Re: Build Problems Involving libgpg-error
On Wed, 3 Dec 2014 00:53, tjak...@nyu.edu said: > ./autogen.sh (gave normal output) Okay, you are using some GIT version. Thus expect to run into problems. > asshelp.c:511:33: error: ‘GPG_ERR_FORBIDDEN’ undeclared (first use in This is a new error code which is substituted for older libgpg-errors: /* These error codes are used but not defined in the required libgpg-error version. Define them here. */ #if GPG_ERROR_VERSION_NUMBER < 0x011200 /* 1.18 */ # define GPG_ERR_FORBIDDEN251 #endif No, the git version of libgpg-error already has been set to version 1.18 but I have not yet pushed the changes. I suggest to use a released gpg-error version or go back to the libgpg-error-1.17 tag. You may also wait an hour or so until I have pushed the new error code. > PS: Earlier I tried sending this to gpg-devel but there was an issue The other list is gnupg-devel and not gpg-devel - maybe that was the problem. In general I would suggest to use gnupg-devel for build problems from GIT. Shalom-Salam, Werner -- Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Build Problems Involving libgpg-error
Sorry to bother you all with build problems, but I'm really stumped on this one. Tried to cover as many possibilities as I could before coming here. I'm getting a weird error message trying to build gnupg. I'm on origin/HEAD (the development branch) My system: $ uname -a Linux thomas-VirtualBox 3.16.0-25-generic #33-Ubuntu SMP Tue Nov 4 12:05:25 UTC 2014 i686 i686 i686 GNU/Linux (I'm not aware of any problems unique to building on VirtualBox? Host uname -a is Darwin Thomass-MacBook-Pro-5.local 13.4.0 Darwin Kernel Version 13.4.0: Sun Aug 17 19:50:11 PDT 2014; root:xnu-2422.115.4~1/RELEASE_X86_64 x86_64 if it matters) ran: ./autogen.sh (gave normal output) ./configure --enable-maintainer-mode --sysconfdir=/etc --prefix=/home/thomas/git/OTHERGPG/t_install --with-libgcrypt-prefix=/home/thomas/git/libgcrypt/t_install/ --with-npth-prefix=/home/thomas/git/npth/t_install/ configure gives this output: GnuPG v2.1.1-beta51 has been configured as follows: Revision: e1f515b (57845) Platform: GNU/Linux (i686-pc-linux-gnu) OpenPGP: yes S/MIME:yes Agent: yes Smartcard: yes G13: yes Dirmngr: yes Gpgtar:yes Protect tool: (default) LDAP wrapper: (default) Default agent: (default) Default pinentry: (default) Default scdaemon: (default) Default dirmngr: (default) Dirmngr auto start: yes Readline support:yes LDAP support:yes DNS SRV support: yes TLS support: gnutls configure also says the libraries are OK: configure: checking for libraries checking for gpg-error-config... /usr/local/bin/gpg-error-config checking for GPG Error - version >= 1.16... yes (1.18-beta8) checking for libgcrypt-config... /home/thomas/git/libgcrypt/t_install//bin/libgcrypt-config checking for LIBGCRYPT - version >= 1.6.0... yes (1.7.0-beta128) checking LIBGCRYPT API version... okay checking for libassuan-config... /usr/bin/libassuan-config checking for LIBASSUAN - version >= 2.1.0... yes (2.1.2-unknown) checking LIBASSUAN API version... okay checking for ksba-config... /usr/bin/ksba-config checking for KSBA - version >= 1.2.0... yes (1.3.0) checking KSBA API version... okay checking for usb_bulk_write in -lusb... yes checking for usb_create_match... no checking for library containing dlopen... -ldl checking for encfs... /usr/bin/encfs checking for fusermount... /bin/fusermount checking for openpty in -lutil... yes checking for shred... /usr/bin/shred checking for npth-config... /home/thomas/git/npth/t_install//bin/npth-config checking for NPTH - version >= 0.91... yes (1.2-beta4) checking NPTH API version... okay checking for ntbtls-config... no checking for NTBTLS - version >= 0.1.0... no checking for pkg-config... /usr/bin/pkg-config checking pkg-config is at least version 0.9.0... yes checking for LIBGNUTLS... yes make gives this error: asshelp.c: In function ‘start_new_gpg_agent’: asshelp.c:511:33: error: ‘GPG_ERR_FORBIDDEN’ undeclared (first use in this function) if (gpg_err_code (err) == GPG_ERR_FORBIDDEN ^ asshelp.c:511:33: note: each undeclared identifier is reported only once for each function it appears in Makefile:1402: recipe for target 'libcommon_a-asshelp.o' failed make[3]: *** [libcommon_a-asshelp.o] Error 1 make[3]: Leaving directory '/home/thomas/git/gnupg/common' which makes me think libgpg-error probably didn't get included properly libgpg-error is definitely installed (at least according to aptitude): thomas@thomas-VirtualBox:~$ aptitude search libgpg-error i libgpg-error-dev - library for common error values and mes i libgpg-error0 - library for common error values and mes so I built libgpg-error and tried passing it using --with-libgpg-error-prefix: ./configure --enable-maintainer-mode --sysconfdir=/etc --prefix=/home/thomas/git/OTHERGPG/t_install --with-libgpg-error-prefix=/home/thomas/git/libgpg-error/t_install --with-libgcrypt-prefix=/home/thomas/git/libgcrypt/t_install/ --with-npth-prefix=/home/thomas/git/npth/t_install/ same error. Then saw this bug ticket: http://bugs.gnupg.org/gnupg/issue1561 (title: "configure: --with-libgpg-error-prefix doesn't impact includes") Got the relevant paths with gpg-error-config: thomas@thomas-VirtualBox:~/git/libgpg-error/t_install/bin$ ./gpg-error-config --libs -L/home/thomas/git/libgpg-error/t_install/lib -lgpg-error thomas@thomas-VirtualBox:~/git/libgpg-error/t_install/bin$ ./gpg-error-config --cflags -I/home/thomas/git/libgpg-error/t_install/include but trying CFLAGS="-I/home/thomas/git/libgpg-error/t_install/include" LDFLAGS="-L/home/thomas/git/libgpg-error/t_install/lib" LIBS="-lgpg-error" ./configure --enable-maintainer-mode --sysconfdir=/etc --prefix=/home/thomas/git/OTHERGPG/t_install --with-libgcrypt-prefix=/home/tho
Re: Keysigning
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hi On Tuesday 2 December 2014 at 12:30:11 PM, in , Robin Mathew Rajan wrote: > My key is available on these key servers. When GnuPG searched for the key to verify your signatures, It failed with:- gpg: key 0x7D3A6C5A47CF3842: rejected by import filter But I was able to import it by gpg --recv-keys 0x7D3A6C5A47CF3842 without error. - -- Best regards MFPAmailto:2014-667rhzu3dc-lists-gro...@riseup.net To know what we know, and know what we do not know, is wisdom. -BEGIN PGP SIGNATURE- iPQEAQEKAF4FAlR+T35XFIAALgAgaXNzdWVyLWZwckBub3RhdGlvbnMub3Bl bnBncC5maWZ0aGhvcnNlbWFuLm5ldEJBMjM5QjQ2ODFGMUVGOTUxOEU2QkQ0NjQ0 N0VDQTAzAAoJEKipC46tDG5pSy4D/RytVLaQwYevi3BL0GnkG9n423+Ym7JhSwW5 VInJlohZGSlBV70wDzJbXS5LCI1LJgn7dFmju5f8hMXrfAGU12NL4jelBZdk63l2 XirSnMiSh3CR9mPEgiAR121Uo0O6HrJLwCQU+TqJ8b8X2ihpCrIdGHeMseA5UOYL SErOpgA0iQF8BAEBCgBmBQJUfk9+XxSAAC4AKGlzc3Vlci1mcHJAbm90YXRp b25zLm9wZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXRCM0FFN0VDQTlBOEM4QjMwMjZB NUEwRjU2QjdDNzRDRUIzMUYyNUYwAAoJEGt8dM6zHyXwVE8H/RkAS9g61wZvFUNn 3weloC11++r4tS0rz84WMp7liWXGjR9jTx644ZTbs5SnfwsSkGDc4+wPMY0K70jI 6qWIHBE8X0hTtdMkkij9f9nSTT0s9mxmVIcM3UmSKDlunpCN/HYEBvTYXBz4WkI2 lNd8c5bTDwfzHlRSFwUkrlECl+U1P5yX5PvukszM/HgFse6XkZFAidNLlWVGqjed /nIWlmROuT5d9qb1Ps5nIW0eHIrJlGijdR9ydZcQvfU9bnrDfkO4j4dMDWZM9+Lm CPWFcNZ8EKJfsEBLLKq3ORF9k/8sUVrY+uoMNa1dFhPyDdMuFq7ltberJOLuQejX aPhigVs= =NTRz -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Keysigning
On Tue, Dec 02, 2014 at 10:23:13AM -0700, Aaron Toponce wrote: > Yes. You can get me through Tox. My Tox ID is: > > 76AC69FEB7DA042DFD75F30574CEE3C6498DF9DD766E1D78FC5CB4693CA10BD381F696 Hmm. It seems to have been truncated in the paste. The actual Tox ID is: 30861A76AC69FEB7DA042DFD75F30574CEE3C6498DF9DD766E1D78FC5CB4693CA10BD381F696 -- . o . o . o . . o o . . . o . . . o . o o o . o . o o . . o o o o . o . . o o o o . o o o pgpQMVurpvgBb.pgp Description: PGP signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Keysigning
On Tue, Dec 02, 2014 at 01:57:13PM +0530, Robin Mathew Rajan wrote: > Where can I get my keys signed? Does here anyone provide keysigning services > through video conference? :) Yes. You can get me through Tox. My Tox ID is: 76AC69FEB7DA042DFD75F30574CEE3C6498DF9DD766E1D78FC5CB4693CA10BD381F696 My key signing policy: https://pthree.org/my-pgp-key-signing-policy/ I'm not as militant about key signing as some others in the community. I'll take precautions, but I'll also make an attempt at getting more in the WoT. -- . o . o . o . . o o . . . o . . . o . o o o . o . o o . . o o o o . o . . o o o o . o o o pgp01mi7Zyja5.pgp Description: PGP signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Security patches and gpg 1/2 development
On 02/12/14 17:03, Brian Minton wrote: > On Wed, Nov 26, 2014 at 1:59 PM, Daniel Kahn Gillmor > wrote: > >> https://bugs.g10code.com/gnupg/index >> > I noticed that my browser complained about the certificate of that > URL. Is that the correct address? > > ___ > Gnupg-users mailing list > Gnupg-users@gnupg.org > http://lists.gnupg.org/mailman/listinfo/gnupg-users SHA256 Finger Print: A4:00:9A:76:1E:DA:98:12:36:E8:2F:89:CF:28:8C:E7:A1:BB:17:93:3D:C0:68:D1:A9:82:60:A6:0C:73:2B:39 That is what I have here. I had to add an exemption on this as it is not signed by a CA. But then again, just because it is signed by a CA, does not necessarily make it safer. Hope this helps. Regards, Tristan -- Tristan Santore BSc MBCS TS4523-RIPE Network and Infrastructure Operations InterNexusConnect Mobile +44-78-55069812 tristan.sant...@internexusconnect.net Former Thawte Notary (Please note: Thawte has closed its WoT programme down, and I am therefore no longer able to accredit trust) For Fedora related issues, please email me at: tsant...@fedoraproject.org ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Security patches and gpg 1/2 development
On Wed, Nov 26, 2014 at 1:59 PM, Daniel Kahn Gillmor wrote: > https://bugs.g10code.com/gnupg/index > I noticed that my browser complained about the certificate of that URL. Is that the correct address? ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Keysigning
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hello David :) My key is available on these key servers. http://keyserver.ubuntu.com/pks/lookup?op=vindex&search=mail%40robinmathewrajan.com&fingerprint=on https://pgp.mit.edu/pks/lookup?search=mail%40robinmathewrajan.com&op=vindex&fingerprint=on Regards, Robin Mathew Rajan On 02-12-2014 PM 05:35, da...@gbenet.com wrote: > On 02/12/14 10:53, Robin Mathew Rajan wrote: >> Hello David, :) >> >> I already uploaded my public key to a public key server some months ago. But >> there's no local Linux users group where I live! I sent emails to some >> people listed at biglumber.com with my Government issued ID card attached. >> But no reply came from them. :( Some of them are CACert Assurers! >> >> If someone could sign my key over video conferencing, that would be very >> much helpful to me. Yes, I know it's much less trusted than actual >> person-person meetups in real world. But at the same time, it offers an easy >> solution for someone living in a very remote area. And it's also >> particularly helpful if he/she can't afford travel expenses to get keys >> signed. I think it's just like performance vs. security in cryptography. >> Signing someone's key through video conferencing is less secure but at the >> same time it's an effective solution for remote areas. I think key signing >> through video conferencing, might help in reducing 'crypto divide' (like >> that in 'digital divide'). :) >> >> Regards, >> Robin Mathew Rajan >> https://www.robinmathewrajan.com/ >> >> >> On 02-12-2014 PM 03:05, da...@gbenet.com wrote: >>> On 02/12/14 08:27, Robin Mathew Rajan wrote: Hello, Where can I get my keys signed? Does here anyone provide keysigning services through video conference? :) Thanks and regards, Robin Mathew Rajan ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users >>> Hello Robin, >> >>> The first thing you need to do is upload your public key to a key server. >>> Perhaps you can >>> find people where you live - a local Windows group or Linux group they >>> would be happy to >>> sign your key. >> >>> Video conferencing? You need to produce some documentation of who you are - >>> some here may >>> feel that video conferencing is not a good idea. But first get your public >>> key to a key server. >> >>> David >> >> >> >>> ___ >>> Gnupg-users mailing list >>> Gnupg-users@gnupg.org >>> http://lists.gnupg.org/mailman/listinfo/gnupg-users >> >> > Hello Robin, > > I tried to download your public key from several servers - without any luck. > As your using > Thunderbird you can always attach your public key. > > As for key signing - then face to face communications are better. I've asked > myself "what is > the importance of people signing my keys?" There is no valid reason as far as > I can see - > though people like to build the web of trust - and for the most part - people > on here are > who they say they are - and over the years you get to build up trust. Though > having said > that I'm not about to rush out and sign every one's keys. > > Why not start your own group? There are lots of Linux groups around the world > - unless your > stuck in the middle of nowhere! Perhaps you can provide a link to where you > uploaded your > public key? > > David > -BEGIN PGP SIGNATURE- Version: GnuPG v2 iQIcBAEBCgAGBQJUfbDTAAoJEJyRZAJNoXmunbYP/2dXXPhu6rzQB1tKQqTPXoqa XDBx9UTGVIMsI1A7ic4wJao5aD9+PgvRL7Iunqo4exGOab0uBDBZle7/pNqE3wEe 1npOpVJhUd9hXQa1HLPQdaDlBu8ap7DiGrtNgR4g4kFukzJilvtdps4Pmvd+hc/f ciMf1wMszynQ5sTcmJ4U7lNLlwSlClk1poWSAsg9Q1dU97aSUE54r8m9qGBwfMP3 T5UB8A68iokiij0+IJIFYEvmqFFUsdG8dYtDehqJl0tX/hd64YV/5qbz7K97XiPC 5vhlFphBpSFNjl3iuXNdljr8UoIdTgSYolzbF4SH8fnx9f4jBFBTgO3mpenlJUP9 lwOCV1Gcmn3HfDRV7aW1QvTExdyw9tcJQhUSOppuDivUFePpirXZugRqDNPsN8t0 bhTR/wTBIV/3InCu8JktbwBCa+h1dVMY5rEvlSnp8AXc8sQLg3htapCITng5sEpj 2re1v5YHNiIWqWPIKE3yoj2oAcx2jX53Vg+s3dIaoyIwCDn+muITQ26b0PlDdKnL cfoqmAJGhG6jsnI/UyfIHbjYIlRb8esCsoaTG2WRfww3N3YbWLUNu/M3P70h9cTD OmsbHDCLUWKjEkzUdHwohvtapFTmSprrLrZZYzHO9DYKV22czNyWwb/IRNCYmJ/Y uQoOh0ymQpwiAjbu0VJs =Tx23 -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Keysigning
On 02/12/14 10:53, Robin Mathew Rajan wrote: > Hello David, :) > > I already uploaded my public key to a public key server some months ago. But > there's no local Linux users group where I live! I sent emails to some people > listed at biglumber.com with my Government issued ID card attached. But no > reply came from them. :( Some of them are CACert Assurers! > > If someone could sign my key over video conferencing, that would be very much > helpful to me. Yes, I know it's much less trusted than actual person-person > meetups in real world. But at the same time, it offers an easy solution for > someone living in a very remote area. And it's also particularly helpful if > he/she can't afford travel expenses to get keys signed. I think it's just > like performance vs. security in cryptography. Signing someone's key through > video conferencing is less secure but at the same time it's an effective > solution for remote areas. I think key signing through video conferencing, > might help in reducing 'crypto divide' (like that in 'digital divide'). :) > > Regards, > Robin Mathew Rajan > https://www.robinmathewrajan.com/ > > > On 02-12-2014 PM 03:05, da...@gbenet.com wrote: >> On 02/12/14 08:27, Robin Mathew Rajan wrote: >>> Hello, >>> >>> Where can I get my keys signed? Does here anyone provide keysigning >>> services through video conference? :) >>> >>> Thanks and regards, >>> Robin Mathew Rajan >>> >>> ___ >>> Gnupg-users mailing list >>> Gnupg-users@gnupg.org >>> http://lists.gnupg.org/mailman/listinfo/gnupg-users >>> >> Hello Robin, > >> The first thing you need to do is upload your public key to a key server. >> Perhaps you can >> find people where you live - a local Windows group or Linux group they would >> be happy to >> sign your key. > >> Video conferencing? You need to produce some documentation of who you are - >> some here may >> feel that video conferencing is not a good idea. But first get your public >> key to a key server. > >> David > > > >> ___ >> Gnupg-users mailing list >> Gnupg-users@gnupg.org >> http://lists.gnupg.org/mailman/listinfo/gnupg-users > > Hello Robin, I tried to download your public key from several servers - without any luck. As your using Thunderbird you can always attach your public key. As for key signing - then face to face communications are better. I've asked myself "what is the importance of people signing my keys?" There is no valid reason as far as I can see - though people like to build the web of trust - and for the most part - people on here are who they say they are - and over the years you get to build up trust. Though having said that I'm not about to rush out and sign every one's keys. Why not start your own group? There are lots of Linux groups around the world - unless your stuck in the middle of nowhere! Perhaps you can provide a link to where you uploaded your public key? David -- “See the sanity of the man! No gods, no angels, no demons, no body. Nothing of the kind.Stern, sane,every brain-cell perfect and complete even at the moment of death. No delusion.” https://linuxcounter.net/user/512854.html - http://gbenet.com signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Sign key and export for each UID
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hello Tobi, :) This shell script might help you. (Semi)automatic GnuPG keysigning for busy people. Sign GPG keys, upload signatures to keyservers, and mail signed keys to their owner, including support for multiple private keys to sign with. All that’s left to do is verify fingerprints, type your password, and answer any questions asked by GPG. http://mirror.roe.ch/rel/scripts/gpg/gpg-sign-keys.sh-25 It requires mktemp and an MSA like mutt or mailx. Usage options Usage: gpg-sign-keys.sh [options...] [-u keyids] [-f keyring] [keyids...] Options: -f file Get list of keyids to sign from keyring file -u ids Key(s) to sign with, multiple -u id1 -u id2 or -u 'id1 id2' -x ids eXceptions - don't process these keys (multiple like -u) -c addr CC all signed key emails to address -b addr BCC all signed key emails to address -a file Append content of file to e-mail message -n name Override your name normally obtained from /etc/passwd -y Assume yes on most questions (-Y for no questions asked at all) -I Don't import the -f keyring into the default keyring first -S Don't sign any keys - just do the sending/mailing -K Don't send signed keys to your default keyserver -M Don't mail signed keys to key owners -E Don't encrypt mails with owners key -U Don't update the trustdb after processing all keys -v/-hDisplay version/help and exit The script will guide you through signing all keys in the -f keyring, or just the keys explicitly specified. All GnuPG operations are done in your default keyring. You will be asked to confirm every mail being sent unless -y is used. The -u, -c, -b, -e and -n options override the env vars MYKEY, CC, BCC and OWNER respectively. For more details, read the source. Other general info can be found at: https://www.roe.ch/GPG Regards, Robin Mathew Rajan https://www.robinmathewrajan.com/ On 02-12-2014 PM 02:05, Tobias Mueller wrote: > Hi. > > I'm digging up this thread because it asked the same question I have, > but it hasn't really been answered: > > On Tue, Sep 17, 2013 at 06:23:35AM +, atair wrote: >> Is there a way to achieve the same signatures from gpg command line? >> For example >> $ gpg -a --export >> exports the complete key and not just the signature. However, I >> understand the gpg-man pages in a way that it's possible to do a >> $ gpg -u --edit-key >>> sign >>> sign >>> ... >>> q > > What are the best practises for signing another person's key (i.e. all the > UIDs > on a key)? > > And how do you follow those using gnupg? And is there a batch mode to > automate that process? > > Cheers, > Tobi > > ___ > Gnupg-users mailing list > Gnupg-users@gnupg.org > http://lists.gnupg.org/mailman/listinfo/gnupg-users > -BEGIN PGP SIGNATURE- Version: GnuPG v2 iQIcBAEBCgAGBQJUfaPiAAoJEJyRZAJNoXmuZ2oQAKHx7WmFHvBcANw2vrx5lIp4 c/KwLFyHyC0y3sbmh2WdWwuKo7ygFYZp9yHvs63B0PybV4rE5xAjMrMQLBEpbKg2 f+jjUotN+LzKTNyuTe5JHd/7Nz+dS/kGidMhhNNMPzt4UDhmzuW5Cob7T3YLvA2d kp55j3zgLqTQgaOSzHwsVgtlqbq5SAXnZCecEqXp6k6ushtYRTuar7l4bGEVNI+4 BZzQtOy8fWXSWnJjDHl8MQbWEDy/GUSSbpfEXxk1y3y4myAU5KxTHagqyRHVJKJK wMSsjRVlE2Jt8h1EZNvoulMHIZklROySc4njVv8FV9tT7m6jFdunMQ/Tb6n0sF8e KKa+EM0VVG/84YOaYqn6ZgOtKt9rmeO7VL/E3pCSb1qDwptKagpz5tiwQFmJPukz p/qNYZGje/PCSghzSMvfEhtIW1tSbNOfC6rB9J776+liadz8AljjVDEndCTnPvxA C2rKSvFq604G1Za2ZbBDjRu0SA+IyUhJu9XFyrcEkCvNvMpR/lZVmffPohW+ByYU yQot4wETT8qppTQ9t8TQFeq7rkEyoB0eOcRn7RirXG8dMDGZQUBVDJ5SSsNaj759 sIdqcJvuPxGdpgOl85BAhdlztXT1PNk7dqC8RXConLDx+u2Zyp8iT1iMg1adMToZ 8NeeFJD/eHJ9EOYUW1bQ =07it -END PGP SIGNATURE- #!/usr/bin/env bash # gpg-sign-keys.sh - (semi)automatic GnuPG keysigning for busy people # http://www.roe.ch/GPG # # Copyright (C) 2003-2008, Daniel Roethlisberger # All rights reserved. # # Redistribution and use, with or without modification, are permitted # provided that the following conditions are met: # 1. Redistributions must retain the above copyright notice, this list of #conditions and the following disclaimer. # 2. The name of the author may not be used to endorse or promote products #derived from this software without specific prior written permission. # # THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR # IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES # OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. # IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, # INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT # NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, # DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY # THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT # (INCLUDING NEGLIGENCE
Re: Keysigning
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hello David, :) I already uploaded my public key to a public key server some months ago. But there's no local Linux users group where I live! I sent emails to some people listed at biglumber.com with my Government issued ID card attached. But no reply came from them. :( Some of them are CACert Assurers! If someone could sign my key over video conferencing, that would be very much helpful to me. Yes, I know it's much less trusted than actual person-person meetups in real world. But at the same time, it offers an easy solution for someone living in a very remote area. And it's also particularly helpful if he/she can't afford travel expenses to get keys signed. I think it's just like performance vs. security in cryptography. Signing someone's key through video conferencing is less secure but at the same time it's an effective solution for remote areas. I think key signing through video conferencing, might help in reducing 'crypto divide' (like that in 'digital divide'). :) Regards, Robin Mathew Rajan https://www.robinmathewrajan.com/ On 02-12-2014 PM 03:05, da...@gbenet.com wrote: > On 02/12/14 08:27, Robin Mathew Rajan wrote: >> Hello, >> >> Where can I get my keys signed? Does here anyone provide keysigning services >> through video conference? :) >> >> Thanks and regards, >> Robin Mathew Rajan >> >> ___ >> Gnupg-users mailing list >> Gnupg-users@gnupg.org >> http://lists.gnupg.org/mailman/listinfo/gnupg-users >> > Hello Robin, > > The first thing you need to do is upload your public key to a key server. > Perhaps you can > find people where you live - a local Windows group or Linux group they would > be happy to > sign your key. > > Video conferencing? You need to produce some documentation of who you are - > some here may > feel that video conferencing is not a good idea. But first get your public > key to a key server. > > David > > > > ___ > Gnupg-users mailing list > Gnupg-users@gnupg.org > http://lists.gnupg.org/mailman/listinfo/gnupg-users > -BEGIN PGP SIGNATURE- Version: GnuPG v2 iQIcBAEBCgAGBQJUfZotAAoJEJyRZAJNoXmukWsP/2rQjUt+xbHanjDsThu49V8Q 0fXDVSPyHsF88fkViF/bU7nibfdbijhUuSMxMx6GvFnn/jC6qQjqkSgq9fSD2Bc0 ahDdioHEW3tACxkjZHXyJbn3Z47A2mP2GyRQVQwwQus0PcDxN8BzL/R41sRmPcBg n7djwiQAJzqbs4+Q73zs+X4x3Fji2Q7PcqsOR9YJLi7OJ2Aeq7UmYtMYDPrMsmj4 asIoPyP7xD1shvjvFw9ibs6i+wFGfvmxIIlm2z7EDAGjq+F6apKnvHbTOIDapfyF JQTchjTTwrmxz9e0cdy3Gjz8EkZxlwqN0BPt+bvVkO/ezyoVeeKryDQrA6g9xUMP 3aed9rrXgDQCy4efIvim7dLvnn0b1rVykh149hKCu76ZP5skRVqc1DmE2NwXAqD6 dcOpPoiysaFdDSzmqebkfLx1mujr7pmNW16L1Nq04Vu8LQuHOg8r15xtyjlO+peh rW75psPkZj3t51kCLvWFwoYUefHMG8pJeQ/BAoUvQNoQx2Vz5Hvz7DNwnOqExKB/ vjJf+M/ulF3cpz3nHw4A7NamnaFSE4qpFwrlGgc1iXGF8mhSzcVPn1DS13Uv3CTE 08WPrIwhLYxzJbcw2yCb0rPNpCoEcseOBTOlilVdrhDvObQfQVUv7vhxULDKVb4S hs4DYFS7eUhQTSnRwH5Z =BVQa -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Sign key and export for each UID
Hi. I'm digging up this thread because it asked the same question I have, but it hasn't really been answered: On Tue, Sep 17, 2013 at 06:23:35AM +, atair wrote: > Is there a way to achieve the same signatures from gpg command line? > For example > $ gpg -a --export > exports the complete key and not just the signature. However, I > understand the gpg-man pages in a way that it's possible to do a > $ gpg -u --edit-key > > sign > > sign > > ... > > q What are the best practises for signing another person's key (i.e. all the UIDs on a key)? And how do you follow those using gnupg? And is there a batch mode to automate that process? Cheers, Tobi ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Keysigning
On 02/12/14 08:27, Robin Mathew Rajan wrote: > Hello, > > Where can I get my keys signed? Does here anyone provide keysigning services > through video conference? :) > > Thanks and regards, > Robin Mathew Rajan > > ___ > Gnupg-users mailing list > Gnupg-users@gnupg.org > http://lists.gnupg.org/mailman/listinfo/gnupg-users > Hello Robin, The first thing you need to do is upload your public key to a key server. Perhaps you can find people where you live - a local Windows group or Linux group they would be happy to sign your key. Video conferencing? You need to produce some documentation of who you are - some here may feel that video conferencing is not a good idea. But first get your public key to a key server. David -- “See the sanity of the man! No gods, no angels, no demons, no body. Nothing of the kind.Stern, sane,every brain-cell perfect and complete even at the moment of death. No delusion.” https://linuxcounter.net/user/512854.html - http://gbenet.com signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Keysigning
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hello, Where can I get my keys signed? Does here anyone provide keysigning services through video conference? :) Thanks and regards, Robin Mathew Rajan -BEGIN PGP SIGNATURE- Version: GnuPG v2 iQIcBAEBCgAGBQJUfXfhAAoJEJyRZAJNoXmuFecP/0UMzGfQr+uM0XL+oxz93n7D Sv7gEWAR99ES2wxeOaNL+zCl170UjJUY1LGaWmSLX9XewU8ER3v7IZ2VAXVco82j zMM608XUAs/li7J4NMD1WwpGyppRxcSbc1WNrCFGJm+gUsixRBlfIZppWWeJyjRS 7Jp/5pDmNflAZL0ZYiTNh7gA6H4PD4wxIC66llRxZOf4klKaNBBPpDps4ykzY5ov A9Lk4uC9MsLpA/j0uEdkhdPLAgtlf9hEqsrDSyOBWNEoqTadCvcT+PBdSgEt2hBQ Xaagava8NrYyQo7dvwniZGudZJscBqdELA2Dr27iF5XtulR/NUH7vAMsmJsMtJWn 0unzilj1BQyL4N1zrL3C/xejPdATZ+AJ5hdj/bWLI0oK4Ia13X7TjwO4Y71bfGHh GnLdX+fNWkNAaGeTbNTDzuVv3nzBFb4PlvATNJOimsPlgC2TIFLntxE3V2/upvz/ Vbfz5rpPcM4Y5KemB2SYMAmXMYcRPu9m8W/2Yo7PD1tOA73FqYRw3DGSzJ5eK3b6 mY5TFDZhvFZIWCxAZlXbbevdFIoTY5i5WguknVAnI/ux1utDc/ROBHtWzgTBTWLK uAgRhbp98DUUnaYq+S3ApiwCp/+cde5v+M5Lp/G9IuNe86BLWQ7LZCVRolgHfE4l dbgWNDUuEx3IdHptAMGN =lFrn -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users