Re: GnuPG 2.1: --auto-key-locate dane

2015-11-26 Thread Daniel Baur 
Hello,
Am 26.11.2015 um 16:00 schrieb Felix Seip:
> Clearly I am doing something wrong and was wondering if someone could
> help me with this problem.

Hello,
Am 26.11.2015 um 16:00 schrieb Felix Seip:
> Clearly I am doing something wrong and was wondering if someone could
> help me with this problem.

dig type61
1ed6d5e274e32624065e36218dd952070defca5ad2618ec8d64511c6._openpgpkey.gmx.de

returns no key. So AFAIS the error is not at you or gpg, but at gmx.

The OpenPGPKey-DNS-entry for my mail-adress works, if you like to test gpg.

Sincerely,
DaB.




signature.asc
Description: OpenPGP digital signature
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

GnuPG 2.1: --auto-key-locate dane

2015-11-26 Thread Felix Seip 
Hi,

The past week I have been trying to figure out how to receive a public key from 
a DNS domain through GnuPG 2.1.9. The way I have been attempting to do this is 
by executing:
gpg --auto-key-locate dane -ea -r felixs...@gmx.de

However, every time I get the following error message:
gpg: error retrieving 'felixs...@gmx.de' via PKA: Unknown IPC command
gpg: felixs...@gmx.de: skipped: Unknown IPC command
gpg: [stdin]: encryption failed: Unknown IPC command

Clearly I am doing something wrong and was wondering if someone could help me 
with this problem.

Thank you in advance,
Felix Seip

Verschlüsseln Sie Ihre E-Mails mit gpg4o für Outlook | Encrypt your email with 
gpg4o
---
Felix Seip
Auszubildender

[cid:image001.jpg@01D12862.B4B67EE0]Giegerich & Partner GmbH
Robert-Bosch-Straße 18 | D-63303 Dreieich
Tel. +49 6103 5881-54 | Fax +49 6103 5881-39
felix.s...@giepa.de | 
http://www.giepa.de

Geschäftsführer: Dipl.-Ing. (TU) Hans-Joachim Giegerich
Amtsgericht Offenbach/Main | HRB 33236
---

[cid:image002.jpg@01D12862.B4B67EE0]
---

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Insecure memory message on PC-BSD

2015-11-26 Thread Anthony Papillion 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Hey Everyone,

I'm using PC-BSD 10.2 and I get the message "using insecure memory!"
when I type gpg2 at the terminal. Is this a major issue or is it
something I can (usually) ignore? Is there a way to use "secure" memory?

Thanks,
Anthony

- -- 
Phone:  1.845.666.1114
Skype:  cajuntechie
PGP Key:0x028ADF7453B04B15
Fingerprint:C5CE E687 DDC2 D12B 9063  56EA 028A DF74 53B0 4B15

-BEGIN PGP SIGNATURE-
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=NdzN
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: GnuPG 2.1: --auto-key-locate dane

2015-11-26 Thread Werner Koch 
On Thu, 26 Nov 2015 23:00, m...@dabpunkt.eu said:

> returns no key. So AFAIS the error is not at you or gpg, but at gmx.
>
> The OpenPGPKey-DNS-entry for my mail-adress works, if you like to test gpg.

Not for me:

  $ gpg --auto-key-locate clear,pka,dane,local -v --locate-key m...@dabpunkt.ue
  [...]
  gpg: error retrieving 'm...@dabpunkt.ue' via PKA: Not found
  gpg: error retrieving 'm...@dabpunkt.ue' via DANE: Not found
  gpg: can't handle public key algorithm 105
  gpg: error retrieving 'm...@dabpunkt.ue' via Local: No public key
  gpg: key "m...@dabpunkt.ue" not found: No public key
  
This is the current version but there are no changes related to DANE
since 2.1.9.  I redacted your address in the above transscript (eu->ue).
A likely reason for the problem is a change of the algorithm from
SHA-224 to a truncated SHA-256 in one of the last OpenPGP drafts.

Use "gpg --print-dane-records -k m...@dabpunkt.ue" to output a suitbale
DANE record.

Here is a working example:

  $ gpg --auto-key-locate clear,dane,local -v --locate-key w...@gnupg.org
  [...]
  gpg: pub  dsa2048/F2AD85AC1E42B367 2007-12-31  Werner Koch 
  gpg: key F2AD85AC1E42B367: "Werner Koch " not changed
  gpg: Total number processed: 1
  gpg:  unchanged: 1
  gpg: auto-key-locate found fingerprint 
80615870F5BAD690333686D0F2AD85AC1E42B367
  gpg: automatically retrieved 'w...@gnupg.org' via DANE
  [...]

Note that using --locate-key is better because it uses the same strategy
as used by -r.  In the second example I left out PKA because I also have
a PKA entry for my address. By using "clear" I override defaults set in
gpg.conf and "local" instructs gpg to check the local keyring after
"dane".  Another address for testing is my g10code address.



Salam-Shalom,

   Werner

-- 
Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

AW: GnuPG 2.1: --auto-key-locate dane

2015-11-26 Thread Felix Seip 
Thank you for your responses!
I was receiving the unknown IPC command because I had the GnuPG 2.0 agent and 
the GnuPG 2.1.9 agent running at the same time

Best Regards,
Felix Seip

-Ursprüngliche Nachricht-
Von: Gnupg-users [mailto:gnupg-users-boun...@gnupg.org] Im Auftrag von Werner 
Koch
Gesendet: Freitag, 27. November 2015 07:58
An: Daniel Baur 
Cc: gnupg-users@gnupg.org
Betreff: Re: GnuPG 2.1: --auto-key-locate dane

On Thu, 26 Nov 2015 23:00, m...@dabpunkt.eu said:

> returns no key. So AFAIS the error is not at you or gpg, but at gmx.
>
> The OpenPGPKey-DNS-entry for my mail-adress works, if you like to test gpg.

Not for me:

  $ gpg --auto-key-locate clear,pka,dane,local -v --locate-key m...@dabpunkt.ue
  [...]
  gpg: error retrieving 'm...@dabpunkt.ue' via PKA: Not found
  gpg: error retrieving 'm...@dabpunkt.ue' via DANE: Not found
  gpg: can't handle public key algorithm 105
  gpg: error retrieving 'm...@dabpunkt.ue' via Local: No public key
  gpg: key "m...@dabpunkt.ue" not found: No public key
  
This is the current version but there are no changes related to DANE
since 2.1.9.  I redacted your address in the above transscript (eu->ue).
A likely reason for the problem is a change of the algorithm from
SHA-224 to a truncated SHA-256 in one of the last OpenPGP drafts.

Use "gpg --print-dane-records -k m...@dabpunkt.ue" to output a suitbale
DANE record.

Here is a working example:

  $ gpg --auto-key-locate clear,dane,local -v --locate-key w...@gnupg.org
  [...]
  gpg: pub  dsa2048/F2AD85AC1E42B367 2007-12-31  Werner Koch 
  gpg: key F2AD85AC1E42B367: "Werner Koch " not changed
  gpg: Total number processed: 1
  gpg:  unchanged: 1
  gpg: auto-key-locate found fingerprint 
80615870F5BAD690333686D0F2AD85AC1E42B367
  gpg: automatically retrieved 'w...@gnupg.org' via DANE
  [...]

Note that using --locate-key is better because it uses the same strategy
as used by -r.  In the second example I left out PKA because I also have
a PKA entry for my address. By using "clear" I override defaults set in
gpg.conf and "local" instructs gpg to check the local keyring after
"dane".  Another address for testing is my g10code address.



Salam-Shalom,

   Werner

-- 
Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users



___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users