Re: Changing order of ids in key
Hello Jerry. Am Samstag, den 19.01.2019, 07:31 -0500 schrieb Jerry: > Probably a dumb question, but I thought I would ask regardless. > > I created a key pair using my name and email address. I then added a > new id to the key with the same name but a different email address. > Now, when I send an email, the second id is the one displayed no > matter what email address I was using when I sent the message. (I > hope that this is making sense). Yes, I know what you mean. This behavior depends mostly on the MUA you are using. One UID is marked as primary. Some MUAs only display the primary UID, some display all and some pick the right one from the list. > Is there any way to switch the position of the ids in the key other > than deleting the key and creating a new one? Would I be better off > creating two separate keys? I would rather keep things simple if > possible. Would creating a sub-key be the way to go? I am sort of > lost here. You can set the other UID as primary. But you would have the same problem, when you send with the other address. You should test it with another MUA, what this displays. In my case (evolution), it checks the UIDs and gives an 'okay' if one of the addresses matches the sender. If I check for the signature key by clicking the symbol for the signature details, I see the output of GPG with the primary UID and the other UIDs as aliases, the same way, as gpg does on the command line. Hth, Dirk -- Dirk Gottschalk Paulusstrasse 6-8 52064 Aachen, Germany GPG: DDCB AF8E 0132 AA54 20AB B864 4081 0B18 1ED8 E838 Keybase.io: https://keybase.io/dgottschalk GitHub: https://github.com/Dirk1980ac signature.asc Description: This is a digitally signed message part ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: gpg > addphoto
Hello. Am Donnerstag, den 10.01.2019, 16:23 +0100 schrieb Stefan Claas: > > It's part of GNU philosophy to not implement unnecessary > > hard limits in software but one good reason to impose limits > > is to prevent denial of service conditions. > What i really don't get with this DoS stuff is when one uses with > friends etc. the regular version of GnuPG / PGP and obtains the > keys from friends, checks the fingerprint why should one worry? > Sure, if i customize the source code I can do such stuff to other > keys on SKS key servers, but then people can still ask their friends > and say "hi there seems to be something wrong with your key, can you > mail me please a copy". DoS does not necessarily mean crashing the system. A "hanging" process or a process that takes much more time as necessary is also a DoS. Crashing a system is only the hardest variant. And this prevents also prevents an unintended DoS which means a very big key by mistake. It's okay to allow the generation of everything a user wants, especially in open source software where everybody can change the values. A hard limit would make no sense at all. > Or are there cases when messages are in transient and can those > be quickly modified, so that GnuPG crashes (your system)? As said, it's not necessarily a crash, but GPOG takung two hours to process a key which has gigabytes, just for example, could be considered a DOS. ^^ Regards, Dirk -- Dirk Gottschalk Paulusstrasse 6-8 52064 Aachen, Germany GPG: DDCB AF8E 0132 AA54 20AB B864 4081 0B18 1ED8 E838 Keybase.io: https://keybase.io/dgottschalk GitHub: https://github.com/Dirk1980ac signature.asc Description: This is a digitally signed message part ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: gpg > addphoto
Hello Stefan. Am Mittwoch, den 09.01.2019, 22:50 +0100 schrieb Stefan Claas: > On Wed, 09 Jan 2019 22:25:21 +0100, > dirk.gottschalk1...@googlemail.com wrote: > > Hi Dirk, > > > But, this is more a Problem of SKS. When SKS accepts such keys, > > it's > > not GPG's fault. > Forget SKS for a moment, i send you, or distribute, such a key via > other mediums and your GnuPG will accept it. :-D As long, as the size of the picture doesn't exceed 16M, it surely will be accepted. But this should not take a long time, 16M is nothing, so there is no Problem with this. Nobody says it has to be prevented. Sure, GPG can be "abused" in many ways. I also do this by using it for a purpose it was not invented for. This is not an evil functionality. If dome people like to put HiRes photos or other pictures in their UID, for whatever purpose, so it is not an evil thing. Distributing a key via email is no problem in this case and SKS, WKS and others should oinly prevent storing those key for storage and sanity reasons. > I only wanted to know why such a large image size in the first > place was chosen, when GnuPG suggest a much much smaller > size. :-) I think the 16M are from times, where RAM was nbot measured in GB. In this case it was to avoid long package computation times because the RAM was smaller than 1GB. They had to choose a limit to avoid DDoS attacks to GPG on a users computer. There was no intention to limit the size of the photo because nobody thought about this at the moment of decision. Regards, Dirk -- Dirk Gottschalk Paulusstrasse 6-8 52064 Aachen, Germany GPG: DDCB AF8E 0132 AA54 20AB B864 4081 0B18 1ED8 E838 Keybase.io: https://keybase.io/dgottschalk GitHub: https://github.com/Dirk1980ac signature.asc Description: This is a digitally signed message part ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: gpg > addphoto
Hi Stefan. Am Mittwoch, den 09.01.2019, 18:06 +0100 schrieb Stefan Claas: > On Tue, 8 Jan 2019 20:16:59 +0100, Stefan Claas wrote: [...] > The provided Chief Wiggum image contains a 2 seconds .mp4 movie > clip. Pretty awesome imho! So this means that one can hide in a PGP > key movies and other files too, hidden in jpeg images and distribute > it securely via SKS... But, this is more a Problem of SKS. When SKS accepts such keys, it's not GPG's fault. Anyways, anybody can generate anything he wants witrh GPG. Such restriction would NOT have any effects, because the key generation is done by the users GPG. Anybody can change the source code of GPG in any way and generate everything. Restictions at the end is senseless in open source world. Thje Servers are controlled by their owners so it is in their hands, what can be distributed. Regards, Dirk -- Dirk Gottschalk Paulusstrasse 6-8 52064 Aachen, Germany GPG: DDCB AF8E 0132 AA54 20AB B864 4081 0B18 1ED8 E838 Keybase.io: https://keybase.io/dgottschalk GitHub: https://github.com/Dirk1980ac signature.asc Description: This is a digitally signed message part smime.p7s Description: S/MIME cryptographic signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: gpg > addphoto
Hello. Am Dienstag, den 08.01.2019, 20:16 +0100 schrieb Stefan Claas: > Yes, agreed! However, as it currently is there is no need for bad > actors because people have plenty of image space in a key. Uh, I think you have found a new place where the guys can hide their porn collections so there wifes don't find it. Sorry, could not resist. Regards, Dirk -- Dirk Gottschalk Paulusstrasse 6-8 52064 Aachen, Germany GPG: DDCB AF8E 0132 AA54 20AB B864 4081 0B18 1ED8 E838 Keybase.io: https://keybase.io/dgottschalk GitHub: https://github.com/Dirk1980ac ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: GPG public key HELP
Hi. What are you trying to do? Do you just want to transfer you public key via email or anything like that? Then try: gpg2 -a --eyport > filename.asc This gives you an ascii armored key that you can transfer in any way you want. Regards, Dirk Am Sonntag, den 14.01.2018, 22:57 + schrieb Ryan Scarr: > I#m trying to convert it into an alrogrithim by opening it with the > note pad so I can purchase, but it doesn’t change it into the correct > one so that other people know my certification? How do I change my > public file into a format that I can ive to other users? > > ___ > Gnupg-users mailing list > Gnupg-users@gnupg.org > http://lists.gnupg.org/mailman/listinfo/gnupg-users -- Dirk Gottschalk Paulusstrasse 6-8 52064 Aachen Tel.: +49 1573 1152350 signature.asc Description: This is a digitally signed message part ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users