a way to put it
into gpg-agent. If you use smartcards then there is no need for this
because gpg-agent does that of its own.
Why does it not do this on its own for non-smartcard authentication
keys? Shouldn’t they already be in gpg-agent?
—Alex Mauer “hawke
don’t think it’s a good idea especially
when adding a key from removable media, but that’s the way it is.
—Alex Mauer “hawke”
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users
On 09/14/2010 03:34 PM, Grant Olson wrote:
Did gpg-agent stash a copy of the private key? How do I delete that copy?
I believe it’s one of the files in ~/.gnupg/private-keys-v1.d/ — at
least, that’s where it is in Linux.
—Alex Mauer “hawke
On 09/14/2010 04:43 PM, Fletes, Raul wrote:
In my old PGP I used to enter: PGP -seat myfile.dat XYZ abc -u
Myschoolto encrypt transcripts and such before sending.
How would I replicate that in GPG ???
gpg -sea myfile.dat -r XYZ abc -u Myschool
Hope this helps.
—Alex Mauer “hawke
unplug again, kill scdaemon,
and then plug it back in.
Do you definitely have to replug it, or is killing scdaemon sufficient?
I’ve seen the same thing on Linux when suspending my laptop (with a
traditional card reader); upon resuming, the smartcard isn’t available
until I kill scdaemon.
—Alex
was already available, and for this behavior to be the default.
Does this seem like a good idea?
—Alex Mauer “hawke”
signature.asc
Description: OpenPGP digital signature
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman
we need to check this. This should really work.
I can report that I also experience this problem with Ubuntu lucid i386
and Scute 1.2.
Slightly related: is there a reason that Scute-1.4 is not listed on the
download page at http://www.scute.org/download.xhtml ?
Thanks
—Alex Mauer “hawke
actually come from the same party
you corresponded with last week.
Many people have correspondence with people they never have and never
will meet in person, and knowing that it’s always the same person is
still helpful.
-Alex Mauer “hawke”
signature.asc
Description: OpenPGP digital signature
not restrict this.
I think it may still be a problem that attempting to turn off all the
flags has the actual effect of turning them all on instead...
-Alex Mauer hawke
signature.asc
Description: OpenPGP digital signature
___
Gnupg-users mailing list
expose an authentication-capable subkey from an
OpenPGP smartcard via OpenSSH, but can't expose an
authentication-capable subkey from its keyring?
Or can it, but I'm doing something completely wrong?
-Alex Mauer hawke
signature.asc
Description: OpenPGP digital signature
to show up in 'ssh-add -l' (I use gpg-agent with
ssh-agent support) ... but they don't.
It would be very helpful to know: why this doesn't happen, and how to
get it to work.
Thanks
-Alex Mauer hawke
signature.asc
Description: OpenPGP digital signature
. The authentication key may be used for SSH.
How can one generate this authentication key, other than via the OpenPGP
smart card?
-Alex Mauer hawke
signature.asc
Description: OpenPGP digital signature
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
, whatever)
-Alex Mauer hawke
signature.asc
Description: OpenPGP digital signature
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users
.
This will solve your problem - although in a way you may not like ;-)
Let me guess -- I won't be able to keep the primary secret key offline
any more?
-Alex Mauer hawke
signature.asc
Description: OpenPGP digital signature
___
Gnupg-users mailing
doesn't look
at all the information available to it before deciding whether an
operation is possible. I hope it will help, and I look forward to the
keybox format solving my complaint.
-Alex Mauer hawke
signature.asc
Description: OpenPGP digital signature
-cdsa/2006/Jan/msg00107.html
-Alex Mauer hawke
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users
Werner Koch wrote:
Okay, so it is not a communication problem with teh card. Please run
gpg --debug 64 --clearsign test.txt
To see why gpg tries to use the primary key.
aha! it does not. It's trying to use a different subkey instead.
Surely missing secret key parts would be cause to
Peter Pentchev wrote:
using PGP keys (or rather, uid's) with only names, no e-mail addresses.
You could either use such keys with the hostname (or the full path to
the web application) placed directly in the name part of the user ID,
or develop some kind of machine-readable encoding to
fixed in feisty,
though you do still need libpcsclite1 (and pcscd).
-Alex Mauer hawke
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users
a pinentry dialog, and I was able to enter the PIN
on the pinpad)
What am I doing wrong?
-Alex Mauer hawke
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users
.
-Alex Mauer hawke
signature.asc
Description: OpenPGP digital signature
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users
Werner Koch wrote:
Note that it will only work with the OpenPGP card and
only with the regular PIN and not with the Admin-PIN.
Yes, I am using it with a FSFe OpenPGP card.
to scdaemon.conf and setting an appropriate log file.
Here are the results:
2006-12-20 10:21:48 scdaemon[7324] DBG:
Werner Koch wrote:
Well this log also ends here. What you should see next is the usual
sign command.
So where is the problem? Alright, I see: You tried to sign with the
card. This has not been implemented yet. I forgot about this because
I tested only the authntication as this is what
I assume gpg isn't reading the PIN, or the reader isn't
using it (not sure how that works) Is this something that should be
working now?
This is the gnupg 2.0.1 from Ubuntu (feisty) so if the pinpad is not
supposed to be working at all, it's possible that a patch was applied to
enable it.
-Alex
only on a USB disk, and not have them copied to any machine on
which I happen to load them.
-Alex Mauer hawke
signature.asc
Description: OpenPGP digital signature
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo
, are they not?
-Alex Mauer hawke
signature.asc
Description: OpenPGP digital signature
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users
Christoph Anton Mitterer wrote:
Do you remember when, I think it was BBC, claimed they had a patent in
the US which would cover hyperlinks?
It was British Telecom. google:british telecom hyperlink patent
--
Bad - You get pulled over for doing 90 in a school zone and you're drunk
off your
David Shaw wrote:
You always have the option to not sign, of course. But you don't get
to tell the keyholder what information he puts in his user ID string.
You don't create that, and it must be signed completely or not signed
at all.
Of course it is not possible to tell the key holder what
David Shaw wrote:
Some people
will not sign such a user ID though,
It's not an issue of improving the trust, it's an issue of
disambiguation.
Right, so why is it any better to have a key with:
0x99242560 David Shaw [EMAIL PROTECTED]
than to have
0x99242560 David Shaw
0x99242560 [EMAIL
David Shaw wrote:
On Mon, Oct 24, 2005 at 04:21:32PM -0500, Alex Mauer wrote:
I don't agree with this. The user ID system in all OpenPGP products
gives a regular UTF-8 string. Signatures simply bind that string to
the primary key. The system says exactly Alex Mauer belongs with key
, the point of this rather long-winded bit is that it should be
possible to only sign the email if that's all that has been verified, or
only sign the name if that's all that's been verified.
-Alex Mauer hawke
signature.asc
Description: OpenPGP digital signature
address for each UID. I think that this
puts emphasis in a bad place, leading people to be signing the fact that
e.g. Alex Mauer belongs with [EMAIL PROTECTED], rather than Alex
Mauer belongs with key 0x51192ff2 and [EMAIL PROTECTED] belongs
with key 0x51192ff2. The photo UID type fits much better
NOT be
gpg: used in a production environment or with production keys!
gpg: secret key parts are not available
gpg: no default secret key: general error
gpg: signing failed: general error
What could be causing this?
Thanks
-Alex Mauer hawke
--
Bad - You get pulled over for doing 90 in a school
Werner Koch wrote:
From what I can google, I should be able to (re)generate the stub keys
by using 'gpg --card-status'. But, this seems not to work.
I need to see what happens; will get back to you later.
Had a chance to look at this yet?
Also, I found some more .. stuff that strikes me
Werner Koch wrote:
As of now the may be means with software supporting it but not with
GnuPG :-(.
As I was afraid of; perhaps the howto could be updated to clarify that
The longer answer is that I have worked on it and added code to the
CCID driver to check this out.
How about the SC
of false positives ...
http://www.highprogrammer.com/alan/numbers/soundex.html explains how
soundex works, and from that it should be obvious that soundex would be
a *horrible* choice for this application. Which is not of course to say
that it's an unlikely choice. :-D
-Alex Mauer Hawke
=k3Rn= wrote:
What does these options really have to do with Enigmail's work? Does
this auto-key-retrieve have any effect on Enigmail?
It allows Engimail to import the key used to sign a mail without prompting.
-Alex Mauer Hawke
signature.asc
Description: OpenPGP digital signature
.
Incidentally, PGP prunes as well. It's the only way to keep keys to a
rational size over a long period of time.
Then I guess I hope this feature will come along at some point.
-Alex Mauer Hawke
signature.asc
Description: OpenPGP digital signature
38 matches
Mail list logo