Re: deluid // why no passphrase required ?
On Thu, 11 Aug 2005 01:32:33 +0200 (MET DST), Johan Wevers said: Are uid's also stored in the secret key? I thought they only existed For historic reasons the user IDs are also stored in the secring.gpg. This is an internal detail and will eventually change. Shalom-Salam, Werner ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Proof of email ownership
How does this interact with DKIM? -- ciao, Marco ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: [outlgpg] Outlook 2003 problems
The setting for cached mode can cause bandwidth problems on the network. you may be in violation of your IT policy by implememting this. Some companies have terminated users for such actions. It also can pose a security threat as the raise in bandwidth, if by many users, could over load their IDS/IPS sniffers. --- R. Jensen [EMAIL PROTECTED] wrote: Richard Sperry wrote: The issue you have is caused from the newer version of GnuPG. Timo is doing a great job of writing a newer version, but with all new releases it takes time to find the bugs. for a working beta of my Ol03 installer goto http://www.sperryservices.com/gnutools.htm The installer takes care of some of the OL issues and uses the .94 plug-in for stability. It also has Winpt for keymanager, GnuPG 1.4.2 and GpgEE . I have tried to write it stupid friendly so everything is set in theroy. For security reasons I set the keys and conf into the userdocs. I recomend using EFS if you are on XP Pro. I would like any feedback you have. --Richard Sperry I looked at the page you mentioned and was curious about: Please note that if you are connected to a Corperate Network or Exchange server, you MUST contact your IT or ADMIN before installing! Is this a licensing issue? My Outlook 2003 is connected to my employer's Exchange server. That's the only reason I even use Outlook. :-) Richard. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users Richard Sperry Sperry Services Where your total cost is our bottom line! [EMAIL PROTECTED] __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: [outlgpg] Outlook 2003 problems
On Wed Aug 10 2005; 17:06, R. Jensen wrote: and installed it. Now, in the explorer windows the dll does show up a 0.99.4, but the tab in Outlook says 0.99.3. This is an error in the code. We already fixed it. Save options in the registry. When I start Outlook, I get one that initially says Access is denied and then Another user told me about similar problems, currently the plugin assumes you have enough privileges to write to the registry. This could be also the problem with the crash. Debugger drstsn32 -p %ld -e %ld -g (and a PreVisualStudio7Debugger with the same value) So, it looks like Dr. Watson is enabled, but isn't getting invoked? As I said, I use special debugging programs. But I will see what I can do to find it out. Timo ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: [outlgpg] Outlook 2003 problems
On Wed Aug 10 2005; 13:30, R. Jensen wrote: and Enigmail (0.92.0.0). I signed the email there, but sent it to the Windows XP Pro box where I'm running Outlook 2003. On the Windows box I'm running GPG 1.41. This is weird, I use GPG 1.4.2 and I have no problems. We definitely need to check this. Maybe you can upgrade to 1.4.2? Timo ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: [outlgpg] Outlook 2003 problems
Timo Schulz wrote: On Wed Aug 10 2005; 17:06, R. Jensen wrote: and installed it. Now, in the explorer windows the dll does show up a 0.99.4, but the tab in Outlook says 0.99.3. This is an error in the code. We already fixed it. Save options in the registry. When I start Outlook, I get one that initially says Access is denied and then Another user told me about similar problems, currently the plugin assumes you have enough privileges to write to the registry. This could be also the problem with the crash. Debugger drstsn32 -p %ld -e %ld -g (and a PreVisualStudio7Debugger with the same value) So, it looks like Dr. Watson is enabled, but isn't getting invoked? As I said, I use special debugging programs. But I will see what I can do to find it out. Timo ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users I believe also (and it's been a while since I've seen the crash report) when you get the message, there is a link to show the details of the message. What he can possibly do there is click inside of the details box, and select everything in there. Then hit CTRL-V (Copy) and then Paste it to either a post here, or notepad. That should get everything that you need, since I believe also that part of the details are the Dr. Watson report. Patrick. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: [outlgpg] Outlook 2003 problems
Where I live it was 8/11/2005 4:57 AM, when Timo Schulz wrote: useful to have the debug output of Dr. Watson. Please compress it before you send it because it's very large. You can either send these reports to [EMAIL PROTECTED] or to me ([EMAIL PROTECTED]) directly. How do I enable this? I thought Windows offers it by default. When it crashes you have some choices and one of them should be like Details. Sorry, but my machine has special debugging hooks and thus I don't know how the original dialogs look like. The following two Microsoft support links may be helpful: http://support.microsoft.com/default.aspx?scid=kb;EN-US;308538 http://support.microsoft.com/default.aspx?scid=kb;en-us;188296 -- Regards, Ben ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Access experimental subpackets of 'User Attribute Packet'
Hello, I have payed with the idea of using experimental subpackets of 'User Attribute Packet' and here is what I came up with: Named Attribute Subpacket (type 100) -- Subpacket specific data: magic identification number datatype - identifier - eg. 4 - UTF8 string name - UTF8 string - eg. ICQ# data - depends on datatype - eg. 123-456-789 NB: size of data can be calculated from size of subpacket (it is just the remaining data) Datatypes: 0 - reserved 1 - no data (it is just named flag) 2 - boolean 3 - integer 4 - UTF8 string 5 - URL 6 - image 7 - binary 8 - binary file 100-110 - private or experimental use NB: Binary type holds just some unspecified binary data. On the other hand, binary file type holds file that can be saved to disk and the name of the attribute represents its filename. In my humble opinion this is the most important attribute of all. This attribute is supposed to be used for any user specific or program specific data. It is similar to the mail X- headers - it allows users to store identifiable information, which is not suitable for standardization or is not standardized yet. vCard Subpacket (type 102) -- Subpacket specific data: magic identification number data - content of the vCard file You can store you name, email and Photo ID in your public key, but what about other information? I suggest to add 'vCard Subpacket' because vCard is already known and supported format in MUAs and so the cost of implementing this should be minimal. Property Subpacket (type 103) - Subpacket specific data: magic identification number id - identifier - eg. 1 data - depends on id - eg. true There are a lot of little attributes which we may want to store in this subpacket. For example: 1 - public key url 2 - prefers signed mail 3 - prefers encrypted mail 4 - preferred format 5 - supports MIME format 6 - supports inline format etc... 'Property Subpacket' does not really describe the purpose of the subpacket, but I could not find any better name. Any suggestions? It there any way I can use GnuPG to store and load this information? Regards, David Srbecky Reference: http://www.ietf.org/internet-drafts/draft-ietf-openpgp-rfc2440bis-14.txt 5.12. User Attribute Packet (Tag 17) The User Attribute packet is a variation of the User ID packet. It is capable of storing more types of data than the User ID packet which is limited to text. Like the User ID packet, a User Attribute packet may be certified by the key owner (self-signed) or any other key owner who cares to certify it. Except as noted, a User Attribute packet may be used anywhere that a User ID packet may be used. While User Attribute packets are not a required part of the OpenPGP standard, implementations SHOULD provide at least enough compatibility to properly handle a certification signature on the User Attribute packet. A simple way to do this is by treating the User Attribute packet as a User ID packet with opaque contents, but an implementation may use any method desired. The User Attribute packet is made up of one or more attribute subpackets. Each subpacket consists of a subpacket header and a body. The header consists of: - the subpacket length (1, 2, or 5 octets) - the subpacket type (1 octet) and is followed by the subpacket specific data. The only currently defined subpacket type is 1, signifying an image. An implementation SHOULD ignore any subpacket of a type that it does not recognize. Subpacket types 100 through 110 are reserved for private or experimental use. signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
RE: [outlgpg] Outlook 2003 problems
You wrote: running Outlook 2003 SP1. Re-registering the plugin doesn't resolve the problem either. Would any log files, screen prints, etc help? If so, please specify and I will be glad to send them on. No, the logging code is not complete yet. As I said, the most valuable information is the output of Dr. Watson or a similar 'debugger' because it contain information at what place the crash happened. Timo ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: [outlgpg] Outlook 2003 problems
Timo Schulz wrote: The primary site for downloads is ftp.g10code.com/pub/outlgpg. When I connect to ftp.g10code.com, there is no pub directory. [I'm doing anonymous FTP with WS_FTP]. There is a g10code directory and in there is an outlgpg directory. I got the zip of the 0.99.4 version dated July 27, 2005. As to permissions, I checked and I'm in the administrators group on my machine--I can't think what other permissions I'd need. :-) I upgraded to 1.4.2 from 1.4.1 and the behavior is the same. As to copying the data that shows up as part of Microsoft's error reporting. The text is not selectable. So, I don't see any path going forward that will help resolve the problem on my system: Dr. Watson doesn't seem to get invoked, just Microsoft's Error reporting. I can't copy Microsoft's report content. Just to summarize: Hardware: Dell OPTIPLEX GX270: Dual Pentium 4 (2.8G Hz) 2 GB RAM OS: Windows XP Professional, Service Pack 2 (Build 2600.xpsp_sp2_gdr.050301-1519 : Service Pack 2) Outlook: Microsoft Office Outlook 2003 (11.6359.6408) SP1 [Installed from Microsoft Office Standard Edition 2003] GPG Location: C:\Program Files\Gnu\GnuPG\gpg.exe Vrsion: 1.4.2 Home: C:/Documents and Settings/rjensen.AMERICAS/Application Data/GnuPG (from gpg --version) GPGExch info: libgpgmedlgs.dll: 0.6.1.0 copied to C:\WINDOWS\SYSTEM32 GPGExch.dll: 0.99.4.0 installed in C:\gnupg\GPGExch [I ran regsvr32 on GPGExch.dll from a command prompt in C:\gnupg\GPGExch] Summary of behavior problems: When Outlook is started, I get several dialog boxes relating to storing values in the registry. The first one says access denied. The other 5 indicate the operation completed successfully. Preferences changed on the GnuPG tab do not survive a program restart. Changing the preferences also causes the 5 dialog boxes to appear. When changing preferences, the Also encrypt message with the default key starts off with the value: C:\Documents and Settings\rjensen.AMERICAS\Application Data\gnupg If I attempt to save changes I get an error dialog: The default key cannot contain any spaces. I have to clear out the box and uncheck to save other changes. Attempting to verify a signature results in a dialog: Invalid crypto engine Attempting to sign a message causes Outlook to 'close'. After composing a plain text message I click on 'Send'. I do not get a prompt for my passphrase. I just get the dialog about: Microsoft Office Outlook has encountered a problem and needs to close Error 'signature': AppName: outlook.exe AppVer: 11.0.6353.0 AppStamp: 408f2937 ModName: libgpgmedlgs.dll ModVer: 0.6.1.0 ModStamp: 42e0c70e fDebug: 0 Offset: 5f77 If I look at the error report contents, I can't copy and paste, but here are some more details: Exception Information Code: 0xc005 Flags: 0x Record: 0x Address: 0x002235f77 Then there are a large number of 'Modules' listed. GPGExch.dll is module 63 and libgpgmedlgs.dll is module 64. GPGExch.dll Image Base: 0x0208 Image Size: 0x Checksum: 0x Time Stamp: 0x42dfcf77 Version Information: Signature: feef04bd StrucVer: 0001 FileVer:(0.99:4.0) ProdVer:(0.99:4.0) FlagMask: 003f Flags: OS: 0004 FileType: 0002 SubType: FileDate: : libgpgmedlgs.dll Image Base: 0x0223 Image Size: 0x Checksum: 0x Time Stamp: 0x42e0c70e Version Information: Signature: feef04bd StrucVer: 0001 FileVer:(0.6:1.0) ProdVer:(0.6:1.0) FlagMask: 003f Flags: 0020 OS: 00040004 FileType: 0001 SubType: FileDate: : After all the modules, there is information about different threads, but without being able to copy the contents, I don't know what information would be helpful. I'll be glad to try the next version, but I don't see there is anything more I can do with this one. Richard. signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
zero-length MPIs (was: Re: mpi error with check-trustdb in 1.4.2 - resolved)
On Thu, Aug 11, 2005 at 12:02:17PM -0400, Jason Harris wrote: On Wed, Aug 10, 2005 at 10:30:09PM -0500, John Clizbe wrote: Tracked down the two offending keys and deleted them with 1.4.1. They both failed to import from a keyserver with 1.4.2 with the same mpi error, so I'm marking it off to key cruft. Here are some more offending keys: 0xA0B3E88B 0xFC05DA69 0x0FCF6738 0xCC78C893 0x98FDE37C 0x74C9DE33 0x57023F00 - corrupt subkey Fetching them from keyserver.kjsl.com is now possible with gnupg-1.4.2. To patch pks, add this to the middle of decode_mpi() (in pgputil.c): /* skip packets with 0-length MPIs for GPG's benefit (gnupg-1.4.2) */ if (mpi-nbits == 0) { return (0); } -- Jason Harris | NIC: JH329, PGP: This _is_ PGP-signed, isn't it? [EMAIL PROTECTED] _|_ web: http://keyserver.kjsl.com/~jharris/ Got photons? (TM), (C) 2004 pgpXeuUVhq6vB.pgp Description: PGP signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: [outlgpg] Outlook 2003 problems
On Thu Aug 11 2005; 12:29, R. Jensen wrote: As to permissions, I checked and I'm in the administrators group on my machine--I can't think what other permissions I'd need. :-) Then it's propably a bug. But I never got such a message so it is propably a combination of some 'events'. Dr. Watson doesn't seem to get invoked, just Microsoft's Error reporting. I can't copy Microsoft's report content. I'm not sure about the details they present. Useful would be a 'stack backtrace'. But I'm not sure how they call it and if they provide it at all. After all the modules, there is information about different threads, but without being able to copy the contents, I don't know what information would be helpful. I guess this is the information I need. And something like CTRL+A CTRL+C does not work? I'll be glad to try the next version, but I don't see there is anything more I can do with this one. You already did a lot, thanks. Timo ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: [outlgpg] Outlook 2003 problems
On Thu, Aug 11, 2005 at 12:29:01PM -0500, R. Jensen wrote: As to copying the data that shows up as part of Microsoft's error reporting. The text is not selectable. So, I don't see any path going forward that will help resolve the problem on my system: Dr. Watson doesn't seem to get invoked, just Microsoft's Error reporting. I can't copy Microsoft's report content. Did you try Alt+Print Screen ? That usually takes a screenshot of the curently active window. HTH //Samuel ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
tracing the Web of Trust?
Hi folks, I'm trying to learn if there's a tool to trace the web of trust between two keys. For example, suppose I get an email from someone I've never heard of and want to learn if there is any valid chain of signatures leading from me to him. I imagine that this is a difficult problem. :-) Has anyone solved it for Joe Average user? Thanks, ==ml -- Michael W. Lucas[EMAIL PROTECTED], [EMAIL PROTECTED] http://www.BlackHelicopters.org/~mwlucas/ The cloak of anonymity protects me from the nuisance of caring. -Non Sequitur ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: tracing the Web of Trust?
-BEGIN PGP SIGNED MESSAGE- Hash: RIPEMD160 In reply to Michael W. Lucas's message sent 2005-08-11 20:42: I'm trying to learn if there's a tool to trace the web of trust between two keys. For example, suppose I get an email from someone I've never heard of and want to learn if there is any valid chain of signatures leading from me to him. I imagine that this is a difficult problem. :-) Has anyone solved it for Joe Average user? Jason Harris provided useful links. An end-user might take advantage of path tracing as in my public key page, http://www.mikedaigle.ca/keys/index.htm - -- Mike Daigle http://www.mikedaigle.ca My PGP Key mailto:[EMAIL PROTECTED] Gossamer Spider Web of Trust http://www.gswot.org -BEGIN PGP SIGNATURE- Comment: GSWoT - Gossamer Spider Web of Trust - www.gswot.org iD8DBQFC/CLaNuccKlqTLlMRA5gzAJ9xwb2bRztemuk1517DWFyPzB8pKgCdEGrl ZpJDJuQcJ2uiZjQc2B5gb7A= =nmCS -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users