Re: [Enigmail] Windows 10, Enigmail 1.9.4, Thunderbird 45.2.0, GnuPG 2.1.14
On 27.07.2016 11:31, Samir Nassar wrote: > On Mi, 2016-07-27 at 08:28 +0200, Patrick Brunschwig wrote: > Enigmail 1.9.4 is older than GnuPG 2.1.14. It does not know how to > interpret some new messages introduced by GnuPG, and therefore fails > to import the keys. I did the following: Remove GnuPG 2.1.14; Install GnuPG 2.1.13; Result: Same problems. Remove GnuPG 2.1.13; Install GnuPG 2.1.12; Result: Works. Given the timeline for the Enigmail and GnuPG "modern" releases we find: 2016-05-04 : GnuPG 2.1.12 2016-06-03 : Enigmail 1.9.3 2016-06-16 : GnuPG 2.1.13 2016-07-04 : Enigmail 1.9.4 2016-07-14 : GnuPG 2.1.14 I didn't go through testing the individual steps of testing the import and export functions of Enigmail as GnuPG and Enigmail were rolling out since may and I should have. Is there an a pre-release announcement mailing list or notification that I can subscribe to run some quick tests? GnuPG talks about GnuPG 2.1.x inconsistently: at time it is "modern" and at times it is a "development release", but Enigmail 1.9 was announced with GnuPG 2.1.x support and so should either offer the support or warn people who are using GnuPG 2.1 that breakage can happen. If it is the position of the Enigmail project that GnuPG is a development branch then it would be a nice touch to have a note in the Enigmail conf that tells the user that their version of GnuPG is not completely supported. As it stands, the documentation and the release notes provided by Enigmail set users up for failure. -- Samir Nassar web:samirnassar.com email: sa...@samirnassar.com PGP:pgp.samirnassar.com signature.asc Description: OpenPGP digital signature ___ enigmail-users mailing list enigmail-users@enigmail.net To unsubscribe or make changes to your subscription click here: https://admin.hostpoint.ch/mailman/listinfo/enigmail-users_enigmail.net
Re: [Enigmail] Windows 10, Enigmail 1.9.4, Thunderbird 45.2.0, GnuPG 2.1.14
On Mi, 2016-07-27 at 08:28 +0200, Patrick Brunschwig wrote: Enigmail 1.9.4 is older than GnuPG 2.1.14. It does not know how to interpret some new messages introduced by GnuPG, and therefore fails to import the keys. Thank you Patrick, In general, I recommend GnuPG 2.0.x for regular users. 2.1.x is the current development version of GnuPG with sometimes major changes (and errors) between each version. I don't see this recommendation matched on the Enigmail website or the GnuPG website. If GnuPG 2.1.x is less supported by a particular Enigmail version, it would be helpful to state so in future Enigmail changelogs. A note to say that Enigmail 1.9.4 is known to work up to GnuPG 2.1.13 for example would be of great help. The Enigmail changelog[1] says "This version requires GnuPG 2.0.7 or newer. GnuPG 1.4.x is not supported anymore." since version 1.9 The GnuPG website[2] says "2.1.14 is the modern version with support for ECC and many other new features". When I go to the download page on gnupg.org and follow the links, I see links to GnuPG 2.1.14 for Windows, created by GnuPG, and OSX, created by you. 1) https://www.enigmail.net/index.php/en/download/changelog 2) https://gnupg.org/ -- Samir Nassar web:samirnassar.com email: sa...@samirnassar.com PGP:pgp.samirnassar.com signature.asc Description: This is a digitally signed message part ___ enigmail-users mailing list enigmail-users@enigmail.net To unsubscribe or make changes to your subscription click here: https://admin.hostpoint.ch/mailman/listinfo/enigmail-users_enigmail.net
Re: [Enigmail] separation from Mozilla
On Thursday, December 03, 2015 10:43:54 AM Mike Acker wrote: > I was horrified to learn that T-Bird would switch to OpenPGP > in order to comply with Mozilla's demand that all code be in JavaScript This is not happening and I would encourage you to not post unverified information that is unhelpful to other users. > if T-Bird is divested from Mozilla to become an independent open source > project then the demand for JavaScript would be of no effect. There is a big if there and the conclusion is in no way the only one. -- Samir Nassar Digital Security Trainer & Consultant sa...@samirnassar.com https://samirnassar.com ___ enigmail-users mailing list enigmail-users@enigmail.net To unsubscribe or make changes to your subscription click here: https://admin.hostpoint.ch/mailman/listinfo/enigmail-users_enigmail.net
Re: [Enigmail] Paste passphrase from clipboard into pinentry dialogbox
On Sunday, March 29, 2015 10:26:53 AM Anne Wilson wrote: Personally I prefer my password to be reference to a book - and you haven't a snowball in hell's chance of knowing which book or what reference to it :-) I doubt if even my closest family would guess the book. You might be wrong, you might be right, at most you are right for the situation you live in. Part of the discussion happening here is about general principles that cover cases where the risk is assessed to be adversaries who are making trillion guesses per second. Samir signature.asc Description: This is a digitally signed message part. ___ enigmail-users mailing list enigmail-users@enigmail.net To unsubscribe or make changes to your subscription click here: https://admin.hostpoint.ch/mailman/listinfo/enigmail-users_enigmail.net
Re: [Enigmail] Medium Term Plan for Dropping GnuPG 1.4.x Support
On Wednesday, February 04, 2015 05:09:24 PM Faramir wrote: If I'm not wrong, gpg 1.4.16 had a security flaw so it's strange ubuntu has not upgraded to 1.4.17 or 1.4.18. But that flaw may have been too specific to be considered exploitable... it was something about denial of service. Depending on the bug and how patchable it is, some distributions like Debian, and so Ubuntu, might apply patches to an existing version instead of pumping the version level. Samir signature.asc Description: This is a digitally signed message part. ___ enigmail-users mailing list enigmail-users@enigmail.net To unsubscribe or make changes to your subscription click here: https://admin.hostpoint.ch/mailman/listinfo/enigmail-users_enigmail.net
Re: [Enigmail] Request: different position for signature message
On Friday, 2014-08-08 18:31:21 Alexander Buchner alexander.buch...@posteo.de wrote: are you aware of the possibility to delete mails by hitting the del-key? I think Martin is raising a usability issue and not looking for a particular solution to deleting email. Samir -- Samir Nassar sa...@samirnassar.com https://samirnassar.com PGP Fingerprint: EE76 B39E 0778 8F95 F796 B044 FE67 9A90 8E99 7AB2 Public Key: https://samirnassar.com/files/key.asc signature.asc Description: This is a digitally signed message part. ___ enigmail-users mailing list enigmail-users@enigmail.net To unsubscribe or make changes to your subscription click here: https://admin.hostpoint.ch/mailman/listinfo/enigmail-users_enigmail.net
Re: [Enigmail] kmail encrypted/signed message unverifiable in enigmail
On Friday, 2014-07-11 02:24:15 Daniel Kahn Gillmor d...@fifthhorseman.net wrote: It sounds like i need to go back to the original correspondent and clarify their configuration to see if i can replicate this with non-sensitive data. from previous email: My other correspondent's mail header shows: User-Agent: KMail/1.13.7 (Linux/3.14-0.bpo.1-amd64; KDE/4.8.4; x86_64; ; ) This old header might be valid because of how KMail was packaged in the ancient days and ways of KDE 4.8.x - I am not sure though. Samir -- Samir Nassar sa...@samirnassar.com https://samirnassar.com PGP Fingerprint: EE76 B39E 0778 8F95 F796 B044 FE67 9A90 8E99 7AB2 Public Key: https://samirnassar.com/files/key.asc signature.asc Description: This is a digitally signed message part. ___ enigmail-users mailing list enigmail-users@enigmail.net To unsubscribe or make changes to your subscription click here: https://admin.hostpoint.ch/mailman/listinfo/enigmail-users_enigmail.net
Re: [Enigmail] kmail encrypted/signed message unverifiable in enigmail
On Thursday, 2014-07-10 17:53:52 Daniel Kahn Gillmor d...@fifthhorseman.net wrote: But i'm concerned because it seems like enigmail ought to be able to parse the kmail construction, at least if the top-level cleartext part is itself multipart/signed. I am happy to help. I'm running KMail 4.13.2, is your reference to kmail 1.13.7 perhaps KMail 4.13.7 ? If you need a KMail person to send emails back and forth for testing, I am always happy to help. Samir -- Samir Nassar sa...@samirnassar.com https://samirnassar.com PGP Fingerprint: EE76 B39E 0778 8F95 F796 B044 FE67 9A90 8E99 7AB2 Public Key: https://samirnassar.com/files/key.asc signature.asc Description: This is a digitally signed message part. ___ enigmail-users mailing list enigmail-users@enigmail.net To unsubscribe or make changes to your subscription click here: https://admin.hostpoint.ch/mailman/listinfo/enigmail-users_enigmail.net
