Re: windows binary for gnupg 1.4.11 // compilation instructions posted
On Tue, 20 Sep 2011 22:48, r...@sixdemonbag.org said: If I determine that my work PC and my home PC are both trusted systems, and I have a single USB stick containing my GnuPG installation and keyrings that I want to use on both, then I don't see the risk so long as that USB stick is never plugged into an untrusted machine. That is right. However you would only keep your data on the stick and not the programs. All systems these day have a package management system, and those are better at program updates than doing it manually. My point was that people very often talk about encrypted super secure USB sticks which they put it into an arbitrary computer and believe that the data and programs magically work secure this way. They don't consider that a foreign CPU is seeing everything they stored on the stick. Salam-Shalom, Werner -- Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
After opening file with GPG Tools any file can be opened w.o. pwd
I have GPG Tools 20110711 installed on a MacAir running Snow Leopard. If I right click an encrypted file I get a services menu item Open PGP: Decrypt. Selecting that will decrypt the file properly. My problem is this. Once that file is decrypted I can click on any file that was encrypted with the same key and it will open without asking for the password. If I wait a very long time 20 minutes plus, or shut down and restart the computer the behavior stops. Is there a way to require the password every time I try and decrypt a file. The current situation presents a security risk as opening one file essentially unlocks all files encrypted with the same key. -- View this message in context: http://old.nabble.com/After-opening-file-with-GPG-Tools-any-file-can-be-opened-w.o.-pwd-tp32503709p32503709.html Sent from the GnuPG - User mailing list archive at Nabble.com. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Posting rules for the gnupg-devel@ mailing list
Hi there! On Tue, 20 Sep 2011 22:04:53 +0200, Peter Pentchev wrote: On Tue, Sep 20, 2011 at 06:31:44PM +0200, Luca Capello wrote: Please Cc: me, I am not subscribed to the list. Still valid. While I know that my email was accepted, I have not received any error/moderation message: = Sep 19 20:33:27 clio postfix/smtp[2929]: 5D125CE980: to=gnupg-de...@gnupg.org, \ relay=ns1.u64.de[217.69.77.222]:25, delay=6.4, delays=0.01/0.01/6.2/0.12, \ dsn=4.0.0, status=deferred (host ns1.u64.de[217.69.77.222] said: \ 451-151.1.160.141 is not yet authorized to deliver mail from l...@pca.it \ to 451 gnupg-de...@gnupg.org. Please try later. (in reply to RCPT TO command)) Sep 19 20:42:49 [...] status=deferred [...] Sep 19 20:52:49 [...] status=deferred [...] Sep 19 21:12:49 [...] status=deferred [...] Sep 19 21:52:50 clio postfix/smtp[14485]: 5D125CE980: to=gnupg-de...@gnupg.org, \ relay=ns1.u64.de[217.69.77.222]:25, delay=4769, delays=4763/0.01/5.1/0.81, \ dsn=2.0.0, status=sent (250 OK id=1R5jta-0006Hh-CE) = Should I subscribe to the gnupg-devel@ mailing list to post? Can this information be added to the listinfo page, please? Not necessarily. I believe that this is just greylisting in action - http://en.wikipedia.org/wiki/Greylisting I know what and how greylisting works, which is exactly what happened in the log above. The problem is that there is no sign of my email above, not even the in-moderation notification. I will try to re-send it... I found the answer to my first question in the mailing list webpage, so this is purely my fault, it seems I completely missed the other part of that page. Short story: all GnuPG mailing lists are subscribers-only: http://gnupg.org/documentation/mailing-lists.en.html I still think that this information should be added to the listinfo pages as well, but this is another matter. Sorry for the noise. Thx, bye, Gismo / Luca pgpsP6SIdxc1j.pgp Description: PGP signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
gpgkeymgr 0.3 released
I've released version 0.3 of my tool gpgkeymgr today. With gpgkeymgr you can clean up and manage your GnuPGP-keyring, by removing old and unnecessary keys. There haven't been any new bigger features, but I have an French translation (thanks to jbar), German translation of program and manpage, some smaller improvements and probably most important an improved makefile working on more different Systems without problems. Link: http://nudin.github.com/GnuPGP-Tools/ Regards, Michael Schönitzer -- Michael F. Schönitzer Mail: michael ät schoenitzer.de Jabber: schoenit...@jabber.piratenpartei.de ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: After opening file with GPG Tools any file can be opened w.o. pwd
-BEGIN PGP SIGNED MESSAGE- Hash: RIPEMD160 Hi, Is there a way to require the password every time I try and decrypt a file. The current situation presents a security risk as opening one file essentially unlocks all files encrypted with the same key. Caching in gpg-agent is responsible for this. You can configure its cache entry TTL values. Look for cache settings in gpg-agent.conf (to be created in your GnuPG homedir. You may want to set default-ttl to some seconds only (or 0?). http://www.gnupg.org/documentation/manuals/gnupg/Agent-Options.html#Agent-Options Olav - -- The Enigmail Project - OpenPGP Email Security For Mozilla Applications -BEGIN PGP SIGNATURE- Version: GnuPG v2.0.17 (MingW32) Comment: Dies ist eine elektronische Signatur - http://enigmail.mozdev.org/ iQGcBAEBAwAGBQJOefLmAAoJEKGX32tq4e9WiLwL/0VcmWmGmLPLPVHPAHXSSlEm gRXPOm0mMppRRknBGszkpFwoPkoM5JfTx796HiLHPAmlwLA+6UtfjKLRR1W+OCh4 HB3adVOScMcCDTaNls3upoJTgqPzCygHsklhJYyR54s6fer0NL3K8cBm90Jzxk76 mQT1rVMhnqgggFLESYBY7GSdXCpz/lsHQwHbIvP6r3MfW7Rf1SbYVoo/NBtKrFNr IzPrXcpYMxZLdw1U3Xn0NJtUkNTULLULy3gAheldXzSOcKpCOFClBYz88qLHWM9J zMXULWSr6PcaW1kWIDZ1fnfyyheVH34mHGhTEoVgINdoV7nAy/vhl20Uu7foJLoD k4zG7x1/bG2j2gOP7dKZJ5H22brXzRVqiC/ZPAFGNWG6/v96T650FUa8f4cK5szD tE8EmIn5hoAI7kb9JHCtRWEITurWmd9Vqnyqtyf1/QP5grqc0pFC2JY5uGuUun/B MD05TZcJrN6OF2r2zZ6SRZcz2eJya1Y/KJvv0MGTKg== =vHRU -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Posting rules for the gnupg-devel@ mailing list
On Wed, 21 Sep 2011 10:40, l...@pca.it said: the log above. The problem is that there is no sign of my email above, not even the in-moderation notification. I will try to re-send it... Sending such notification back to the spammers is not a good idea. You either have to wait - or better - subscribe to the ML. Shalom-Salam, Werner -- Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
gnupg2.x // adding subkeys - possible only from commandline ?
Have been playing with gpg4win, and installed everything according to the defaults. Cannot get Kleopatra or GPA to add a subkey, but can easily do it from the commandline. - C:\PROGRA~1\GNU\GNUPGgpg --edit-key 1 gpg (GnuPG) 2.0.17; Copyright (C) 2011 Free Software Foundation, Inc. This is free software: you are free to change and redistribute it. There is NO WARRANTY, to the extent permitted by law. Secret key is available. pub 2048R/F9015496 created: 2005-12-01 expires: never usage: SC trust: ultimate validity: ultimate [ultimate] (1). 1 aa...@key.test gpg addkey Key is protected. You need a passphrase to unlock the secret key for user: 1 aa...@key.test 2048-bit RSA key, ID F9015496, created 2005-12-01 Please select what kind of key you want: (3) DSA (sign only) (4) RSA (sign only) (5) Elgamal (encrypt only) (6) RSA (encrypt only) (7) DSA (set your own capabilities) (8) RSA (set your own capabilities) Your selection? - Is there a way to do this from any of the gpg4win front ends? TIA, vedaal ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: windows binary for gnupg 1.4.11 // compilation instructions posted
ved...@nym.hush.com wrote: BTW, There is a unique advantage to running gnupg from cygwin on windows, as it's the only way to make use of unix-like commands, (cat, grep, printf, etc.) and pipe them to and from gnupg. ONLY? How much effort did you expend looking? The MinGW compiler folks provide a little environment called MSYS, for Minimal System. It's not meant to be a full-on environment like Cygwin, even though it's a fork of an earlier Cygwin, but provides bash and enough tools to run most configure scripts and do a reasonable amount of work. BTW, it's faster than Cygwin because it's emulating less. IIRC, Mozilla based their Windows build environment on MSYS. In addition, there is Microsoft's Services for Unix which is the old Interix product. I think one may still download 3.5 for XP. cc looks for CL.EXE on the $PATH. gcc 3.3 is included. Lots of stuff available from the user site. Certain server levels of Vista and Windows 7 have SFU built-in. It cannot be installed separately on these OSes. Another alternative is UWIN, from ATT's David Korn and Glenn Fowler. (Umm, yeah /THAT/ Dave Korn.) One used to be able to point cc to either the MinGW gcc or to MS' CL. I haven't used it in a while. That's just from memory. -- John P. Clizbe Inet: John ( a ) Enigmail DAWT net FSF Assoc #995 / FSFE Fellow #1797 hkp://keyserver.gingerbear.net or mailto:pgp-public-k...@gingerbear.net?subject=HELP Raise your hand if you know someone who is alive only because you did not want to spend time in jail ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: windows binary for gnupg 1.4.11 // compilation instructions posted
On 9/21/2011 11:44 PM, John Clizbe wrote: ONLY? How much effort did you expend looking? In addition to John's offerings, don't forget http://gnuwin32.sf.net. Most of the GNU tools exist in native Win32 builds. Some of them are a bit old (e.g., their flex is 2.5.4a, current is 2.5.34, their gawk is 3.1.6 and current is 4.0.0, etc.), but they generally work quite well. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users