On Sat, 5 Oct 2013 14:58, so...@dersonic.org said:
i just tried to compile the 2.0.22 version on Mac OS X 10.8.5 with XCode 5.0.
This is known. See for example bug 1541. Sorry, I can't do anything
about it until someone provides a tested solution.
signal.c:125:41: warning: adding 'int' to
On Sun, 6 Oct 2013 23:30, joh...@vulcan.xs4all.nl said:
The README in the source bzip2 file still states 1.4.14.
Ah well, I should have not mentioned the exact version number there.
Shalom-Salam,
Werner
--
Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz.
On Tue, 15 Oct 2013 11:41, p...@heypete.com said:
Also, are there any smartcards out there that would support DSA/ELG
keys? All the cards I've seen and used support RSA only.
You don't want DSA on smartcards - at least not until they are able to
do deterministic DSA (rfc-6979).
ECC on
On Thu, 17 Oct 2013 17:55, christian.we...@gmail.com said:
I bought a cyberJack go [1] to use it with my openPGP smart card for
authentification. Since the firmware of that device is upgradeable and
is capable of saving atleast 2 GB of data, how can I be sure it is not a
This is not just a
On Thu, 17 Oct 2013 21:26, r...@sixdemonbag.org said:
Is there any way to make GnuPG 1.4 behave like 2.0 in this regard?
Yes. See commit 0bdf121 which will be included into 1.4.16.
Shalom-Salam,
Werner
--
Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz.
On Tue, 22 Oct 2013 14:06, nikola.radovano...@seavus.com said:
I couldn't find any manual for building pinentry executables for
Windows (specifically Windows 7/8). Also for Gpg4Win 2 in general. I
The easiest way to do this is to follow the README of the gpg4win
installer source. It is best
On Fri, 25 Oct 2013 13:53, nikola.radovano...@seavus.com said:
Right now, by building the whole gpg4win i have succeeded in what i wanted,
but i will certainly try again with MXE to see what is the problem there.
I am glad to hear that. I will add some more tests to the installer.
Just for
On Thu, 24 Oct 2013 20:49, nikola.radovano...@seavus.com said:
1) When trying to build whole Gpg4Win i ran into several
problems. Package for gtkhtmlviewer2 couldn't be found, but i have
Unfortunately this kind of problems happen from time to time. You may
delete the claws-mail tar package
these numbers the time could be much better use to
audit the used software (firmware, OS, libs, apps).
Salam-Shalom,
Werner
p.s.
I would even consider bugs like below more serious than protecting
against break 2k RSA.
commit a7a9cdcaaf3979baa18dad51e722882581349f45
Author: Werner Koch w
On Sat, 26 Oct 2013 12:02, o...@mat.ucm.es said:
Can gpgsm deal with this situation?
Sure. That is a very common situation.
Although I am myself not using gpgsm for mail encryption, I use it to
maintain all kind of X.509 certificates. FWIW, gpgsm passed several
conformance tests with quite
On Sun, 27 Oct 2013 00:29, r...@sixdemonbag.org said:
Hi! I'm the quasi-official FAQ maintainer. You can read the current
text of the FAQ at:
While we are at it. What about making it the official one, i.e. change
the licenses to CC-by-ca/GPL? Given the importance of a FAQ I think we
should
On Sat, 26 Oct 2013 22:03, o...@mat.ucm.es said:
know by the date of the certificate which certificate to use for which
message?
- old for old messages
Note, that there is no need for a certificate for decryption - only the
private key is required. The certificate is only used to show
On Sun, 27 Oct 2013 10:23, p...@heypete.com said:
Correct, though it is possible (but usually recommend against) to
create a new certificate using the same private keypair as before. In
The business model of most CAs is to sell you a subscription by setting
the expiration time very low so that
On Sun, 27 Oct 2013 12:15, joh...@vulcan.xs4all.nl said:
ElGamal/DSA to RSA after the RSA patent expired? Does RSA have any
advantages over ElGamal/DSA? The only one I can think of is less
It is in general faster and there are OpenPGP implementations which only
support RSA (despite that the
On Sun, 27 Oct 2013 17:47, gn...@oneiroi.net said:
Numbers please? Or are you talking about personal/subjective impressions?
What about you running some benchmarks for us? Let's say: a 4k RSA key
signed by 90 other 4k RSA keys, 8 2k RSA keys, and one 8k RSA key. For
security reasons key
On Sun, 27 Oct 2013 21:28, gn...@oneiroi.net said:
I don't think 1 second threshold is real no-go here. I would say you
have quite high requirements. Also some MUAs can contribute to such
Start working with encrypted mails and slow smartcards on a regular base
and you would soon see what I
On Tue, 10 Sep 2013 15:18, ndk.cla...@gmail.com said:
way to connect about anything to a computer. Emulated keyboard which
sends ANSI control codes to take over your box without you noticing?
Uh? Whithout you noticing? For sure you know more than me, but to my
knowledge an USB keyboard only
On Tue, 29 Oct 2013 14:18, fabio.coa...@gmail.com said:
The part that I don't understand is the two question marks in pubkey
algos. Pubkey: RSA, ELG, DSA, ?, ?
Sorry for that buglet. That extra output (?, ?) is due to a change in
preparation of ECC support. It is already fixed in the
On Tue, 29 Oct 2013 14:05, tahirind...@yahoo.com said:
I am facing a strange issue while decrypting a file in GPG,. I get an error
from command line,,, as
gpg: [dont know]: Invalid packet (ctb=6b). I didnt find any reference to this
issue in the past. Please help
The input data is corrupt
On Wed, 30 Oct 2013 20:25, p...@spth.de said:
If we have plenty of randomness available, we could do this a
Entropy (which should be at the core of every CRNG) is a scarce
resource. Thus a one time pad is not going to work because you need
true random at the same size of the message.
XOR the
On Wed, 30 Oct 2013 18:06, p...@spth.de said:
I wouldn't assme that: RSA is something taught in typical maths and
computer science curriculums at universities. Factorization is a
well-known problem.
Using RSA in a safe way is a not easy - it took more than 20 years until
most cryptographers
On Fri, 1 Nov 2013 20:17, pe...@digitalbrains.com said:
It's called 'scforget' here.
Or better: pull off the card and take it with you.
Shalom-Salam,
Werner
--
Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz.
___
Gnupg-users
Hi!
Taylor asked me to forward this background info:
On Sat, 5 Oct 2013 10:56, w...@gnupg.org said:
not yet been seen in the wild. Details of the attack will eventually
be published by its inventor.
The zlib compression language that OpenPGP uses is powerful enough to
express an OpenPGP
On Tue, 5 Nov 2013 23:13, mailinglis...@hauke-laging.de said:
revokers. But that didn't work as expected. After entering the command
addrevoker I was asked to enter the user ID of the respective key. Why the
user ID and not the key ID or fingerprint? Does that make any sense?
You may use
On Sat, 23 Nov 2013 17:19, nb.li...@xandea.de said:
smart cards readers are fun to play with. IIRC, there have been
demonstrations turning the doctors health card terminals and PIN+chip
terminals into space invaders consoles.
Do you have a source for that? I'd love to see some video or so
On Mon, 2 Dec 2013 19:25, ctsonet...@yahoo.com said:
When I import a PGP public key that has NO expiry date, into GPG
1.4.2, it s
1.4.2 is quite old (8 years) and you should definitely not use it
anymore.
It seems that you did not invoked gpg correctly. Please show us the
actual command
On Thu, 5 Dec 2013 03:41, cai.0...@gmail.com said:
As far as I know, only GnuPG 2.0.x on x86 environments supports AES-NI.
Right. I addition you can't compare it with a simple block cipher as
implemented by OpenSSL. OpenPGP does a lot more: It hashes the text to
create a signature (which
On Thu, 5 Dec 2013 21:14, ein...@pvv.org said:
Gemalto SIM USB adapter seems to be sort of the same thing as the Crypto
Stick.
However, it is a bit more hassle to get a USB adapter and a smart card, cut
the
card to fit etc.
That is not a problem. You can buy pre-punched standard OpenPGP
On Thu, 5 Dec 2013 21:38, kloec...@kde.org said:
S/MIME) for email as transparent to the users as possible. Ideally, the
users wouldn't even have to notice that they are communicating via
encrypted email.
100% agreement here.
Unfortunately, I think email is a lost cause because there are
On Sat, 7 Dec 2013 07:31, pho...@panopticism.net said:
Details were scarce, however. This sounds like perfect timing; perhaps
either Sam or Werner can provide us with an update on the campaign?
Sam is preparing the campaign and twittering on
https://twitter.com/gnupg . This campaign will be
On Sat, 7 Dec 2013 11:29, ein...@pvv.org said:
AFAIK, the US has no import restrictions on cryptography, and the RSA patent
ran out years ago, so e.g. shop.kernelconcepts.de should be able to ship it to
you.
IIRC, Petra of kernelconcepts told me that there is no problem for them
to ship to
On Mon, 9 Dec 2013 20:36, kloec...@kde.org said:
Exactly. Webmailers was what I was thinking about. And probably mail
clients used on mobile devices. I don't know how many of those support
encryption.
Well Kontact for N900 and Windows Mobile 6.5 has very good support (as
long as you carry
On Wed, 11 Dec 2013 05:35, mailinglis...@hauke-laging.de said:
That made me curious so I wanted to do just that but: That is the only
occurrence of pinentry-mode in the man page...
Should have shown up in 2.0 - this is a 2.1 feature.
Salam-Shalom,
Werner
--
Die Gedanken sind frei.
On Thu, 12 Dec 2013 14:13, bernh...@intevation.de said:
... try again later. Check disc space.
Check git version. Check if it works from the different machine/operating
system/git repository.
Actually this is a remote problem. git.gnupg.org had a storage failure
and thus remounted itself
On Thu, 12 Dec 2013 16:46, w...@gnupg.org said:
Actually this is a remote problem. git.gnupg.org had a storage failure
and thus remounted itself read-only. It is currently been worked on.
git.gnupg.org is now back. Sorry for the problems. I realized them too
late.
Salam-Shalom,
Hi,
you may want to check out
http://blog.gnupg.org
which has more infos on the upcoming campaign. Sorry, for all that
Javascript stuff.
Shalom-Salam,
Werner
--
Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz.
___
Gnupg-users
On Thu, 12 Dec 2013 20:37, pe...@digitalbrains.com said:
I think it's a good idea. It's a vital piece of information if you actually
The majority of users are using a GUI and thus the command line version
does not matter at all. Although people should know better, I am pretty
sure that there
On Fri, 13 Dec 2013 17:05, christophe.bro...@cnamts.fr said:
* a very lean and clean GnuPG blog design :) and excellent promotional video !
I was somehow able to convice Sam not to install Wordpress like blogging
software right now. Which also means that for comments you need to
resort to
On Fri, 13 Dec 2013 17:04, pe...@digitalbrains.com said:
Has it ever been researched in which way users use GnuPG? A part of the
GUI users might also still use the command line for certain things.
My guess is that the majority of GnuPG users are not aware that they are
using GnuPG. They see
On Fri, 13 Dec 2013 21:05, mailinglis...@hauke-laging.de said:
Maybe. But it is trivial to check whether gpg runs as part of a script, isn't
it? It already does so today. I have forgotten where it is done but some
Huh? It is impossible without using a lot of heuristics and knowledge of
the
On Fri, 13 Dec 2013 21:24, d...@fifthhorseman.net said:
this sounds like an argument for being willing to change the
human-readable output on the shell -- there are not many people looking
at it anyway, and most of those people are sophisticated user.
It is a Unix tool and people want to have
On Sat, 14 Dec 2013 21:14, ekl...@gmail.com said:
AFAIK, *is* an implementation of SSS. So, why would you write a new
version?
FWIW, a few years ago, Phil Sutter wrote a daemon for GnuPG which
implements secret key splitting. I don't have the URL handy, but it
should be easy to find.
Hello!
The GNU project is pleased to announce the availability of Libgcrypt
version 1.6.0. This is the new stable version of Libgcrypt with the API
being mostly compatible to previous versions. Due to the removal of
certain long deprecated functions this version introduces an ABI change.
On Mon, 16 Dec 2013 18:37, adrela...@riseup.net said:
[This was originally planed as an open letter, but I thought it might
be better to hear your arguments beforehand.]
May I suggest to read the archives of just a few weeks to collect the
reasons why suggestions of using SHA-512 are missing
On Tue, 17 Dec 2013 05:23, shm...@riseup.net said:
use the new 1.6.0, do i need to uninstall gnupg libcrypt and then
compile both again together, and re-install ?
1.6.0 has a new SO number so there are no runtime conflicts. However,
to avoid building problems, better de-install or overwrite
On Tue, 17 Dec 2013 00:11, adrela...@riseup.net said:
compatibility, you can never reduce complexity. Less complexity means
more simplicity, thus perhaps more usability. In my experience, projects
[ You may want to start getting rid of software which is run on your
computer without you being
On Tue, 17 Dec 2013 04:05, mi...@micahflee.com said:
torproject.org is pretty much an ideal example. They serve binaries of
Tor Browser Bundle from https://www.torproject.org/ and have been
attacked by governments all over the world, so they've put a lot of time
and energy in doing things
On Mon, 16 Dec 2013 20:32, mi...@micahflee.com said:
Ahh, it's good to know that gnupg.org is available for https. But I
would guess a very small percentage of your visitors use it, or even
know that it's available.
Well, bowsers could first try to use https. Would it help them to provide
a
On Mon, 16 Dec 2013 21:35, d...@fifthhorseman.net said:
Werner, if i can help with configuring or maintaining the web server for
gnupg.org to address some of these issues, please let me know.
Yes, I have problems to figure out a woking cipher list which also
allows for IE. What DHE cipher
On Tue, 17 Dec 2013 14:53, samt...@gnupg.org said:
I could do that if others are happy with the idea. Any objections? Werner?
No.
Salam-Shalom,
Werner
--
Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz.
___
Gnupg-users mailing
On Tue, 17 Dec 2013 16:07, md...@nycap.rr.com said:
Hi! What encryption algorithm do we use in OpenPGP
The defaults for the public key algorithm is RSA with a 2048 bits. For
the symmentric session key the default algorithms are
AES256, AES192, AES256, CAST5-128, 3DES
where gpg picks
On Tue, 17 Dec 2013 18:52, d...@fifthhorseman.net said:
I think it depends on what flavor of IE you're using (and what version
of the underlying OS you're using as well). The version of schannel in
Seems so. I updated my Windows 7 box to IE11 with no channel. Maybe I
need to update more.
On Tue, 17 Dec 2013 18:32,
clou...@informationelle-selbstbestimmung-im-internet.de said:
gpgsm has the option encrypt-to, which is not mentioned in the man
page. Is that option stable or might it disappear in the future?
It is stable - just missing in the man page.
Shalom-Salam,
Werner
On Tue, 17 Dec 2013 18:57,
clou...@informationelle-selbstbestimmung-im-internet.de said:
Is there a way to mark intermediate CAs as trusted so that all
certificates issued by them become usable?
Sorry, there is currently no such way. The code always walks up to the
root.
Shalom-Salam,
On Tue, 17 Dec 2013 20:01, anth...@cajuntechie.org said:
I know that gnupg is experimenting with ECC and I'm wondering which
curves the team has decided to use. I know there are some curves that
are now suspected of being tainted by the NSA through NIST. Has the
gnupg team ruled using those
On Wed, 18 Dec 2013 02:27, r...@sixdemonbag.org said:
because you just shifted to arguing that since GnuPG defaults to
AES-256, we need to use RSA-15000 by default otherwise the asymmetric
FWIW:
The rationale why we use the order AES256,192,128 is
for compatibility reasons with PGP.
at:
http://www.gnupg.org/service.html
The driving force behind the development of GnuPG is the company of its
principal author, Werner Koch. Maintenance and improvement of GnuPG and
related software take up a most of their resources. To allow them
continue their work they ask to either
On Tue, 17 Dec 2013 20:40, c...@rheloud.net said:
How about an RSS-Feed.
We used to have one for the News. It is currently disabled but will
come back with the new website.
Shalom-Salam,
Werner
--
Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz.
On Wed, 18 Dec 2013 16:09, bernh...@intevation.de said:
What about placing this as an FAQ in the wiki.gnupg.org?
We have a FAQ which answers a lot of questions around key sizes in
“Advanced Topics” section. If something is missing it can easily be
added.
Salam-Shalom,
Werner
--
Die
On Wed, 18 Dec 2013 18:31, sys...@ioioioio.eu said:
Here, we describe a new acoustic cryptanalysis key extraction attack,
applicable to GnuPG's current implementation of RSA. The attack can
Well that is what I posted a few hours ago to this list ;-).
Salam-Shalom,
Werner
--
Die
for long
term project support
Project founder and Lead Developer Werner Koch said “GnuPG has
seen a huge upsurge in popularity following recent state spying
revelations. After 16 years of continuous development, we are now
asking for community support to capitalise on consumer demand for
privacy
On Thu, 19 Dec 2013 12:17, christophe.bro...@cnamts.fr said:
It is not very clear on the website campaign that the completion of the GnuPG
2.1 is in the scope of the campaign.
GnuPG 2.1 will be ready with the new website or even earlier. However,
2.1 won't immediately replace 2.0 (or 1.4) on
On Thu, 19 Dec 2013 13:45, ricu...@gmail.com said:
As this is about a crypto project, wouldn't it be adequate to accept
payments in crypto currencies?
Agreed. However, we don't have the resources to do that. The new
infrastructure topic covers payment options and likely we will accept
On Thu, 19 Dec 2013 14:31, go...@fsfe.org said:
point. Choosing goteo was IMHO a good idea because their system is Free
Software and I don't know if they even support BTC et al.
Indeed. After all crowd funding is about community building and thus I
consider it the Right Thing to help each
On Thu, 19 Dec 2013 17:35, j...@berklix.com said:
You might want to suggest to goteo.org it might be quicker for them to use
a translater engine then hand correct, rather than translate type all ?
A reason might be that they have concerns publishing a translation if
not done by lawyer.
On Thu, 19 Dec 2013 17:54, o...@mat.ucm.es said:
Since you are mentioned in this webpage, do you know by any chance
whether gpgsm is vulnerable in a similar way?
gpgsm uses Libgcrypt and Libgcrypt employs RSA blinding for a long time
now. Thus it is not vulnerable. The reason Libgcrypt has
and governments seeking to undermine
citizen privacy” said Werner Koch, GnuPG Founder and Lead
Developer. “Although funding our work has not always been easy, the
need for universally accessible privacy tools has never been more
apparent”.
Some of the world’s top security specialists are now
On Thu, 19 Dec 2013 21:39, pe...@digitalbrains.com said:
PS: By the way, why does goteo.org insist on speaking what looks like Spanish
to
me? I intended to read the privacy policy, but it insisted on showing me
Right, there is no transaltion. This has been reported by several
contributors.
On Fri, 20 Dec 2013 23:15, akw...@gmail.com said:
gpg: keyblock resource
`/etc/apt/trusted.gpg.d//webupd8team-y-ppa-manager.gpg': resource limit
You, or apt-get, have configured gpg to use more than 40 keyrings. This
number is from the current source, it might a bit lower for older
versions -
On Sun, 22 Dec 2013 19:56, je...@seibercom.net said:
Has anyone seen this? It seems interesting, but is it accurate?
Sure. Haven't you see my announcement for 1.4.16 ? Really cool
side-channel attack.
Salam-Shalom,
Werner
--
Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz.
On Thu, 26 Dec 2013 13:00, je...@seibercom.net said:
I certainly don't want to start a flame war here; however, if you are so
unequivocally anti proprietary software, then why do you even allow a
version of your product to be created that will run on it. That is
If you mean why we create
Randolph,
I have to take the admin hat which is something I very rarely do.
On Fri, 27 Dec 2013 10:27, pe...@digitalbrains.com said:
Goldbug messenger thingy /again/ became CryptoPad thingy and all
apostrophe's are gone, also in the next sentence.
I don't care about missing apostrophes -
On Tue, 31 Dec 2013 15:07, ndk.cla...@gmail.com said:
Maybe I'm missing something... What happens if keys are kept on smartcard?
Deleting the key on the smartcard depends on the smartcard. The
~/.gnupg/private-keys-v1.d/...XX.key for a smartcard based key is
only a stub storing the serial
On Thu, 2 Jan 2014 18:54, eagleeyes...@yahoo.com said:
I have created a test ECC 25519 subkey.
You mean using the experimental code in GnuPG master? Don't use it - it
is is work in progress.
Salam-Shalom,
Werner
--
Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz.
On Sun, 5 Jan 2014 05:02, sam.ku...@uclmail.net said:
conventional USB stick-sized readers (e.g. Omnikey 6121) + ID-000
Take care: The Omnikey does not work with free software and 2048 bit
or larger keys. Better get a Gemalto or Identive (SCM) reader.
In group 2 above, the smallest reader I
On Sun, 5 Jan 2014 16:18, sam.ku...@uclmail.net said:
The question is whether this is really helpful. Yes, it protects your
PIN but it does not protect the use of your decryption key.
Please could you elaborate?
To make use of the decryption key the smartcard first requires that a
VERIFY
On Sun, 5 Jan 2014 17:48, nicholas.c...@gmail.com said:
Thanks Werner for making your error messages so clear.
David did this and most other parts of the keyserver code.
Salam-Shalom,
Werner
--
Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz.
On Mon, 6 Jan 2014 11:09, erik.hjalmar.josefs...@gmail.com said:
reason I subscribed is that icedove says I have no valid subkey to my
two registered email addresses:
Your encryption subkey expired a month ago.
A pointer to a beginners how to fix this would be much appreciated.
$ gpg
On Tue, 7 Jan 2014 16:28, sam.ku...@uclmail.net said:
PSO:DEC but does not define it. That document also mentions
PSO:DECRYPT but does not define it. And finally, that document
defines PSO: DECIPHER. Are these three terms synonyms, or do they
I guess so.
2. I assume that your PSO Decrypt
On Tue, 7 Jan 2014 15:32, h...@guardianproject.info said:
OpenPGP card as a PKCS11 keystore. It seems that things are close: Java can
use NSS as a provider of PKCS11. I guess the question is whether opensc is
making a PKCS#11 interface to the OpenPGP card, that's the bit that I don't
Scute
On Wed, 8 Jan 2014 00:30, alan.meek...@gmail.com said:
D (genkey (rsa (nbits 4096)))
Use
D (genkey (rsa (nbits 4:4096)))
to match the S-expression syntax. A leading digit denotes a length and
thus you can't enter a number without its length. Yes, this is a common
pitfall.
Instead of
On Wed, 8 Jan 2014 09:06, spldemou...@gmail.com said:
I was attempting to upgrade the GnuPG 2.0.9 on the Suse Linux to version
2.0.22 but was hit by some missing dependency. May I know what are the
necessary package that I need to install before installing GnuPG 2.0.22?
Running ./configure
On Wed, 8 Jan 2014 16:26, h...@guardianproject.info said:
key #3 is for authentication, is there some restriction in the OpenPGP card
that would prevent the certificate/key combo in position #3 from being used
for signing?
No. At least not enforced by the card or GnuPG.
What I read there
On Tue, 14 Jan 2014 21:50, glorius.gadu...@ge.com said:
make: Fatal error: Don't know how to make target `../cipher/libcipher.a'
Current working directory /orpogdp1/app/proj_software/gnupg-1.4.16/tools
Did you used make -jN - it is possible that a dependecy is
missing. Or you make is broken.
On Fri, 17 Jan 2014 02:24, se...@literati.org said:
Scute works great with Firefox, but keep in mind it requires gpg-agent (or
Sure. That is the whole point of the exercise.
at least scdaemon). AFAIK it's not intended to work with anything other
than Firefox right now. I've been meaning to
On Thu, 23 Jan 2014 15:34, o...@mat.ucm.es said:
It gave you three attempts to login in. If you failed there was a time
delay of 20 min, if you failed again, the time delay was prolonged to
one hour, and then I think to one day.
IIRC, each CMS users gets his own VM and minidisk. Thus what
Hi!
is anyone interested in a BoF at FOSDEM on February 1 or 2? Anything
special to put on the agenda? How long should we plan 30, 45 or 60
minutes?
I plan to arrive on Saturday by noon which might be a bit too late to
sign up for a slot. Thus if there is interest in holding a BoF, I would
On Thu, 23 Jan 2014 19:20, r...@sixdemonbag.org said:
Not really, although DKG gave you a good heads-up about the number of
iterations in s2k.
FWIW: With GnuPG 2.x the default iteration count is calibrated to an
iteration time of 100ms. That is of course machine dependent. To view
that count
On Thu, 23 Jan 2014 21:25, ekl...@gmail.com said:
PS: Please, do not tell me one might have forgotten his passphrase. In this
case
there is no harm in shredding the secret key and waiting for the expiration
Experience has shown that this is the most common reason why there are
so many secret
On Thu, 23 Jan 2014 23:15, ekl...@gmail.com said:
Oh? I thought the most common reason was test keys, and tutorials which
explain
step-by-step how to make a keypair and push it on a keyserver, without telling
Obviously, I don't have no hard evidence for the claim that forgotten
passpharses
On Thu, 23 Jan 2014 23:28, arne.renkema-pad...@cased.de said:
Sound like a good plan. My preference would be the 1st of February
around lunch.
Well, the BoF rooms are assigned on a first come first served base.
Thus we can't sign up for a certain time. I am fine with Saturday, but
better not
On Fri, 24 Jan 2014 21:14, arne.renkema-pad...@cased.de said:
My personal pet-problem is the usability of tools like GPG.
Okay, thus we have
- Report on current keyserver work [Kristian]
- Make GPG invisible to the user [Arne]
- ECC and GnuPG progress [Werner]
Shalom-Salam,
Werner
On Sat, 25 Jan 2014 10:31, shm...@riseup.net said:
$ gpg-connect-agent 'getinfo s2k_count' /bye
ERR 280 not implemented
You are using GnuPG version 2.0.15.
Shalom-Salam,
Werner
--
Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz.
On Sat, 25 Jan 2014 13:33, shm...@riseup.net said:
$ gpg-connect-agent 'getinfo s2k_count' /bye
ERR 280 not implemented
You are using GnuPG version 2.0.15.
$ gpg2 --version
gpg (GnuPG) 2.0.22
Gnome-keyring or Seahorse gpg-agent connection hijacking active?
Salam-Shalom,
Werner
--
On Tue, 28 Jan 2014 17:15, o...@mat.ucm.es said:
- gpg.conf: default-key 65AD077A
- options: default-key 65AD077A
Do not use options - it has been replaced by gpg.conf so long ago that
I barely remember that file.
(I even rebooted to restart the gpg-agent).
But xemacs, gnus, epg
Hello!
The GNU project is pleased to announce the availability of Libgcrypt
version 1.6.1. This is a maintenance release to fix problems found in
the recently released 1.6.0 version.
Libgcrypt is a general purpose library of cryptographic building blocks.
It does not provide any implementation
On Fri, 31 Jan 2014 08:39, micha...@gmx.de said:
you are a legitimate sender. I don't know how gpg does it, in academic
signature I use an hmac to protect solely symmetrically enciphered
OpenPGP defines a MDC feature to detect tampering with the encrypted
message. It works by appending the
On Sat, 1 Feb 2014 14:13, mar...@martinpaljak.net said:
Too bad I missed. Where did you get with the ECC discussion?
I merely reported about the status and that I think it is better to wait
a few weeks until the I-D for the new curves is more complete. Then we
can start to implement that.
On Tue, 4 Feb 2014 17:09, d...@fifthhorseman.net said:
I don't know of a formalized way to do the other mapping, but it seems
like it would be pretty straightforward to embed the full X.509
certificate in a notation packet on a self-sig (presumably a self-sig
PGP does this. IIRC, Hal Finney
On Wed, 5 Feb 2014 06:03, d...@fifthhorseman.net said:
Werner recently (in message ID 87zjmv127f@vigenere.g10code.de)
indicated his acceptance of a notation named extended-us...@gnupg.org
with a value that can be set to bitcoin. Maybe the same notation
We can do that as soon as gniibe
901 - 1000 of 3671 matches
Mail list logo