FAQ update
The FAQ that was mentioned earlier this year is still being worked on/revised. Werner requested that we shift to using org-mode formatting, so I took the XML markup and wrote a small script to convert it to org-mode. There is a GitHub repo set up for the FAQ at: http://github.com/rjhansen/gpgfaq There is also a preview version of the HTMLified output at: http://sixdemonbag.org/gnupgfaq.html Remember, this is not an official FAQ, and it's also a work in progress. Any and all constructive criticism will be warmly received. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Problem with x.509 certificate and OpenPGP Card
Werner, thank you for your quick response. card to lookup the certificate in the GnuPG keybox (via gpgsm). The card does not store the certificate. Because of the Specifications on http://g10code.com/p-card.html (Data onject to store a X.509 certificate) I thought it would be possible. As far as I understand the card is capable of storing a complete certificate (sec key and pub key). But this certificate is not supposed to be used with the on card generated key(s). Am I right? So it should be possible to transfer a off card generated key that might be used without scute? But then the key is extractable from the card if one knows the PIN!? We have tested Scute only with Firefox and thus you may may have problems if you use it for mail. Should be easy to fix, though. I'll try out and report asap. Thanks and regards, Michael ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
batch erroring with renaming - Permission denied
I am executing a --batch file and am getting the below error messages. Contents of bat file: C:\gnupg\gpg.exe --batch --homedir c:\gnupg\ --yes --no-default-keyring --keyring c:\gnupg\pubring.gpg --delete-key the-key-name Error messages: gpg: renaming `c:\gnupg\pubring.gpg' to `c:\gnupg\pubring.bak' failed: Permission denied gpg: deleting keyblock failed: file rename error gpg: the-key-name: delete key failed: file rename error How do I give gpg the permission to rename the pubring.gpg to pubring.bak? It is not write protected. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: [gnupg-users] Decrypting file encrypted for multiple recipients using a given ID in batch mode
Thanks, I will take this on mind. 2012/10/19 Werner Koch w...@gnupg.org On Sun, 7 Oct 2012 02:34, jaimefde...@gmail.com said: If I type a password gpg will try it with all the posible recipients but this is not the behaviour that I want, is there any way to force a user? FWIW: GnuPG 2.1.0-beta prodives the option --try-secret-key to make things easier with hidden recipients. Shalom-Salam, Werner -- Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: [gnupg-users] Change key password in batch mode
2012/10/19 Werner Koch w...@gnupg.org On Mon, 8 Oct 2012 13:13, jaimefde...@gmail.com said: $ gpg --batch --passphrase-fd 0 --status-fd 2 --command-fd 0 --edit-key user What's wrong with gpg2 --passwd USER ? But then I have to use pinentry, and I don't want to. I tried gpg --passwd USER --batch --passphrase-fd 0 but I can only write the old-password, the command finished without leave me type the new password. I think that passphrase-fd only read one password at a time. But gpg never gives me the chance to write the new password. I saw other similar post Do not use --passphrase-fd along with --command-fd. I had used these options together to change the expiration date, is it wrong? Salam-Shalom, Werner -- Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz. Thanks for your help ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: batch erroring with renaming - Permission denied
On Tue, 23 Oct 2012 18:41, incogn...@mixnym.net said: gpg: renaming `c:\gnupg\pubring.gpg' to `c:\gnupg\pubring.bak' failed: Permission denied gpg: deleting keyblock failed: file rename error It is possible that another process accesses pubring.gpg without doing proper locking. Salam-Shalom, Werner -- Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Problem with x.509 certificate and OpenPGP Card
On Wed, 24 Oct 2012 09:39, freisch...@gmx.net said: As far as I understand the card is capable of storing a complete certificate (sec key and pub key). But this certificate is not supposed to be used with the on card generated key(s). Am I right? It is up to you how you use it. GnuPG does not make use of the field. So it should be possible to transfer a off card generated key that might be used without scute? But then the key is extractable from the card if one knows the PIN!? It all depends on how you connect Thunderbird to the card. We support the card only via the GnuPG stack. Scute works on top of this stack. Shalom-Salam, Werner -- Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
SmartCard reader
Hi, how are the chances that I can use an agrolis (http://argolis.com/) usb smart card reader with GPG? It shows up as /dev/ttyACM0 Rgds Richard ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users