Re: GnuPG Command line: now in the Play Store!
Johan Wevers: On 09-05-2013 16:28, Hans-Christoph Steiner wrote: This alpha release of our command-line developer tool brings GnuPG to Android for the first time! Nice. But since I don't want Google controling my hardware and spy on it I don't have a Google account. Where can I download the apk installer? We have nightly builds posted by our secure build box here: https://guardianproject.info/builds/GnuPrivacyGuard/ We'll push an official release to our F-droid repo shortly https://guardianproject.info/2012/03/15/our-new-f-droid-app-repository/ ~abel 0xDA731A17.asc Description: application/pgp-keys signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: 2.0.20 beta available
Pete Stephenson: On 5/2/2013 8:06 PM, Abel Luck wrote: Is it planned to support --delete-secret-keys? Do existing versions not support --delete-secret-keys? Oh, it must be not implemented in just 2.1 (git master). I just assumed it wasn't implemented in 2.0 either. I wonder why it was removed from 2.1. ~abel I've been using 2.0.17 and 2.0.19 on both Linux and Windows and have had no issues with --delete-secret-keys. It seems to have worked for me: I moved several secret keys over to smartcards (after making offline, secure backups, of course), deleted the secret keys from the keyring, and gnupg created the appropriate stubs pointing to the smartcard without any issues. Cheers! -Pete ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: 2.0.20 beta available
Is it planned to support --delete-secret-keys? ~abel Werner Koch: Hi, it is now more than a year since we released 2.0.19. Thus it is really time to get 2.0.20 out of the door. If you want to quickly try a beta you may use: ftp://ftp.gnupg.org/gcrypt/alpha/gnupg/gnupg-2.0.20-beta118.tar.bz2 Please send bug reports only to the mailing list. Noteworthy changes in version 2.0.20 (unreleased) - * The hash algorithm is now printed for sig records in key listings. * Decryption using smartcards keys 3072 bit does not work. * New meta option ignore-invalid-option to allow using the same option file by other GnuPG versions. * [gpg] Skip invalid keyblock packets during import to avoid a DoS. * [gpg] Correctly handle ports from DNS SRV records. * [gpg-agent] Avoid tty corruption when killing pinentry. * [scdaemon] Rename option --disable-keypad to --disable-pinpad. * [scdaemon] Better support for CCID readers. Now, the internal CCID driver supports readers without the auto configuration feature. * [scdaemon] Add pinpad input for PC/SC, if your reader has pinpad and it supports variable length PIN input, and you specify --enable-pinpad-varlen option. * [scdaemon] New option --enable-pinpad-varlen. * [scdaemon] Install into libexecdir to avoid accidental execution from the command line. The code also builds for Windows and we plan to do a Gpg4win release soon after 2.0.20. Shalom-Salam, Werner ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Enterprise Key Management?
Jon Molesa: Does anyone have a recommended best practice and accompanying tool for enterprise key management? I'm looking for: - Centralized key management - Master (Company Owned) signing key - Sub-keys issued to employees - Best way to handle revocations - Integration with LDAP/AD if possible - Integration with desktop email clients - Integration with desktop gnupg implementations (Windows, Mac, Linux) I realize this is rather broad, but if anyone has pointers or notes they would be willing to share, I would really appreciate it. I came across this http://www.egpg.org/, though it no longer looks active or maintained. This seems like a better application of S/MIME as it, by design, is centralized in the manner you describe. ~abel ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Enterprise Key Management?
Jon Molesa: I agree. In that case, how exactly would one come about a CA certificate that isn't self-signed and thus trusted by those we wish to communicate with? Buy one of course. Jon Molesa On Mar 16, 2013 7:36 AM, Abel Luck a...@guardianproject.info wrote: Jon Molesa: Does anyone have a recommended best practice and accompanying tool for enterprise key management? I'm looking for: - Centralized key management - Master (Company Owned) signing key - Sub-keys issued to employees - Best way to handle revocations - Integration with LDAP/AD if possible - Integration with desktop email clients - Integration with desktop gnupg implementations (Windows, Mac, Linux) I realize this is rather broad, but if anyone has pointers or notes they would be willing to share, I would really appreciate it. I came across this http://www.egpg.org/, though it no longer looks active or maintained. This seems like a better application of S/MIME as it, by design, is centralized in the manner you describe. ~abel ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users