34 +0200, Zeljko Vrba said:
As Alon did remark earlier, the general movement in the industry is
towards multi-purpose smart-cards. OpenPGP card currently doesn't fall
into this category.
Not true. The OpenPGP card specification is a card application and
you may put
On Tue, 06 Sep 2005 16:04:28 +0200, Zeljko Vrba said:
Anyway, the right way, as I've understood Alon, is to make gpg use
gpg-agent. They communicate via a well defined _protocol_ and are not
_linked_ together.
Just for the record: Linking is only one indication that the whole is
a derived
1001 - 1100 of 3672 matches
Mail list logo