Re: Non-interactively create subkey?

2013-03-27 Thread Hauke Laging 
Am Mi 27.03.2013, 10:15:11 schrieb Jack Bates:
> How do I non-interactively create a new subkey?

echo addkey$'\n'8$'\n'e$'\n'q$'\n'2048$'\n'1y$'\n'save$'\n' |
  LC_ALL=C gpg --expert --batch --passphrase foo --command-fd 0 \
--edit-key $x_short_id


Hauke
--
☺
PGP: 7D82 FB9F D25A 2CE4 5241 6C37 BF4B 8EEF 1A57 1DF5 (seit 2012-11-04)
http://www.openpgp-schulungen.de/


signature.asc
Description: This is a digitally signed message part.
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Dump all the properties of a key?

2013-03-27 Thread Jack Bates 

On 26/03/13 09:46 AM, Hauke Laging wrote:

Am Mo 25.03.2013, 15:30:23 schrieb Jack Bates:

How do I dump all the properties of a key?


gpg --list-options show-policy-urls,show-notations,show-sig-expire,\
show-keyserver-urls,show-uid-validity,show-unusable-uids,\
show-unusable-subkeys --with-colons --list-sigs $KEYID

gpg --list-options show-policy-urls,show-notations,show-sig-expire,\
show-keyserver-urls,show-uid-validity,show-unusable-uids,\
show-unusable-subkeys --list-sigs $KEYID


Thank you. Incidentally, I would find useful an "everything" option, to 
just dump everything about a key.


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Dump all the properties of a key?

2013-03-27 Thread Jack Bates 

On 26/03/13 07:50 AM, Daniel Kahn Gillmor wrote:

On 03/25/2013 06:30 PM, Jack Bates wrote:

How do I dump all the properties of a key?


it's not clear to me what you're looking for, but here are a few options
that might provide you with useful information:

gpg --export-options export-minimal --export $KEYID | pgpdump

gpg --export-options export-minimal --export $KEYID | gpg --list-packets

if you are interested in the list of other people's certifications (or
old self-certifications) you could omit the "--export-options
export-minimal" arguments.

If you're looking for some piece of information in particular, asking in
more detail can make it easier for other people to help you get the
answer you're looking for.


Thank you very much for this answer, "gpg --list-packets" is exactly 
what I was looking for. It reveals the digest algo used for the 
signature and the preference list, although it's quite terse. I had to 
refer to include/cipher.h to lookup "digest algo 8"


pgpdump is a bit more verbose. Helpful. Thank you!

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Non-interactively create subkey?

2013-03-27 Thread Jack Bates 

How do I non-interactively create a new subkey?

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: gpg for anonymous users - Alternative to the web of trust?

2013-03-27 Thread Leo Gaspard 
Well... IMHO you did all what you had to/could do, if you want to keep
confidentiality : claiming your public key in association with your name on
several websites. Now, just hope no covert agency will try to impersonate you
until a lot of people verify and sign your public key.

On Tue, Mar 26, 2013 at 11:38:23PM +, adrelanos wrote:
> Yes, I agree, it's pretty much impossible to distinguish myself from a
> nation-state's covert agency. Hence, I only asked how to claim a pseudonym.
> 
> David Chadwick:
> > Its pretty much impossible to distinguish a nation-state's covert agency
> > personnel who are masquerading as someone else from the real someone
> > else. In the UK we have recently had examples of undercover agents
> > infiltrating animal rights groups or similar as activists, forming deep
> > emotional relationships with female members, moving in with them, having
> > children with them, and then years later, after the group has been
> > smashed, disappearing from the scene. One such lady victim saw the
> > picture of a policeman years later (I think in a newspaper) and
> > recognised him as the father of her child, which is when the scam was
> > blown open. So in short, these agencies do not find it difficult to do
> > anything that they need or want to do
> > 
> > regards
> > 
> > David
> > 
> > On 26/03/2013 17:36, Johnicholas Hines wrote:
> >> The question is how to distinguish yourself from a nation-state's covert
> >> agency purporting to be an individual interested in anonymity; you need
> >> to do something that the agency would find difficult to do.
> >>
> >> Getting your name and key into difficult-to-corrupt archives will start
> >> a timer - eventually you can point to the archives as evidence that you
> >> are not a newcomer. Even an agency would find it difficult to change
> >> history.
> >>
> >> Spending money or effort forces a covert agency to also spend money or
> >> effort to replicate your behavior. For example, if you sent someone a
> >> bitcoin, they would have to spend some dollars to establish themselves
> >> as comparably credible. Unfortunately, they have deep pockets. Effort
> >> might be preferable to money, since leaves more ways that a covert
> >> agency might make a mistake, behaving in some characteristic way (e.g.
> >> some sort of automatic authorship attribution software might become
> >> available that revealed them to be a team rather than an individual).
> >> Steady effort at releasing patches over a decade might be moderately
> >> credible.
> >>
> >> Johnicholas
> >>
> >>
> >>
> >> ___
> >> Gnupg-users mailing list
> >> Gnupg-users@gnupg.org
> >> http://lists.gnupg.org/mailman/listinfo/gnupg-users
> >>
> > 
> 
> 
> ___
> Gnupg-users mailing list
> Gnupg-users@gnupg.org
> http://lists.gnupg.org/mailman/listinfo/gnupg-users

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Mail-Followup-To (was Re: IDEA License)

2013-03-27 Thread Peter Lebbing 
On 27/03/13 14:40, Julian H. Stacey wrote:
> I created it, as far as I recall, from my copy direct from Ulrich, 
> which had no Mail-Followup-To

Correct, the problem originated when you replied[1] to Werner's mail[2].
Werner's mail had the following header:

Mail-Followup-To: "Julian H. Stacey" , gnupg-users@gnupg.org

The difference between that line and a simple Reply-to-All is that Werner would
be in the recipient list with the Reply-to-All, and not with the
Mail-Followup-To. Your reply should have only had gnupg-users@gnupg.org and your
manually added CC to Ulrich as recipients, since your MUA would conclude that
you don't need to CC yourself :).

> I'm familiar with Reply-to:  Not familar with Mail-Followup-To:
> What's the difference ?

Because Reply-To didn't really work out in practice for mailing lists, DJB came
up with two "non-canon" mail headers to remove ambiguity from the meaning of the
Reply-To header. He describes it in [3]. Not everybody agrees with his
view/solution, though.

Whether you like the headers Bernstein created or not, it would seem Werner
didn't want to be on the recipient list, which is why I brought it up in my PS.

HTH,

Peter.

[1]
[2]
[3]

-- 
I use the GNU Privacy Guard (GnuPG) in combination with Enigmail.
You can send me encrypted mail if you want some privacy.
My key is available at 

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: IDEA License

2013-03-27 Thread Julian H. Stacey 
Peter Lebbing wrote:
> On 27/03/13 12:41, Julian H. Stacey wrote:
> > Thanks Ulrich for your email below, 
> > It didn't make it to gnupg-users@gnupg.org & to
> >  http://lists.gnupg.org/pipermail/gnupg-users/2013-March/date.html#end
> 
> Posts by non-subscribers are moderated (held for approval by a moderator).
> That's why it took (by comparison) so long to make it to the list. It's there
> now, also in the web archive[1].

I replied using my private copy direct from Ulrich, waited for it
to arrive at gnupg web archive, edited wikipedia to point at my
archived copy, then Ulrich's copy to gnupg list arrived on list &
web archive, so I edited wikipedia again to point to his original
rather than my copy.

> Greets,
> 
> Peter.
> 
> PS: By the way, your e-mail client doesn't seem to honor the Mail-Followup-To
> header, because I spotted Werner Koch in the CC list. Just so you know.

I created it, as far as I recall, from my copy direct from Ulrich, 
which had no Mail-Followup-To

Of the last 18 posts to this list, only 2 have header inc. 
Mail-Followup-To:
Both from Werner Koch.
I'm familiar with Reply-to:  Not familar with Mail-Followup-To:
What's the difference ?
Don't know if my EXMH 2.7.2 or newer I'm upgrading to elsewhere might
or not do whatever it is that presumably it should.

Cheers,
Julian
-- 
Julian Stacey, BSD Unix Linux C Sys Eng Consultant, Munich http://berklix.com
 Reply below not above, like a play script.  Indent old text with "> ".
 Send plain text.  No quoted-printable, HTML, base64, multipart/alternative.

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: IDEA License

2013-03-27 Thread Peter Lebbing 
On 27/03/13 12:41, Julian H. Stacey wrote:
> Thanks Ulrich for your email below, 
> It didn't make it to gnupg-users@gnupg.org & to
>  http://lists.gnupg.org/pipermail/gnupg-users/2013-March/date.html#end

Posts by non-subscribers are moderated (held for approval by a moderator).
That's why it took (by comparison) so long to make it to the list. It's there
now, also in the web archive[1].

Greets,

Peter.

PS: By the way, your e-mail client doesn't seem to honor the Mail-Followup-To
header, because I spotted Werner Koch in the CC list. Just so you know.

[1]

-- 
I use the GNU Privacy Guard (GnuPG) in combination with Enigmail.
You can send me encrypted mail if you want some privacy.
My key is available at 

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: IDEA License

2013-03-27 Thread Julian H. Stacey 
Thanks Ulrich for your email below, 
It didn't make it to gnupg-users@gnupg.org & to
 http://lists.gnupg.org/pipermail/gnupg-users/2013-March/date.html#end

so I'm appending it & will point to it from
 
https://en.wikipedia.org/wiki/International_Data_Encryption_Algorithm#Availability

--
> From: Ulrich Mueller  
> Date: Tue, 26 Mar 2013 22:19:37 +0100 
> 
> > On Tue, 26 Mar 2013, Julian H Stacey wrote:
> 
> > OK I added Ulrich M to cc
> > He can add URL to wikipedia of expiry date of Japan IDEA paent
> > if he wants, or I will if he mails it me.
> > A dead patent is a good patent ;-)
> 
> IANAL, TINLA, but the term of patent in Japan seems to be 20 years and
> it was filed in 1991. Concerning the exact date, here's what I had
> written in my message to the FSF, about one year ago:
> 
> | To the best of my knowledge, the IDEA algorithm was covered by the
> | following patents held by Ascom Tech AG, Bern, Switzerland:
> |  - Europe: EP0482154 [1]
> |  - U.S.:   5,214,703 [2]
> |  - Japan:  JP3225440
> | These patents were filed in 1991. All sources (see [3] and [4] and
> | references cited therein) seem to agree that the European and the
> | Japanese patent both have expired on 2011-05-16.
> |
> | About the U.S. patent the situation seems not so clear, as there are
> | several expiry dates mentioned. The PGP FAQ [3] says it has expired on
> | 2010-05-25 whereas Wikipedia [4,5] mentions 2011-05-16 and 2012-01-07.
> | However, none of these dates is later than 2012-01-07. So I think it
> | is safe to assume that the U.S. patent has expired, too.
> |
> | [1] 
> | [2] 
> | [3] 
> | [4] 
> | [5] 
> 
> 
> Ulrich
--

Cheers,
Julian
-- 
Julian Stacey, BSD Unix Linux C Sys Eng Consultant, Munich http://berklix.com
 Reply below not above, like a play script.  Indent old text with "> ".
 Send plain text.  No quoted-printable, HTML, base64, multipart/alternative.

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: IDEA License

2013-03-27 Thread Ulrich Mueller 
> On Tue, 26 Mar 2013, Julian H Stacey wrote:

> OK I added Ulrich M to cc
> He can add URL to wikipedia of expiry date of Japan IDEA paent
> if he wants, or I will if he mails it me.
> A dead patent is a good patent ;-)

IANAL, TINLA, but the term of patent in Japan seems to be 20 years and
it was filed in 1991. Concerning the exact date, here's what I had
written in my message to the FSF, about one year ago:

| To the best of my knowledge, the IDEA algorithm was covered by the
| following patents held by Ascom Tech AG, Bern, Switzerland:
|  - Europe: EP0482154 [1]
|  - U.S.:   5,214,703 [2]
|  - Japan:  JP3225440
| These patents were filed in 1991. All sources (see [3] and [4] and
| references cited therein) seem to agree that the European and the
| Japanese patent both have expired on 2011-05-16.
|
| About the U.S. patent the situation seems not so clear, as there are
| several expiry dates mentioned. The PGP FAQ [3] says it has expired on
| 2010-05-25 whereas Wikipedia [4,5] mentions 2011-05-16 and 2012-01-07.
| However, none of these dates is later than 2012-01-07. So I think it
| is safe to assume that the U.S. patent has expired, too.
|
| [1] 
| [2] 
| [3] 
| [4] 
| [5] 


Ulrich

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users