Re: How to 'un-sign' a key?

[Andrew Berg]

John W. Moore III wrote:
> Joel C. Salomon wrote:
> > Folks,
>
> > I foolishly signed a key I had not verified well, and the signed version
> > is on a keyserver.  How can I unsign it?
>
> Select the Key with the offending Signature and revoke the Signature.
>
> the command is --revsig form the Edit Key prompt.
>
> Promptly disseminate the Key with the Sig Revoked via Key Servers and
> perhaps a direct email to all correspondents.  The 'trick' will be to
> get the Key Owner to re-Import His Key with the [revoked] flag on Your
> Sig.  :-\
I feel silly. I was thinking of something else for some reason and I
read the message too quickly. :-P

-- 
Key ID: 0xF88E034060A78FCB
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6  07FD F88E 0340 60A7 8FCB
Windows NT 6.0.6001.18226 | GPG 1.4.9 | Thunderbird 2.0.0.21 | Enigmail
0.95.7


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: How to 'un-sign' a key?

[Andrew Berg]

Joel C. Salomon wrote:
> I foolishly signed a key I had not verified well, and the signed version
> is on a keyserver.  How can I unsign it?
>   
Go back in time.

Seriously, there's nothing you can do about it once it's on a keyserver.

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: What do if forgot password?

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
don rhummy wrote:

> What does GPG have to recover my data if i forgot my password?
Well, it won't stop you from trying to brute-force guess your password
until you get it right. Of course, depending on what you do remember
about your passphrase, how long it is, how strong it is, and what
tools you use, it could take anywhere from a few minutes to a few
millenia. Other than that, nothing. There are no back doors, no type
of "magic" to get your data back to its original form, nothing. Would
you really want to use a program that would allow for such
capabilities, though? After all, no software is going to be perfect
and definitively know who wants to recover that data.

gerry_lowry (alliston ontario canada) wrote:
> http://sixdemonbag.org/cryptofaq.xhtml#agencies does not like my IE7.
The feeling is mutual. Microsoft doesn't feel it's necessary to follow
web standards, likely because they want to impose their own
proprietary standards. Thankfully, they have not had much success (we
have the late Netscape to thank for this).

Robert J. Hansen wrote:
> I try not to join ... IE-bashing ...
More torches and pitchforks for the rest of us, then.

- --
Key ID: 0xF88E034060A78FCB
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6  07FD F88E 0340 60A7 8FCB
Windows NT 6.0.6001.18145 | GPG 1.4.9 | Thunderbird 2.0.0.17 |
Enigmail 0.95.7
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEcBAEBAwAGBQJJjwy0AAoJEPiOA0Bgp4/LxPsIANgT111x/xJFfiKBX53f2yOC
d/yTq3Pn7QZX7YtoVDXTdHGZQFPqz46QJimz0AQewmjsm0yGFaUE6Oo3WDOBI003
eMRIdejw5teS6HdLYNx3PH//KKJxuirmecI5xGCbBKYLrkB/teOu4TIyhRbkrtdU
UToCpUzNppIt7Qa7p6l9uKduokj3O3eYK+VKq135Q2UGkadlmkdf+HjopWQJhONz
QPxIrUR3Iq0A6ZF2SC+HZnVRk9XowWYqBxwwxP59FSymut75XAwQj7UXvhmhzsdx
uZPmp86yqfP7FnAE8LLrbpLPcyC092PWvHsLRW9kTawH2kqGPT3W4X7F2pSZf/0=
=5wjv
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: set type digest mode? plus other query

[Andrew Berg]

Robert J. Hansen wrote:
> Andrew Berg wrote:
> > 6.5.8 seems popular. Any idea why?
>
> It was the last version of PGP to be released freeware for UNIX.
Ah.
> PGP 6.5.8, like PGP 2.6, is "good enough for most people and purposes."
>  Which means that no matter how much we want to get rid of them, they
> simply won't go away.
>   
Isn't 2.6 over 10 years old? Is it even compatible with the Windows NT
kernel?

-- 
Key ID: 0xF88E034060A78FCB
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6  07FD F88E 0340 60A7 8FCB
Windows NT 6.0.6001.18145 | GPG 1.4.9 | Thunderbird 2.0.0.17 | Enigmail 0.95.7


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: set type digest mode? plus other query

[Andrew Berg]

Robert J. Hansen wrote:
> A: Depends on who you correspond with.  There are still a lot of PGP 6
> installs out there.
6.5.8 seems popular. Any idea why?

-- 
Key ID: 0xF88E034060A78FCB
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6  07FD F88E 0340 60A7 8FCB
Windows NT 6.0.6001.18145 | GPG 1.4.9 | Thunderbird 2.0.0.17 | Enigmail 0.95.7


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Testing a build

[Andrew Berg]

Werner Koch wrote:
> It just happens that I use Debian and that you can simply do an "apt-get
> install mingw32".  But there is no reasons why you can't build that
> chain from any other platform.
Unfortunately, I am unable to run anything but Windows right now (the
reason is way off topic) unless I use my PS3, but that uses a PPC64
architecture, and I don't know how to set up a cross-compiler.

If someone knows how to get Linux (I'm open to similar OSes as well) set
up over RAID 0, I'd appreciate some help (off-list of course).
-- 
Key ID: 0xF88E034060A78FCB
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6  07FD F88E 0340 60A7 8FCB
Windows NT 6.0.6001.18063 | GPG 1.4.9 | Thunderbird 2.0.0.17 | Enigmail
0.95.7


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Testing a build

[Andrew Berg]

Initial testing (I encrypted a few files symmetrically using 3DES) shows
that Werner's generic build is actually faster. Werner, which version of
gcc do you use (or do you use something else?)?

I used gcc 3.4.5 (anything higher for Windows is in alpha or
experimental AFAIK). Correct me if I'm wrong, but I assume you
cross-compile and use Linux when building GPG for Windows.
-- 
Key ID: 0xF88E034060A78FCB
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6  07FD F88E 0340 60A7 8FCB
Windows NT 6.0.6001.18063 | GPG 1.4.9 | Thunderbird 2.0.0.17 | Enigmail
0.95.7

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Testing a build

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160

How would one go about making sure everything works? I built GPG for
Windows following the instructions at
http://clbianco.altervista.org/gnupg/eng/gnupg.html (a link at
gnupg.org/download.html). Unfortunately, I cannot find the libcurl
package mentioned. It says the package is labeled "libcurl" and not
"binary", yet it says there are .dll files in it. I seem to be missing
libintl3.dll (IIRC), which causes dd not to start during configuration,
but I am still able to build GPG (it runs). I did not bother with
libiconv. I've replaced the official binaries with my own (keeping a
backup, of course), and Enigmail seems to be fine, I am signing this
with my binaries. I also changed CFLAGS from
CFLAGS='-O3 -mtune=i386 -march=i386 -mfpmath=387 -mno-mmx -mno-sse
- -mno-3dnow -mno-sse2'
to
CFLAGS='-O3 -mtune=prescott -march=prescott -mfpmath=sse -mmmx -msse
- -msse2 -msse3 -mno-3dnow'
since my processor supports SSE3.
I have three questions:
How can I make sure everything is working right?
(A bit OT) Will the instruction set change cause any noticeable improvement?
(Also a bit OT) If it's supposed to, how can I make sure it is?
- --
Key ID: 0xF88E034060A78FCB
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6  07FD F88E 0340 60A7 8FCB
Windows NT 6.0.6001.18063 | GPG 1.4.9 | Thunderbird 2.0.0.17 | Enigmail
0.95.7
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEcBAEBAwAGBQJI6q/GAAoJEPiOA0Bgp4/Lix4H/jwwTqBsrwgzlsS6wdESE86b
SGuN2C3FKvDddppAnI2lAODFb/oLeImWiFuNorX+lbQ+VTaGn1H/fDD0Sdy9toy+
A+834hQeVE5mqW+sK9uxPISg0uEVTk5eG4t3cruGdKwl8zjXh5j8NlXZmkbAiq+R
omqpjlo71Tr8Gy4lGnFA7K0Pt/kFlgDqQfX2IcKZqd0giSr5O7WtzTCv9YnzKogS
z4CoR/ZEBUz65nuJ5i3lQ9FZBcCHYt+5biMyMEVhz7K4rvBVejmLwZl6KOhfnvQb
qeIKTOn/NMtt5fwE1K9kLFvROacAJxQc0LTNHUNG8Kr5CVvwfdbIBaMoxwpWkds=
=nNuv
-END PGP SIGNATURE-

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Installation gnupg on Windows

[Andrew Berg]

> The point of %path% is to search /directories/. A file is out of context
> and meaningless here.
Thought I added this:
Use the GPG directory, and not the GPG executable itself.
-- 
Key ID: 0xF88E034060A78FCB
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6  07FD F88E 0340 60A7 8FCB
Windows NT 6.0.6001.18063 | GPG 1.4.9 | Thunderbird 2.0.0.16 | Enigmail
0.95.7

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Installation gnupg on Windows

[Andrew Berg]

Faramir wrote:
>   My PATH variable has the following values:
> %SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;"c:\archivos
> de programa\gnu\gnupg\gpg.exe"
The point of %path% is to search /directories/. A file is out of context
and meaningless here.
-- 
Key ID: 0xF88E034060A78FCB
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6  07FD F88E 0340 60A7 8FCB
Windows NT 6.0.6001.18063 | GPG 1.4.9 | Thunderbird 2.0.0.16 | Enigmail
0.95.7

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Installation gnupg on Windows

[Andrew Berg]

Werner Koch wrote:
> I do not think that this is a too good idea.  Newer version of GnuPG (in
> particular Gpg4win) add a whole bunch of DLLs and other binaries to this
> directory.  Thus they would all be public and wrong DLLs might get used
> by other applications.
I installed the regular package (gnupg-w32cli-1.4.9.exe), and the only
library in the directory is iconv.dll. Without Gpg4win, I don't see a
problem.
-- 
Key ID: 0xF88E034060A78FCB
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6  07FD F88E 0340 60A7 8FCB
Windows NT 6.0.6001.18063 | GPG 1.4.9 | Thunderbird 2.0.0.16 | Enigmail
0.95.7

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Installation gnupg on Windows

[Andrew Berg]

Faramir wrote:
> and the only other thing it would be advisable to do, is to add
> gpg.exe to Windows's  path environment variable, so you can use it at
> command line from any folder...

The directory, not the executable itself.
-- 
Key ID: 0xF88E034060A78FCB
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6  07FD F88E 0340 60A7 8FCB
Windows NT 6.0.6001.18063 | GPG 1.4.9 | Thunderbird 2.0.0.16 | Enigmail
0.95.7

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: can't change to my real name on this mailing list

[Andrew Berg]

kurt c wrote:
> I don't know if this is more of a ThunderBird question. I have already
> changed this dummy kurtc name to my real name lawrence in the setting of
> my Gmail account, but somehow on this mailing list I still appear as
> "kurtc". I read it's because the outgoing server name is still under the
> name of "kurt c", and this outgoing server name can be changed under the
> "Tools" dropdown list. But somehow I don't see any outgoing server
> choice under the "Tools" section of my Enigmail. Can anyone give me some
> idea?

In Thunderbird, Edit -> Account Settings ->  -> Your name
should do it. And Enigmail has nothing to do with how accounts are set
up; that is all Thunderbird's responsibility.
-- 
Key ID: 0xF88E034060A78FCB
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6  07FD F88E 0340 60A7 8FCB
Windows NT 6.0.6001.18063 | GPG 1.4.9 | Thunderbird 2.0.0.16 | Enigmail
0.95.7

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Publish Certificates

[Andrew Berg]

Carlos Williams wrote:
> On Mon, Aug 18, 2008 at 8:25 PM, Andrew Berg <[EMAIL PROTECTED]> wrote:
>> gpg --list-keys [EMAIL PROTECTED]
>> will show your public key's properties (including the key ID).
> 
> How do I make out which is my key ID? It is not clear and I can't find
> any info? Also is my private data now compromised for posting this
> info publicly?
> 
> [EMAIL PROTECTED]:~$ gpg --list-keys [EMAIL PROTECTED]
> pub   1024D/8BF7AA16 2008-08-18 [expires: 2009-08-18]
> uid  Carlos Williams <[EMAIL PROTECTED]>
> sub   2048g/FF202C9C 2008-08-18 [expires: 2009-08-18]
> 
0x8BF7AA16 is your key ID the other is the subkey ID (there are many
discussions on subkeys throughout the history of the list, so I'll not
go into them here. And no, this information is not sensitive; it is for
the public key, and reveals no information on your private key.

-- 
Key ID: 0xF88E034060A78FCB
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6  07FD F88E 0340 60A7 8FCB
Windows NT 6.0.6001.18000 | GPG 1.4.9 | Thunderbird 2.0.0.16 | Enigmail
0.95.7

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: revocation certificate command

[Andrew Berg]

kurt c wrote:
> What should I do now? I hope it's not too late to generate a revocation
> certificate now that the key has already been created and sent to keyserver.

Nope. If you lose your secret key, then it's too late.
-- 
Key ID: 0xF88E034060A78FCB
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6  07FD F88E 0340 60A7 8FCB
Windows NT 6.0.6001.18000 | GPG 1.4.9 | Thunderbird 2.0.0.16 | Enigmail
0.95.7

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: public newer than the signature

[Andrew Berg]

Robert J. Hansen wrote:

It is ridiculously hard to come up with a robust time and date standard.

Why is that?


Note that in some instances, GnuPG will use an ISO date format as
opposed to seconds-since-Epoch.

Is this for non-Unix-like systems or is it something completely different?
--
Key ID: 0xF88E034060A78FCB
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6  07FD F88E 0340 60A7 8FCB
Windows NT 6.0.6001.18000 | GPG 1.4.9 | Thunderbird 2.0.0.14 | Enigmail 
0.95.6


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: public newer than the signature

[Andrew Berg]

Faramir wrote:

Then I began to think... what does 06/09/08 mean? Here (at Chile), that
would mean September 6, 2008. But on USA, that means June 09, 2008.
Clearly, since we are at August 11, 2008, the time format in the output
message is mm/dd/yy. But my windows is using dd/mm/, so, maybe at
some point, something (gpg, or gpgshell, or maybe the function that gets
the current date) is taking mm/dd/yy as if it was dd/mm/yy, causing the
whole date calculation function to go crazy...



Time for computers is generally just the number of seconds since January 
1, 1970 at 12:00:00 UTC if I'm not mistaken. Date formats are derived 
from that and displayed according to the user's preference.

--
Key ID: 0xF88E034060A78FCB
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6  07FD F88E 0340 60A7 8FCB
Windows NT 6.0.6001.18000 | GPG 1.4.9 | Thunderbird 2.0.0.14 | Enigmail
0.95.6

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: I may have the wrong secret key...

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160

I have the right key. Thanks to everyone who confirmed it for me. I
would've sent myself one, but GMail thinks it's helpful when it takes
emails with my address in the From: field out of my inbox.
- --
Key ID: 0xF88E034060A78FCB
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6  07FD F88E 0340 60A7 8FCB
Windows NT 6.0.6001.18000 | GPG 1.4.9 | Thunderbird 2.0.0.14 | Enigmail
0.95.6
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEcBAEBAwAGBQJIohwVAAoJEPiOA0Bgp4/LHzUH/1LJeYTn/afRI8/Dqp1VEvF1
saCqyRBc0y3Q0SxhVhc4cBBI7WU8akYR1SO9lToskSoJXmAareZNeQl56k+z5BbQ
MJ9JcmrgcbawMd3OuMPjLPd5NumOC5WFSXbX2kHoX7v45K3pXPCIdYm9oOuy35BV
iE/Q1M5mGU4lv5YILyjwGeRsTv3/E+yUvxQRovNZq6N03nS9bC1JouYwKQ/yWmVc
eFiCW2jNme88w5q2u5l2FVbL4ZmrIQfp8TBrKqYaylPbpkghMF3+M8Xo/Bb1Yoxq
8wlqiS/oE4nWjR0dXd2O9eg13/7MfGql7azXK3aTIaE9DEV/paAYfObiB4ogkZs=
=xd9J
-END PGP SIGNATURE-

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Some questions

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160

reynt0 wrote:
| So two-fingered simpleton typing, or carpal tunnel syndrome
| typing, may be a protection :-) .  And I guess, type at
| least your passwords, etc, in a way strange for you and for
| your keyboard.

I've gotten into the habit of typing my passwords very quickly with very
little finger movement in order to make it difficult for anyone looking
over my shoulder to figure them out.
- --
Key ID: 0xF88E034060A78FCB
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6  07FD F88E 0340 60A7 8FCB
Windows NT 6.0.6001.18000 | GPG 1.4.9 | Thunderbird 2.0.0.14 | Enigmail
0.95.6
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEcBAEBAwAGBQJIn6oPAAoJEPiOA0Bgp4/LQ60H/26U/QHt/kjpd31OFvmKcBmV
oIbIEJDFnDNyLoknUfg+crmCNkgRdI47tdhvsMs/qrBSgFQtSh+qpIbNyi0BOm6n
WkRw05SDCYkOljg7yebQKT6T6dBqK5o4yYNT6AepWJq4tKtKjaCOFV1xsr5+KFjG
02Xnsr6r0ujbmOChlNw1Ppwff3J/sr4rtGXyhidGWIwHUrzkjwVKYDgW07qMjEt5
Sp15eOfqEbEj05BwTVmi6BsQMvAyyxFQuqaORq8CIpisfAUEbAqt07IpDFTNtWtc
sqrhjreUOw4vzlmWDdfiJXZAHVi2kJhY7tlEgKbKnoRvFWFjAxIVwV4JlovFNUo=
=2cIY
-END PGP SIGNATURE-

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

I may have the wrong secret key...

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160

I've moved between systems, and I may have an old secret key. Would
someone please verify that A) the signature is indeed from
0xF88E034060A78FCB (it seems to be, but I want to be sure), and that I
can decrypt messages encrypted to that key (i.e. send me an email
encrypted to that key).

Thanks.
- --
Key ID: 0xF88E034060A78FCB
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6  07FD F88E 0340 60A7 8FCB
Windows NT 6.0.6001.18000 | GPG 1.4.9 | Thunderbird 2.0.0.14 | Enigmail
0.95.6
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEcBAEBAwAGBQJIn6tiAAoJEPiOA0Bgp4/LAOMH/1sY5Vg34bTtbdY/e1RloQKW
WMHmll/jTByLiTuFMfJnI44n+H8ABCZEkof9RNFTNaUC400rPETmCfiHcYi+Fb8p
qGOtmDZzsqcxlAupo2OCTxfFK676RyqcMJNmOEcIij84S2+aE6Cd+991sMjGog/m
y6uFFtWHOqPhXU0MU4EaS+rSKze8Xa9rqort7pqcYE/Bef+U/1T0vPskYSbrN/6i
uXmuJzTmWNABfYtEHDv5TW+Q6txdmm/Z0zIN8eU6jIaVG57mmzFbQjxlhosGcvtk
3APleMkgou4kmixrg4j8dg1P0/ky6TtBHG7CE6wKAerHQpsSX3EoHNOc/fu4zo8=
=rt7R
-END PGP SIGNATURE-

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: public key newer than the signature

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160

Ludwig Hügelschäfer wrote:
| I assume, FAEBD5FC is very well known and in a lot of keyrings. Can
| somebody check please? 32370053 seconds is 374,6533912037 days, 9 more
| than a year...
|
| Greetings
|
| Ludwig
It wasn't originally on my keyring, but I got a copy from
pool.sks-keyservers.net, and it says it was created March 10, 2000.
The name associated is Phillip R. Zimmerman (email [EMAIL PROTECTED]), and the
fingerprint is 783B 3627 1976 8F4D 8633 2E06 19B0 FF60 FAEB D5FC (just
to make sure we are talking about the same key).
- --
Key ID: 0xF88E034060A78FCB
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6  07FD F88E 0340 60A7 8FCB
Windows NT 6.0.6001.18000 | GPG 1.4.9 | Thunderbird 2.0.0.14 | Enigmail
0.95.6
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEcBAEBAwAGBQJIn1i3AAoJEPiOA0Bgp4/L4QkIAMg7sFfKTQi0phJIbENKv+K3
rVvU1dURt/5GKK2BjJjMur/cxrNDBNIFO8q7xIerB1PMql86ZDMX/J7kS7UCwt7f
ytYlLtCIhZ1473f4vXrwUuHVwM1NN4WZNxmGn2CGdEtQyy+MIS+WGP+GHQGzzTdv
e6QLctAPSYVlSKPdelGibHuwFl7vEf0kilcMEZTs/b0638JQo6nSZUR6WW9YAbgk
ut5RSYRn9HC28nQkcAy90bQSXhenlgg5aRLc9zVLv+mX3HBkttxOj2hhgJHaK1H+
FOnDWQb/sK1Cn52PG2oQBDQhu8zW4hHYLnWHmbCQj7H+4XmH8D/EUOl7g6tSvzg=
=GJkh
-END PGP SIGNATURE-

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Problem with default key

[Andrew Berg]

andrea giovannoni wrote:

Hi,
I have a problem with my default key.
 
gpg --default-key 0x12345578

gpg: Go ahead and type your message ...
 
 
Can you help me?
Because you have not specified a file, GPG tries to read from stdin. 
Because there is nothing there, you see that message. The --default-key 
is more for gpg.conf (the name makes more sense in this context) than to 
be supplied on the command line. If you wish to make the default signing 
key 0x12345578, add

default-key 0x12345578
to your gpg.conf. As John mentioned, you can override that preference 
for a particular invocation with --local-user (or -u for short).


Based on your reply to the others' messages, I think your problem is 
just that you are not giving GPG a file to work with.


--
Key ID: 0xF88E034060A78FCB
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6  07FD F88E 0340 60A7 8FCB
Windows NT 6.0.6001.18000 | GPG 1.4.9 | Thunderbird 2.0.0.14 | Enigmail 
0.95.6


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: export key: access denied

[Andrew Berg]

kurt c wrote:

Ah so sorry, I run into another problem.

I followed the instruction and typed into my command prompt gpg --export
-a 0x8e758d5f>mykey.asc in order to create an ASCII armored version of
my key and somehow I got the reply:

"access is denied".

Why? Why? Why?

What was your working directory?
--
Key ID: 0xF88E034060A78FCB
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6  07FD F88E 0340 60A7 8FCB
Windows NT 6.0.6001.18000 | GPG 1.4.9 | Thunderbird 2.0.0.14 | Enigmail
0.95.6

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: [admin] What is top posting, and why should you avoid it?

[Andrew Berg]

Faramir wrote:

Andrew Berg escribió:

Faramir wrote:

  It happens too with pop3... I hate that "feature"... well, it (gmail)
had to have some disadvantage...

Not in my experience. That's why I use POP3 instead of IMAP.


  Do you mean you can see the messages you send to the list? Then I have
to check my config... I am using pop3 too.


No; I misread that post and thought you were talking about something else.
--
Key ID: 0xF88E034060A78FCB
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6  07FD F88E 0340 60A7 8FCB
Windows NT 6.0.6001.18000 | GPG 1.4.9 | Thunderbird 2.0.0.14 | Enigmail
0.95.6

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: [admin] What is top posting, and why should you avoid it?

[Andrew Berg]

Faramir wrote:

  It happens too with pop3... I hate that "feature"... well, it (gmail)
had to have some disadvantage...


Not in my experience. That's why I use POP3 instead of IMAP.
--
Key ID: 0xF88E034060A78FCB
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6  07FD F88E 0340 60A7 8FCB
Windows NT 6.0.6001.18000 | GPG 1.4.9 | Thunderbird 2.0.0.14 | Enigmail
0.95.6

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: [admin] What is top posting, and why should you avoid it?

[Andrew Berg]

Alexander W. Janssen wrote:

Andrew Berg wrote:

On a side note, is there any reason I didn't see the last message I sent
to the list?


You're using Gmail... And probably IMAP? Common problem. Google calls it
a "feature". You need to open the "All Mail" folder instead of the inbox.
I'm using POP3 (IMAP wants me to be connected to the internet when I 
read my mail. It also wanted to have the same messages in the Inbox 
folder as well as the All Mail folder. How silly. Anyway, I don't have 
an "All Mail" folder (probably because I'm not using IMAP).


I even double-checked my preferences and I do have the list set to mail 
me my own messages.


--
Key ID: 0xF88E034060A78FCB
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6  07FD F88E 0340 60A7 8FCB
Windows NT 6.0.6001.18000 | GPG 1.4.9 | Thunderbird 2.0.0.14 | Enigmail 
0.95.6


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: question about hkp protocol

[Andrew Berg]

kurt c wrote:

what's
the $ before "gpg for?


It's part of the prompt string. $ is for a normal user, # for root (this 
is for Unix-like systems). Your headers indicate that you're using 
Windows (I have a nifty little extension for Thunderbird that scans 
headers for MUA information and displays the appropriate logo), so your 
prompt string will not likely have either. Anyway, don't worry about the $.

--
Key ID: 0xF88E034060A78FCB
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6  07FD F88E 0340 60A7 8FCB
Windows NT 6.0.6001.18000 | GPG 1.4.9 | Thunderbird 2.0.0.14 | Enigmail
0.95.6

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: [admin] What is top posting, and why should you avoid it?

[Andrew Berg]

Alexander W. Janssen wrote:

Andrew Berg wrote:

James P. Howard, II wrote:

A minor vent:  the problem now is the proliferation of mobile devices
which make it too difficult to not top post.  Users, at this point,
are fooled into thinking this is the correct form due to the lack of a
practical alternative.

I think top-posting is common historically because MS Outlook positions
the cursor at the beginning of a message by default.


As for Outlook, I can recomment the Outlook quote-fixes:
http://jump.to/outlook-quotefix


I know a couple people to whom I could recommend this. I use a good MUA 
myself, but they don't have too much of a choice (work computers).

--
Key ID: 0xF88E034060A78FCB
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6  07FD F88E 0340 60A7 8FCB
Windows NT 6.0.6001.18000 | GPG 1.4.9 | Thunderbird 2.0.0.14 | Enigmail
0.95.6

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: [admin] What is top posting, and why should you avoid it?

[Andrew Berg]

John B wrote:

On 17 July 08, John Clizbe wrote:


A4: Yes, *only* when introducing the text of a forwarded message
Q4: Is it ever OK to top post?


  A: Wrong, it's *never* correct, it leads only to someone, *again*, trying to 
argue that somehow it's okay, and still discombobulates everything.


I disagree. An introduction does fit logically at the top, however such 
an introduction should be short. One does not need to read anything 
below to get context for an introduction; in fact, such an introduction 
may be there to put the rest of the message in context.



On a side note, is there any reason I didn't see the last message I sent 
to the list?

--
Key ID: 0xF88E034060A78FCB
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6  07FD F88E 0340 60A7 8FCB
Windows NT 6.0.6001.18000 | GPG 1.4.9 | Thunderbird 2.0.0.14 | Enigmail 
0.95.6


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: [admin] What is top posting, and why should you avoid it?

[Andrew Berg]

James P. Howard, II wrote:

A minor vent:  the problem now is the proliferation of mobile devices
which make it too difficult to not top post.  Users, at this point,
are fooled into thinking this is the correct form due to the lack of a
practical alternative.
I think top-posting is common historically because MS Outlook positions 
the cursor at the beginning of a message by default. Mobile devices with 
email programs that do this as well (combined with the fact that line 
navigation is a bit harder on mobile devices) is certainly making the 
problem worse.

--
Key ID: 0xF88E034060A78FCB
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6  07FD F88E 0340 60A7 8FCB
Windows NT 6.0.6001.18000 | GPG 1.4.9 | Thunderbird 2.0.0.14 | Enigmail 
0.95.6


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: I need a portable GUI for GnuPG

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160

Werner Koch wrote:
| Thunderbird is free Software and one of the
| most important properties of Free Software is that you are allowed to
| distribute modified copies.
|
| But beware, the Mozilla Corporation has a trademark on the name of
| Thunderbird and that allows them to deny you the right to use the name
| "Thunderbird" in any context related to trademark laws.  To make things
| easier for you you can just grab the Icedove package from Debian:
|
|  Icedove is an unbranded Thunderbird mail client suitable for free
|  distribution. The goal of Thunderbird is to produce a cross platform
stand-
|  alone mail application using the XUL user interface language.
|
| and distribute that along with Enigmail included.
Even if the whole point of Icedove is to have a purely unmodified
Thunderbird that is unencumbered by the trademark restrictions (which
may very well be the case; I am not familiar with the Icedove project),
most people will either not know/understand that, want the official
artwork, or both.

- --
Key ID: 0xF88E034060A78FCB
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6  07FD F88E 0340 60A7 8FCB
Windows NT 6.0.6001 | GPG 1.4.9 | Thunderbird 2.0.0.14 | Enigmail 0.95.6
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEcBAEBAwAGBQJIccJrAAoJEPiOA0Bgp4/Li3kH/2d+awrjDfMABRCgKtn6fbXB
7HDrDjtb0KJCiCLdAqQDWepbg7i2GVuWe6aDh4b2a20GGWzovfI9tRE25+9nGQS8
75U90oTbicAOEigRbkfx0f6oBUrugOKsaIBx7i6BkhjBuDAWiSnISZi3tYqwcQHp
zPttELIJngdqGbnS/lPoTvFFqqR6Rq7/URRKsAXVlbPrg8/AvFdr2ufuG/H4CICi
YdPPnHw+Tb7RNFCJr+YR54JpiOl5lhKW0z83lm8YLkH3/Qg0rY8IOa+Y3vjZLMYK
SUqeeC6CjPmBvlonSUN0E6A+KApBBvuXh1590UaUOiedLj42lM07utDUaPEf5u8=
=jwkd
-END PGP SIGNATURE-

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: I need a portable GUI for GnuPG

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160

Faramir wrote:
| Hello!
|   I have been carrying portable thunderbird with portable gnupg in
| my flash memory stick, plus GPGShell, and it works fine. But GPGShell
| licence forbids to redistribute it. The idea is to make that "combo"
| available for download... it is not making any modification, just saving
| the "end user" the problem of having to install these apps by themselves
| (also, to put GPGShell in the flash drive, the user needs to have it
| already in his computer).
You're not allowed to distribute Enigmail (or any other extension)
preinstalled with Thunderbird, so even if you get some other frontend
for GPG, you still have that problem.

- --
Key ID: 0xF88E034060A78FCB
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6  07FD F88E 0340 60A7 8FCB
Windows NT 6.0.6001 | GPG 1.4.9 | Thunderbird 2.0.0.14 | Enigmail 0.95.6
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEcBAEBAwAGBQJIbwEmAAoJEPiOA0Bgp4/LAPoH/3zeyl6idwRnBDAaRH7L0cWk
kDd8AK4qH5O6cD6Cr7Gyq6WGfDbQPBj6EffkMuWYSvS79yJ8gTuO76sDCn3ijiWj
bDx0OM5o2IXhVDXXJJzthgKOaDGVg/XPIfEe3Yfary1CN2YegIH8JSK7R7OU986T
xZV6mYC62K9mDM20kKme3FFc1mUYwZNuuPRpn6c1TagiiE4omlHf2rc27vWUIXn4
cBZko9BNuvwSW0G43uyXtLji4oXCJHG7BVL2pkilMgmjH2ZhN2ZCthcGg51unYEe
cRfOQQhDUBISZuoSDd6izKJKWHr1sSYy/NL9knWRABMpe/HMsQDtocGPZkkZpDA=
=epaK
-END PGP SIGNATURE-

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: One Time Password and GnuPG (OT tangent)

[Andrew Berg]

Robert J. Hansen wrote:

Having not seen John's original message come through on GnuPG-Users, I
can only assume that you are taking public something that he sent
off-list, presumably for good reason.

Please do not do this.  It's rude.
I don't do this intentionally. That message was threaded (by 
Thunderbird) with the rest of the discussion. Plus, the resolution is so 
low on my monitor (not by choice, but by capability) that header info is 
not displayed properly (it is possible to display this info, but doing 
so covers what little space there is to read a message). I'm not trying 
to make excuses, but that's just how it is. I will pay attention to OT 
messages more. I see that your message had a carbon copy to the list, so 
I would assume a reply to the list would be fine.


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: One Time Password and GnuPG

[Andrew Berg]

John Clizbe wrote:

Andrew Berg wrote:

Bricks can be hallowed out. :P


HOLY BRICKBATS, BATMAN!

Would such bricks then be filled with the Holy Spirit to give them strength?

I must assume you meant 'hollowed'.
Yes I did. Of course, little plastic angel-like wings could be added for 
effect after being /hollowed/ out.


--
Key ID: 0xF88E034060A78FCB
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6  07FD F88E 0340 60A7 8FCB
Sony PlayStation 3 (64-bit PowerPC compatible architecture) | Video 
mode: 480i (576x480) | Ubuntu 7.10 | Linux 2.6.24 | GPG 1.4.9/2.0.9 | 
Thunderbird 2.0.0.14 | Enigmail not installed


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: One Time Password and GnuPG

[Andrew Berg]

Robert J. Hansen wrote:

If you don't have physical security over your hardware, you don't have
anything.  You cannot use GnuPG safely on a malicious machine
Exactly. There are keyloggers (both hardware and software), 
screenloggers, USB drive copy programs, and a lot of other nasty stuff 
you'll never see coming. If the copy program picks up your key, and a 
keylogger or screenlogger picks up your passphrase, your key is compromised.


> it's like trying to make water not wet or bricks not heavy.
Bricks can be hallowed out. :P

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: GnuPG (win32) on a USB stick

[Andrew Berg]

John Clizbe wrote:

Andrew Berg wrote:
  

John Clizbe wrote:

set GNUPGHOME=x:\location\you\want  
  
It would be inconvenient (and inconsiderate to the host machine's 
owner(s)) to set an environment variable on every machine encountered, 
wouldn't it? Sven's idea is much better, I think.


And it shows a clear lack of understanding to think that a SET command at a
Windows command prompt sets an environment variable permanently or globally. The
variable exists in the process environment that invoked the command and those
processes invoked from it.
  


Actually, it shows that I wasn't thinking quite clearly. For some 
reason, I was thinking of something quite different. Sorry about that.


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: GnuPG (win32) on a USB stick

[Andrew Berg]

John Clizbe wrote:

set GNUPGHOME=x:\location\you\want
  


It would be inconvenient (and inconsiderate to the host machine's 
owner(s)) to set an environment variable on every machine encountered, 
wouldn't it? Sven's idea is much better, I think.


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Corporate use of gnupg

[Andrew Berg]

Robert J. Hansen wrote:

Andrew Berg wrote:
  

Well, /I/ could've told you that. Don't tell me you never figured that
out on your own.


Unless your day job involves being intimately involved in IP
transactions (not just writing code), you could have _speculated_ on
that.
Although I would not bet my life on that, I don't agree that 
"speculated" is the right word. I have a bit more confidence it in it 
than that.

  There's a big difference between what you believe to be true,
what you think to be true, what you know to be true, and what you can
prove to be true.
  

Agreed.

When dealing with actual dollars and cents, it pays off in the long run
to pay the money required to get opinions from people who can prove the
correctness of their assertions.  This is true whether you're talking
about information security, law, medicine, or just about anything else.
I would agree that when there are real, serious negative consequences 
involved, one cannot always afford to rely on assumptions, assertions, etc..


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Corporate use of gnupg

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160

Robert J. Hansen wrote:
| The last time I talked to a patent lawyer about software (I had a 
nifty thing I wanted to implement and needed to make sure I wasn't 
walking into a patent lawsuit), I paid my $200/hr and got this bit of 
professional advice: "in today's software market, patents are used a lot 
more to keep other people out than to bring money in."
Well, /I/ could've told you that. Don't tell me you never figured that 
out on your own.


David Shaw wrote:
| Yes.  Put "encrypt-to (the-adk-key)" in everyone's gpg.conf.
|
| Of course, they could turn around and take it right out again.  Unless
| you have pretty tight control over the environment, ADKs or
| encrypt-tos are not foolproof (and that applies to both PGP and GPG).
Why can't they take away write privileges of gpg.conf (and the gpg 
executables for that matter) from normal users? AFAIK, that would be 
pretty simple (at least on a *nix system).


Or did I overlook something important?

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.8 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEcBAEBAwAGBQJHxDelAAoJEPiOA0Bgp4/LlfEH/Ap9Y7JiLtpFOs2U2FvqYVu5
xhZCy0Fo5SumAP7+OWA/lvZ1SU/zFCrSF2k/k+BZmnQtgh0h+lt3l78t1cR+tk+Z
PkJPkPce0QbJ+lDl5OZNNkT8J166FVcm0UVdkTBkg/vBBcnn17k/gZAptV6sZg6A
95CnCxCxQCLhshCP/WhjrahM/CbG/cVx8nEU99TysC+Bt2a/8YuXd/HUAvhcoh6I
RNbVGTmcHh8BZKp7tLbnhIpubBuLNscjssKCTos898JJ/tBSrTCZLMfNmNKP5Gtw
OqzAkWj1wJ99VWZaWMOejeGE22U+ccSePeUIrojZ5NLDhlzUTUmaZghamlgLlFk=
=zC7/
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: How to remove a key from keyserver?

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
Robert J. Hansen wrote:
> Andrew Berg wrote:
>> Robert J. Hansen wrote:
>>> In the universe of practicability, what he wants to do is not possible.
>> I know that. I just forgot to add that I know it.
>
> First, please do not quote private emails to public mailing lists
> without the original author's consent.
I did not realize it was a private message; it was threaded with all
the other messages of the same topic. I apologize and I will certainly
make sure to read header info to make sure it was from the list next time.

I see that GnuPG-Users was sent a carbon copy, so quoting this to the
list should be fine. ;-)
> Second, what you really forgot to add was a smiley.  Psychologists have
> done a ton of studies on how we perceive others via email, and what
> they've discovered is that people overwhelmingly are awful judges of the
> emotional context of email, and they are also overwhelmingly awful about
> recognizing the fact they are awful judges.  People read emails and feel
> great certainty about what the 'real' emotional context is.
I think that stems from the fact that written language can't hold that
context very well, so one is forced to interpret it.
On a side note, I think written language was really only intended for
formal things (widespread literacy is relatively new), and we haven't
had time to adapt it enough to make it replace spoken language.
>> John Clizbe wrote:
>>> Folks won't snicker behind your back that way.
>> Why would people snicker behind my back? I wasn't seriously suggesting
>> that he try to do it.
> In the absence of any contextual clues to make it clear you were joking,
> John was reading your message straight-up.  When reading your message
> straight up, it comes across as being kind of ankle-biting.  Had you
> added a smiley, or some note at the end to explain it was a joke, you
> probably wouldn't have received that reaction.
I thought its absurdity was enough of a clue. I guess I was wrong.
> All it amounts to is a joke (a) wasn't received by the intended audience
> and (b) the intended audience responded as if it was straight.  This
> sort of thing happens tens of thousands of times a day on the internet.
>  So let's all go back to our respective corners, and return a few
> minutes later with an appreciation for the expressive power of the
> simple, underutilized, smiley.  :)
Agreed. :-)

- --
Windows NT 5.1.2600.2180 | Thunderbird 2.0.0.6 | Enigmail 0.95.5 | GPG
1.4.7
Key ID: 0xF88E034060A78FCB - available on major keyservers and upon
request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBR0lz6viOA0Bgp4/LAQNQAQf/c5gmtyU2L8hoPIplKoKRqe5iDZhVruEl
sGvIp2REQwU1rwW5motIJcsXfkHDuq3yQjRBDfpFhgh4LFpVvZL8PWE3XljHW6HJ
1TfGXxcBJrm8sCkn5NgXNF3jJSCh5n9NaVV/2PZA6+0hIfjuB5kalkc9SICOAj6H
oKiB8HqDM5W8YT+atvjI7x51njXqWHoMZkHJhJ1+owC522XNv/r6r7AXo8CLCp/A
6152BNID2QlWU0fdPUXxT87+8Ns8JqU/POXAoOZrfET+t6ohG27B6qtYe/buCsUu
FwcMSg7cfq/1D7JHZ6JEdfKZOe+6PBMD9c9G0VipVisLB69ZAFwH7w==
=HHyh
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: How to remove a key from keyserver?

[Andrew Berg]

John Clizbe wrote:
> You are contemplating the successful completion of a task both so extremely
> effortful and futile as to rightly proclaim the description Sisyphean.
>   
Robert J. Hansen wrote:
> In the universe of practicability, what he wants to do is not possible.
I know that. I just forgot to add that I know it.

John Clizbe wrote:
> Folks won't snicker behind your back that way.
Why would people snicker behind my back? I wasn't seriously suggesting
that he try to do it.

-- 
Windows NT 5.1.2600.2180 | Thunderbird 2.0.0.6 | Enigmail 0.95.5 | GPG 1.4.7
Key ID: 0xF88E034060A78FCB - available on major keyservers and upon request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: How to remove a key from keyserver?

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
Robert J. Hansen wrote:
> You don't.  This isn't possible.

Well, it could be /possible/, but many steps would be difficult,
illegal, expensive, or some combination of the three.


- --
Windows NT 5.1.2600.2180 | Thunderbird 2.0.0.6 | Enigmail 0.95.5 | GPG
1.4.7
Key ID: 0xF88E034060A78FCB - available on major keyservers and upon
request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBR0bGu/iOA0Bgp4/LAQOfnQf/bYzv19R+vcLkkUFgL18KuMHQTAXbCjJn
0V/w2EbpEJt6oF6sG/ZdfI/PGkZ64HQTgwOI/Fj8R/wQ47y49HykZu5JGex7SQh0
+PWhFX9Oy2bdOdCF2YYJPJbGyvlczNhqD3sp3QvfkxC0EEg59/VSkdsWimsQscPl
h6rH0oaPeUkzx3QIzsJuvcjcaMCF0iP9lUwtrnTaCgaoaFgOw9wOtCLv0qbYfA90
/K1Qq9pSGdMMLbCZ5yZeQdylipZGzvoP7lNkcrSFcxlhY8LvPM5YZjkI3EechX5a
cRzxIU6xiSE0UpyqW0cA8LWv60iJgcS84ClNXls5vDtBPR+Yql8bcw==
=TzZ0
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Odd characters in Thunderbird compose of gnupg

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
Robert D. wrote:
> thank you for the help.  I have relayed it to my friend. Mind you,
> she's off again to her family and I am unable to watch the
> "repairs" first hand.
There's also another way to handle it that I forgot to mention. If you
have a lot of CLI apps that you don't want in %windir%\system32, you
can store them in a separate directory and add that directory to the
path. I'm surprised that I forgot about this since this is what I do
myself.

The command line is so amazingly underrated in the Windows world.
- --
Windows NT 5.1.2600.2180 | Thunderbird 2.0.0.6 | Enigmail 0.95.5 | GPG
1.4.7
Key ID: 0xF88E034060A78FCB - available on major keyservers and upon
request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBR0YC5/iOA0Bgp4/LAQMsMwf+JrjS8nmrcxvILCbOhFDCy66nnzx9dttq
ZsmOP+r0/z4nh8XiWuNobNvOsqPdLxvuWsFKftR6ZZlAwx2pRqnE4TI4eigbHgRf
azd1YHZSSKau4s3cY6U1CDnFWkThVXk+sWtl2Kkvjuk8OPrggBjcZZO3cwHymaGX
cgO4XuRQheRR46UKEyHcqFGyjcdEGAG6aqUR+PWPMMrnJygf/3qbYs+rKEaQu9CL
AoexVCyhpNR4Xwvkj8ePi3g4H6nO2mB7Pp/DBsdxWgV6vpBFjfoo+n5c7Muykgm/
EXaY1GBkjEjO6b6XihtpAQ4ycc5iG7VF0uZ24GxA3IYMjReGC0x5eg==
=PzrP
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Odd characters in Thunderbird compose of gnupg

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
Robert D. wrote:
> However, this started a different problem on her XP machine. Namely,
> from a command prompt, typing in gpg yields an error stating that gpg
> isn't registered or available or located or whatever.
>
> I took it to mean that gpg hadn't added the sys var stating its true
> folder location ... but his didn't exist earlier.
It's not in the path.
Unlike Mac OS X, installed programs have the executable in their own
little directories. There isn't a central directory for executables
(like /usr/bin) that would be set as a path.
You can:
 - add the directory in which gpg.exe exists to %path% (I forget the
directory since I don't use the standard directory in %programfiles%)*
 - copy gpg and the other related executables to a directory already
in %path% (e.g. %windir%\system32)

*recommended

One way to do the recommended action is to go to Control Panel ->
System -> Advanced -> Environment variables. From there, you need to
modify the %path% variable. This is located under System Variables.
Just add a semicolon followed by the directory where GPG is. This
modifies the path for all users and requires admin rights. You can add
the directory specifically for the current user by adding a variable
named "Path" (if it doesn't already exist) to User Variables and
setting it to %path%;[GPG directory].
There is also the set command, but I'm not sure if it modifies the
user's path or the system's path.

- --
Windows NT 5.1.2600.2180 | Thunderbird 2.0.0.6 | Enigmail 0.95.5 | GPG
1.4.7
Key ID: 0xF88E034060A78FCB - available on major keyservers and upon
request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRz8df/iOA0Bgp4/LAQOCiQf/f/2prFrUm+jr1IQ0Bf/a/iodE2D5WK46
MpmgSiPFxCNJJSQG/PQ/EwGWMK5+4p+V9aUzGZLCaJRDnNJjTsWz1Tt5KkPJHcFS
dr1kD7swmsn2b9/9CSanqBDZYWiUWkUVjbmz5fEp/JM2yUNCsG2i9xqExwlAXUOG
64hhzTemCDeHcb7BCMvUMFqzE3vue3omSh/qwK6Z5A6N+BKMfBACimoLTArioYhS
bVM+hHKhs0mXfKWVWcTIisAFrBpbNhqhi8N4m9klTrCj9guaFPpr1t4+xlBhvy8A
XVfwPgbHLtq45CiAYvPQV2PqXPnPc/AlauXjkv97kGnW5bSQnqnyig==
=Vste
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: GnuPG in Linux

[Andrew Berg]

Charly Avital wrote:
> My question, please help: where, how can I find and open, actually open
> and edit as required, gpg.conf?
You have to create the file yourself and place it in ~/.gnupg.
Robert suggested gedit, but if you have KDE (you mentioned that you
installed kgpg), you can use Kate or KWrite (personally, I like Kate
because KDE is pretty and GNOME is ugly IMO), but any of these (or a
terminal-based editor if you want, or really, pretty much any text
editor at all) will work.

-- 
Windows NT 5.1.2600.2180 | Thunderbird 2.0.0.6 | Enigmail 0.95.5 | GPG 1.4.7
Key ID: 0xF88E034060A78FCB - available on major keyservers and upon request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: GnuPG 1.4.7 and OS X 10.5

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
Robert J. Hansen wrote:
> I'm currently running GnuPG 1.4.7 on OS X 10.5 (Leopard).  While I
> haven't done any serious regression testing, routine operations
> appear to work just fine.
Damn. And I was hoping you'd get your fiber for the day.
*still hoping for a hat-py ending*


Grr... forgot to change the recipient.
- --
Windows NT 5.1.2600.2180 | Thunderbird 2.0.0.6 | Enigmail 0.95.4 | GPG
1.4.7
Key ID: 0xF88E034060A78FCB - available on major keyservers and upon
request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRyKmMviOA0Bgp4/LAQOxMwf/TE3FnVWf8+qr1kSPypO7Lh9z/Y36pi/A
VY+wRDzDS2krK3bCnsL8ijqBSQ2uCFS2iCP3u0/a67pXa4v5Jk8okxzDWKz+PlN9
kdXuM15t4RIaHN9F78sg5V1IcHhatd8DX84pSrUPaqPWGkK1ycVeB2LID76sgWJw
8kBqfEQe32FHw/pHtAptuZ+qoPdOG6x1daZQxkPVKSz4oV+K8G2RJV9aO0/mqIVS
PdB1N/xrOeD0MMT++LRLZ82ZlA3WFvX9/VqfVhkLoVDG6Nufx6hOLWMgRkZmbdWd
7nKmAJcC+CASR6laqYf40lx47XJUOY1CytJAlL7QaFW0naFfdhYOXQ==
=pgno
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: For Mac users: the oncoming Mac OS X 10.5 "Leopard"

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
Robert J. Hansen wrote:
> I will eat my own hat if GnuPG has any problems whatsoever with
> Leopard. From all that I know of Leopard, GnuPG will continue to
> work just fine.
>
> I will be getting Leopard very soon after release.  If there are
> any problems, I will (a) post them to the list and (b) post my
> favorite recipes involving hats.
I think (if there are problems) you should post a video of yourself
eating the hat. However, we should should have a vote for recipes,
with the winning recipe being the one you'd use. Also, what kind of
hat is it?
- --
Windows NT 5.1.2600.2180 | Thunderbird 2.0.0.6 | Enigmail 0.95.3 | GPG
1.4.7
Key ID: 0xF88E034060A78FCB - available on major keyservers and upon
request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRxz5eviOA0Bgp4/LAQPOAwgAxHkBHufReM7xCVEi1PyQel1kTWiAdVHR
GIa4LFeymzbGWHS7cPbuK12seCHx+briTLPB8fuu45GHUyMyZTEmVre0HbTYK8Dl
1o0TZhFl2aD4KY1r8PKZ2E6rT09NlOWymGYa/TjkZ9NZyqEDT1kW6Ubegn+vPfNC
cHNa03LtSoHU8H/6j1Dhz4CEub3G6tvda7v4BO1MzKwjnSWTbFmtgeROaUcu6+RE
HKlX9h2lUhaSbK0mSwLFbEklCS0WIcLyXen3qsF4A11UziBEPLCFHXD4o66wZ5ke
uKsQfrJIsG9/PIstAp6apHrNT4PC1X2ooJfYbOB8dbZa0OrtMsbvrQ==
=NVTG
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Compression routines - please include 7-Zip

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
Henry Hertz Hobbit wrote:
> It is so blisteringly fast that it is time to give credit where
> credit is due.  I had it updating our (my?) PAC filter.  Even with
> copying the executable for 7zip.exe on Windows it is so blisteringly
> fast I can't believe it.  I am used to the forty years that Microsoft
> takes.  When it is done almost instantaneously (the word comes from
> Latin to Français to Anglais) it shocked me!
You're referring to PPMd, right? LZMA is pretty slow (though the
compression it achieves is almost always worth it). Plus, PPMd is
much, much better than LZMA with text.
> It is only marginally better than
> BZIP2 but it is infinitely better than ZIP or RAR.
To be fair, RAR isn't that bad. I'm not suggesting Werner use it, but
it shouldn't be grouped with zip.


I'd like to see where this goes.

- --
Windows NT 5.1.2600.2180 | Thunderbird 2.0.0.6 | Enigmail 0.95.2 | GPG
1.4.7
Key ID: 0xF88E034060A78FCB - available on major keyservers and upon
request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRsn3h/iOA0Bgp4/LAQNV3ggAj9AmUvhYRBvHo7gbMwQSqZpK+37GVNea
sgmp+JQ+c4MjXEfkMj4LuyjTGcx+YBhtOPcSBQusiwzcurLHzgLZS+KrvzVf3Xj/
1J1gGzwi0sAgB5I9OIhvNq1qwb8lP8+2mTjwF2gVW6Yl+CaypB5ZGJv4/7aM88oX
W4yumKhCQv8MXHDf5tK6ClOj+fHJR8FLVUTKTkGrVIoNBMaZKEAuViU2FtI21x+q
CHHwODb7CTxY8ocdjtdVymRqw3iqpnee5DWgsMZOv7GBIiruJa2Dpv7UxiiUD+Rn
z0szhaSJSUbY9eR/Mc6gvf2q36L2o2tAiK3C2EpDsy/741Pnenx9ZQ==
=nMe0
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Not sure how to build w32pth

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
If I run ./configure, it tells me it can only build for w32.
If I run ./autogen.sh --build-w32, it tells me to run make distclean.
If I run make distclean, it tells me there is no rule for distclean
and stops.

- --
Windows NT 5.1.2600.2180 | Thunderbird 2.0.0.4 | Enigmail 0.95.2 | GPG
1.4.7
Key ID: 0xF88E034060A78FCB - available on major keyservers and upon
request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRo6otviOA0Bgp4/LAQM4zAgAqr4tXNpnLoVIx2pBOe6dUBG+hvMeLPH7
r/d32Bd0fKntsRdA96ABOX+NKsRH5iVpeY/ZttxThyTNn0hkB0QNZ3mxO1hpr/x6
5cXczhoN8gU+QnTG2q6FkOkmfk8wZtW+n8A5YiM9lI/ThxozqiQUBv+7yOYY0wEN
nJ/AuvgFTgvUWyRmU4FUcl1sKwMfYZoov19LPVT254AFgLnu1jLC3Cyt+EQnGUJl
MHMl79fH8ZlM4r52iPElov/bhn5WsiAm9xkLYG0+C8t/V5i8J8UJ8wtViAM2XkiT
UieL98OGSyLmYclhigSNzlqOhLUMVoQpwSsryYy+zB0hBpMWyieRVw==
=fYbH
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: [Announce] GnuPG 2.0.5 released

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
Werner Koch wrote:
>  * Basic support for Windows.
Could you be more specific?

- --
Windows NT 5.1.2600.2180 | Thunderbird 2.0.0.4 | Enigmail 0.95.2 | GPG
1.4.7
Key ID: 0xF88E034060A78FCB - available on major keyservers and upon
request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRo5id/iOA0Bgp4/LAQM5TAgA21HYGzTfNvYFI7k+1EtiX/5Dcllt1SGD
ELdY6zcisntExHjfcih29dVuRVMywaff8v9ZYnbwx3sIabVyVukUAE3ENdcQEsdP
G0ubQC4VPE8/0Trki9eOnTOUlSmq7GXlUY71IXHdiXbyEXrP57VMh32MXi7Uuw3W
3s4oAK/gSZPbXcfecydODzN3a8NUgXzpF7Jf6mk7ue9P0j7XNusjd7pr59KIM1Oh
iO+SsNowlvUKjCJMPzoQvhdtR6wNZ5Z/Mf3p6xqyuau2NhhqRI0jr+Ul0nqMlaFt
MS6o2Wkydtp7U8+2ryE37W8PjHZbuufny38K63PAAAX+tM/xhF23MA==
=sVbs
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Algorithm 11

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
Charly Avital wrote:
>> I built it from source from gnupg.org. No SHA224, no bzip2.
> I believe it is because the src that is posted does not include
> libgcrypt 1.3.0
It doesn't include any libgcrypt. The configure script said I didn't
have it, and gave a link to an FTP directory. I got 1.2.4 from there.

- --
Windows NT 5.1.2600.2180 | Thunderbird 2.0.0.4 | Enigmail 0.95.2 | GPG
1.4.7
Key ID: 0xF88E034060A78FCB - available on major keyservers and upon
request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRoqixfiOA0Bgp4/LAQMLZQf+Il+UXs904JZoid/kCF58bTOpHwPqKxDp
ecnshUyDiYvPXL2GnD2SrjvaPP8KmtxQjVsWNyZNaMTk+LYyJCIN6VBsvP2rThBL
TJkjy+GgJ3L1cixvhSnuT11tjxnQyYFCBBeu2O/H4vev/6wEEhrJIPZKMBVJ99Os
fp/iAnkcNU1T18u2kSxIHi574rt9r08CBL01bep2RV5u+OvAHsrxXUE7NnuaI6i2
VOC+NSOFFQOb1yozUE4rLxbAyPVjsPUfq8ZcURLXg6mx82A4TluvJqX0aoIXBkyu
uGcM8d3ew6g4nUxaJ77BhXpyEVxayZ5PTSMbcMUwIJA28tlU9I58qg==
=+tb7
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Algorithm 11

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
Charly Avital wrote:
> Under MacOS 10.4.9, I run gpg2 from a binary installer compiled by
> Ben Donnachie:
>
>  item
> 'mac-gpg 2.0.4-2.zip that uses libgcrypt 1.3.0 with support for
> SHA224:
> 
>
>
> $ gpg2 -v --version gpg (GnuPG) 2.0.4 Copyright (C) 2007 Free
> Software Foundation, Inc. This program comes with ABSOLUTELY NO
> WARRANTY. This is free software, and you are welcome to
> redistribute it under certain conditions. See the file COPYING for
> details.
>
> Home: ~/.gnupg Supported algorithms: Pubkey: RSA, ELG, DSA, ELG
> Cipher: 3DES (S2), CAST5 (S3), BLOWFISH (S4), AES (S7), AES192
> (S8), AES256 (S9), TWOFISH (S10) Hash: MD5 (H1), SHA1 (H2),
> RIPEMD160 (H3), TIGER192 (H6), SHA256 (H8), SHA384 (H9), SHA512
> (H10), SHA224 (H11) Compression: Uncompressed (Z0), ZIP (Z1), ZLIB
> (Z2), BZIP2 (Z3)
I built it from source from gnupg.org. No SHA224, no bzip2.
- --
Windows NT 5.1.2600.2180 | Thunderbird 2.0.0.4 | Enigmail 0.95.2 | GPG
1.4.7
Key ID: 0xF88E034060A78FCB - available on major keyservers and upon
request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRop5m/iOA0Bgp4/LAQMuygf9F1P8Fmxu9wZyItK8+aKJRktHrj2f+pp0
DZEQ+cUko5toSYW064c7oz9b+j3oAXVW0/8HOF3BPm+DFUbm18jHn+ZCQXjZhY+4
4VuWz7g8y75BrA0aXbU/orn2YHfxFykPgjzl8SjoOPp6nGx8kT8dUN3w60+yVVSL
cJm3SwAxpKlDMSt1ePxOAu1nMCodh2AmeqhZyJdVNlLu9b5NPLTeUQHXZp+rfyWW
nSpUBFCL7GLWcyVR9gr4y41dnZQlIM8h3BXHWm+6PkVaddMfHGYEqriBGe9sGZcY
kAbahUWkenbnkVyFiPw52xoeK9SuKoETetc5mll5WS33/ujWIyEirw==
=+hZj
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: algortihm 11

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
John Clizbe wrote:
> Also, this is a *known error*, see this thread, 'Algorithm 11 not
> available',
> http://lists.gnupg.org/pipermail/gnupg-users/2007-April/030974.html
>
>
> It stems from the fact that the cipher library in gpg2 does not
> have SHA-224 (hash algorithm 11) enabled.
>
> Amazing tool, list archives. 8-}\
I will remember that I need to search archives before posting
something relating to discussions I have earlier ignored.

Anyway, I don't understand. SHA224 is not in my
personal-digest-prefs,  and all I did was list keys. Was there
something special about one of the keys?

- --
Windows NT 5.1.2600.2180 | Thunderbird 2.0.0.4 | Enigmail 0.95.2 | GPG
1.4.7
Key ID: 0xF88E034060A78FCB - available on major keyservers and upon
request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRopR9PiOA0Bgp4/LAQPqbggA39jQmEoQki3walOa480fCuuwaloaSaPu
x88zQOyrLSevPNPUbskGbukNATT1SiDlcsXAfil8bzKPJftS7CrI6jBOgCwyaqrp
fZTTiDSnZwbjI9O7e9s0G7butAdHCwoYoyxIMWV5wZY3SWUxqYaJ3IJP6Z3fw8cF
Iptj+vvS63fva7ggyDsw/5iVW6li1eRU0wya2BofLvOPqMuUH8aSFe45LKt4hO4X
o2cNey/f43uVHmQhM7us9Cs1sk4XRz9JjNZpuGASEzbWeNvLWTU1dxDoWj7an5vq
rI81xgYKOoFywicQ+ROkYhe0m8ONIraBIohMNBjK4719lRfgY5HeEw==
=D2+J
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

FireGPG (correction)

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
There was a mismatch of GPG versions. I fixed that, and FireGPG makes
valid signatures with GPG 2.0.4.
The "algorithm 11 not available" problem remains, though.

- --
Windows NT 5.1.2600.2180 | Thunderbird 2.0.0.4 | Enigmail 0.95.2 | GPG
1.4.7
Key ID: 0xF88E034060A78FCB - available on major keyservers and upon
request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRolMIfiOA0Bgp4/LAQN7jgf6AqShM9yLKWxxgfk2Y2gzQGgXUsbzeEZb
3R509WWYzTfcmadih6Zav+R0RxaVlLh59OK3BWGjGfsK/8emKhOXKd1J7CE18GAj
uQhnEc2d2JcFp+YvEK3IEv9sbc60AzFjO/9F02EQbWvNYPXVwlPH3jwkbHefmKsb
D8rNyTfon1KzFsdwgpX5mIWwX15x+j6TTzKnFZHzqOTXGAGBnr542M1K5OZyy6VR
IGtFyaDrjfgkeZZQkAJJXB8UNCKQY6x54UDChIYFafoAkUpuZqHmGlMVp5QSovi3
C4UCNJPMigFbMQSbhaJzJYhT0ECJcbob0+88TQhbCspIOMBEdvmRbA==
=iI5w
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

"algorithm 11 not available"

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
gpg2 -k returns some public keys, then this:
> DBG: md_enable: algorithm 11 not available gpg: O j: ...
> this is a bug (sig-check.c:450:check_backsig) Aborted
(GPG 2.0.4)
I'm testing FireGPG in Linux, and entered a lower-case 'k' by mistake.
GPG 1.4.7 doesn't return this error.

BTW, FireGPG fails miserably with gpg2, although it seems to work with
1.4.7.

- --
Windows NT 5.1.2600.2180 | Thunderbird 2.0.0.4 | Enigmail 0.95.2 | GPG
1.4.7
Key ID: 0xF88E034060A78FCB - available on major keyservers and upon
request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRolFIfiOA0Bgp4/LAQM3NAf+Jn9lUAxOjJnPe2Za+BuKlz2ew0mIpktp
GmDf6PGb86Mpo5LlNY8i6CNwDc5c7mGvKljT+jkoe/eJQhq4PDfhlVIr0Ooz/vwz
eH4lhYY6bt334d8gOlvp+wRDSxUc+RTlLok3IP9Bjv6XZt1K0EbFLbzAWz3fSY/N
Rfe7JGjGt4md3UKYVux5UQI49HARGVtUmgJ/YBSTTT5SCVFlHN2tD5yV4Smwgmzd
0cNFbmQ4MylqNYx4re/fzq3imyNBSJLL0LPe+yqAdlASyysGR5yQNNWKNhfFuFHJ
RVHLSbJjp3C47+jGcFjLeV41NQISWPEbUQwPitFf/OyzvHxplTVywg==
=y9t3
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Two questions

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
John Clizbe wrote:
>>> You also may wish to specify the new key as the default-key
>>> along with various other helpful settings in gpg.conf.
>> I can't get the format right.
>
> default-key 0xdecafbad# use this key to sign
> default-recipient-self# always encrypt a copy to me encrypt-to
> 0xdeadbeef# also encrypt to my second key
I forgot to move it to the right place. The format was right. :-[
>> I thought of something: why not delete the old key outright? Not
>> only has it been revoked, but that email address doesn't even
>> exist anymore (which is why I revoked it).
> The only reason for keeping your old key is to decrypt anything
> that may have been encrypted to it.  If you delete the old key you
> will lose access to anything encrypted to that key.
I decided to export the pair, and then delete the copy inside the keyring.

- --
Windows NT 5.1.2600.2180 | Thunderbird 2.0.0.4 | Enigmail 0.95.1 | GPG
1.4.7
Key ID: 0x60A78FCB - available on major keyservers and upon request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRn76IviOA0Bgp4/LAQNKsQf+NstSaAv7JSz7pZwlxCY8m5S61T/dgbvF
nAD0O0+zpZoi/LGE/TCXHTpiiL5iK23L4zfjGXZlZW1zJOKbY0RQljDLfDnvNyH/
xzzIPutXB9G4weZ4ed0VH/Xp13FLHnUO5s+uWEWekjf1zss7gTv4lO0uikcipcaS
6iD//UmhzhRDyQCSmRHRXROClSeDT/lNK3r7mF+LOBkGI9pDDPSLV4exOeNcRAb7
Yp1h0DVQecCnWMOJTg3XMzQR4g88O+Y8k0vbyDYR3drf3HF+IzaGOKPmrTLyGdUd
p6cBTH2VwUgpAuxf60KxLgxEaQkbqXrD/+UDVrHAOsJ3ngXJ3C+Gzw==
=FJXl
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Two questions

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
Joseph Oreste Bruni wrote:
> 2. Your key ID will be a number (e.g. CD55 18C7) not your name. If
> the name you indicate matches more than one key, the first is
> assumed. The only way to exactly specify a key is by its
> (relativetly) unique key ID.
"Andrew Berg" returns my old key; "Andrew Berg
<[EMAIL PROTECTED]>" returns the newer key.
> I'm not sure if this answers your question. Here is another answer
> to your question with a different interpretation: If you have a key
> with multiple UID's and you want to change your primary UID, select
> the UID using "UID #" and then use the "primary" command from
> within the "--edit-key" menu.
They're two different keys.

John Clizbe wrote:
> If you have multiple keys that match a given search term, ie
> "Andrew Berg", then the easiest way to avoid ambiguity is to refer
> to the keys via the short hexadecimal key ID
Yeah, but I tend to remember my name much more easily than my key ID.

> 0xdecafbad
:-D

> You also may wish to specify the new key as the default-key along
> with various other helpful settings in gpg.conf.
I can't get the format right.


I thought of something: why not delete the old key outright? Not only
has it been revoked, but that email address doesn't even exist anymore
(which is why I revoked it).

- --
Windows NT 5.1.2600.2180 | Thunderbird 2.0.0.4 | Enigmail 0.95.1 | GPG
1.4.7
Key ID: 0x60A78FCB - available on major keyservers and upon request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRn1gPfiOA0Bgp4/LAQMUpwgAhBArAUPuyvfUlXPRem3zvk9x+Fd/epg3
jycxsSJr/RpMW94xKPZ4Sb2OmHLgWK8ua56AwgM2q6Hap/LuSKIXpqab/hZF4OOC
eKmbWAufhIPnfLaXbJZt7xTrM6TcvntTKq+LAL/UVqeER6omZhl2ty6OECQG0bXl
O50vK0JmojGnpdU240WSEJGUZjMjsQIuhsVeBzCL/uXKWx/Wgp+pMkZ1Htwz+z+j
WUT+bIicVwCBBJFGMLhJChL4TZ8sZtDFgBTDTrwS4PH9HyBTqYqHEMaG5KhYm8St
wdtgbTz/A5BadUAo57OaLWmTI5kQlUt54T6lvLK8HPJTCWhsVMP5Fw==
=pfJZ
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Two questions

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
1. Why is it using RIPEMD160, when my preference is SHA256?
> C:\Documents and Settings\backup\ThunderbirdPortable\App\gpg>gpg
> --edit-key "Andrew Berg <[EMAIL PROTECTED]>" gpg (GnuPG)
> 1.4.7; Copyright (C) 2006 Free Software Foundation, Inc. This
> program comes with ABSOLUTELY NO WARRANTY. This is free software,
> and you are welcome to redistribute it under certain conditions.
> See the file COPYING for details.
>
> Secret key is available.
>
> pub  2048R/60A78FCB  created: 2007-04-20  expires: 2012-04-18
> usage: SCA trust: ultimate  validity: ultimate sub
> 2048R/BBC5C9CF  created: 2007-04-20  expires: 2012-04-18  usage: E
>  [ultimate] (1). Andrew Berg <[EMAIL PROTECTED]>
>
> Command> showpref [ultimate] (1). Andrew Berg
> <[EMAIL PROTECTED]> Cipher: AES256, AES192, AES, CAST5,
> 3DES Digest: SHA256, RIPEMD160, SHA1 Compression: BZIP2, ZLIB, ZIP,
>  Uncompressed Features: MDC, Keyserver no-modify
>
> Command> pref [ultimate] (1). Andrew Berg
> <[EMAIL PROTECTED]> S9 S8 S7 S3 S2 H8 H3 H2 Z3 Z2 Z1 [mdc]
>  [no-ks-modify]
Before, it even had the order of SHA1, SHA256, RIPEMD160. Is it a
limitation of the key? If so, which hash do you recommend (I doubt
I'll be signing anything big)?

2. How do I make the key ID "Andrew Berg" mean my newer key for this
address instead of my older one ([EMAIL PROTECTED])?

- --
Windows NT 5.1.2600.2180 | Thunderbird 2.0.0.4 | Enigmail 0.95.1 | GPG
1.4.7
Key ID: 0x60A78FCB - available on major keyservers and upon request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRnvuEviOA0Bgp4/LAQMYsQf+JGh/gepHUN7xRS4F1NgqgUARO38sSDne
oCN+0dG3ss4muxoNrufhbYjREm6D4ucpOulaGgLb8T5atLP44CL+hCFBfoHJzqRR
zYmiyDUa5oX28H7DaS1WuTvSwo16McqpA8kd3WxgeaYSOFvStGr5/CXG6ZAI8iQa
ZXZxDar7jQLzM1FhaNuFeHmZpatMaI/6rFbdEjatoBYcJyY/lkb/xsSBqy5cg7PE
i7jnU3l9BTbb/CF2cV7RG3B/gVRHrHy1D6T/Tt9Ot90g4N1J+UMHj8a0kt/Lntyc
SwbwJMGByzAt7WPqhjmsW8idmDzraDTZ9+6ckUGokbB2rq/UjFqDvA==
=00g3
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: If the message is encrypted symmetrically...

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
> GPG creates a random key from a source of entropy such as
> /dev/random. This key is used in a symmetric cipher such as AES128
> to encrypt my message.

> This symmetric KEY is then ENCRYPTED using your public key and
> attached to the end of the message.
Ah. Makes sense.

- --
Windows NT 5.1.2600.2180 | Thunderbird 2.0.0.4 | Enigmail 0.95.1 | GPG
1.4.7
Key ID: 0x60A78FCB - available on major keyservers and upon request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRnl2xPiOA0Bgp4/LAQMKHQf9G8vnKIW1MWYHwW24fi9eiWfXqi04ZN6/
1zgKdzg2icAWUg7i5Ensec0DFZ1QkprtyO5J3K35oEv7n0Il14herNw9xQ4/BQCc
hIU6H06HnspdydDLRJYxLtJNZEGkZH7Nx5Il+t+rTm2F+Ozd41SCdN76ciEM/ENt
WmxSGzsEGgt4ggkB5Esw1J58Nj1uLv0+wBawc3pzZlccjLAW3NktH12GEwlCSnc7
L4U0NmjALwQaFL0IpGjSdNaG+Utm0NnPb1tjtJxdaH1MXvCnkyzFSu8tdnvgo0f+
GY088A0jARcXbZ493RgLpEuzxvZLO6L+H2QjN828CLrFEu5Zq7dFLw==
=d2G0
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: If the message is encrypted symmetrically...

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
Joseph Oreste Bruni wrote:
> By definition of symmetric encryption, you must use the same key to
>  decrypt that was used to encrypt. I'm not sure what you're really
> asking.
>
> When you say "public key is used to generate symmetric key" you
> lost me. Symmetric keys are typically just random numbers pulled
> from /dev/random or similar.
The public key generates a key that symmetrically encrypts the
message, which can be deciphered by its corresponding private key.
What stops Bob from using Alice's public key to generate a symmetric
key that can decrypt her messages?

- --
Windows NT 5.1.2600.2180 | Thunderbird 2.0.0.4 | Enigmail 0.95.1 | GPG
1.4.7
Key ID: 0x60A78FCB - available on major keyservers and upon request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRnlwc/iOA0Bgp4/LAQNX0gf/VNcoK0gWCaX77661Jkdai5WPbiZQKhtj
m0kvq6f/EObSfd2IlgN3QEddP3KzDODlxcY53sHMNaYfhEy8HmxAHADOSjpKxx7h
CtA2D26v+ollTwAq9i1D1pEJ1ibXf65VnEi2qSdNEkOkxjk60AJv2m017O7W3ZPh
jVVI3DxI3BoBJRL1ZXxfGwFN7dcXHgDL/o79yi5dqwEI2vIUVpN8F5lsgO1SBFZ+
ZupjjaXaCqep6TLyruDxr3lXJIK7E/MJWFVNphZ28hjorfZU7LShcLl12N7S02oP
ysQsmNdtqUosxiXFCOU7R3N5kjgtJGtx+mz2cNoROS3dfis4B6dTwA==
=/Kax
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

If the message is encrypted symmetrically...

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
Why can't I use the same (symmetric) key I used to encrypt (public key
is used to generate symmetric key that the corresponding private key
can calculate) to decrypt?

- --
Windows NT 5.1.2600.2180 | Thunderbird 2.0.0.4 | Enigmail 0.95.1 | GPG
1.4.7
Key ID: 0x60A78FCB - available on major keyservers and upon request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRnlVIfiOA0Bgp4/LAQO6egf/atnJhe45Ov+FXsbD/OSLuMEE95OUhlUl
7ttdIZCJ0jyT1kxAkqYi2gDUAj4SXS18wEstGEKZFHgJpKgFEhvCFAkSPTtpCqxK
H03xdOgMAUycwuy+fNbTvyJ8OjEoiBvtfmrf3cR9ntNDi83W6Z6964VlO8Q5qDIX
J33DHEncyW56v0612/cabXDUrUhciydRI4/7SglWhEfUhlUIPn6kRjOqRaFTRyZN
8nEc/5UGC46TDwKZTcQwPDX26/ldrLhkNXNfdx3dtSH9pDB49OG5AYPFnL9BzUX1
BJfn6xbYMLUnswL6xKfmMnkRUxqy0IO39tLBJBwabaGVQEPm3yX7rA==
=0Zfv
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: RSA 1024 ridiculous

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
Joseph Oreste Bruni wrote:
> On Jun 19, 2007, at 7:36 AM, Andrew Berg wrote:
>
>> I wonder how many more people are going to tell me this, even
>> after I've demonstrated that I understand the concept (I'm pretty
>> sure I even signed that message!).
> Just think of it as "review".
"Annoying" is more accurate.

- --
Windows NT 5.1.2600.2180 | Thunderbird 2.0.0.4 | Enigmail 0.95.1 | GPG
1.4.7
Key ID: 0x60A78FCB - available on major keyservers and upon request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRngIsfiOA0Bgp4/LAQO2RAf5AS+xP//XQl+AheoDNbCxgAdXcdsV3y5K
j9/JTIHPufpFZRKZQ9rZs/aLBy+QW266JLxgop/duXvRIsrvdnvH/xspoFolnlQS
tBdGpPz0nrQXi7sNH0ZUiYPfD09u2sc8+FmYnms95PhVyRb25JGs8rggl3lWqQ+x
yObnGLhg3FZKkGevNtrcF+2r0NchTTMMNnqyl87wuyu+AiPd0VrUBjFjCqsBMo4z
CUj4s8D4Ck1oZCVziVT0Xb31JonxxwRtWoLLStD1VVk0YobE096v3GHfFv3Pv694
lfgtWwFuAWqWTF5Ryk+5hW9Yt+MBD/RDsk+VTaItOfjJo2JN7Ai51Q==
=5SRJ
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: RSA 1024 ridiculous

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
Janusz A. Urbanowicz wrote:
> On Sun, Jun 17, 2007 at 01:02:58PM -0500, Andrew Berg wrote:
>> -BEGIN PGP SIGNED MESSAGE-
>> Hash: RIPEMD160
>> 
>> Atom Smasher wrote:
>>> gpg does support RSA-2048/SHA-256 (or even RSA-4096/SHA-512) which
>>>  is what i've been using for a while now. i'll sign this email with
>>>  RSA-2048/SHA-256 (my default on this key) just to show what it
>>> looks like. it's a big signature block, but not ridiculous and on a
>>>  reasonably powerful computer it's hardly a noticeable delay to
>>> work with such keys.
>> Try signing/encrypting files that are tens, hundreds, or thousands of
>> megabytes in size. Sure, your average machine can sign/encrypt
>> messages that don't even fill a cluster without breaking a sweat, but
>> if the sensitive data is large, RSA-4096 isn't a good choice unless a
>> gov't agency wants that data.
>
> Erm... when you use OpenPGP, or really any other modern crypto
> protocol, you don't put actual plaintext through RSA, RSA operates
> only on a hash or random session key for symmetric cipher.y
>
> =alx
I wonder how many more people are going to tell me this, even after
I've demonstrated that I understand the concept (I'm pretty sure I
even signed that message!).

- --
Windows NT 5.1.2600.2180 | Thunderbird 2.0.0.4 | Enigmail 0.95.1 | GPG
1.4.7
Key ID: 0x60A78FCB - available on major keyservers and upon request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRnfp7viOA0Bgp4/LAQPUzQgAnyT20Djkk74bd4pI7D3Mz+R8Wt1QFjTU
DmWyQc+r+5cwN4EPJ8vGwiUylkpWrSk4Y9FDJnANypX8U8kbWWU37OaJmhBGpNsx
436Jq/Ekw0t4k4OF5sp4lcXsiZUakJb6UzPoJO4G1UMKJsmRPNab306g9rFaLwEm
sR0TQ1+7OvLhUHnBWUcZwQmZg8U3K1abG4P55xjfEnX3BM7oWjMytD21rHAjSiDn
unFV6CwVc0lmiGAQsPGnnYg+NKdRoZQXFYC6zJwyqxmWXfx1G8OCDO9EaKymbAyC
RQ8grkZ6oo2J6qJRHLhPfOfd1GDMxn4X4NPdnw6b98nhndCHZeIWCw==
=iLn9
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: RSA 1024 ridiculous

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
Sven Radde wrote:
> The actual "bulk" data processing is done by a symmetric algorithm
> / hash function. You only encrypt the key to the symmetric
> algorithm / sign the hash value. Both are typically 256bit or
> smaller.
>
> In fact, the larger the data you want to process, the *smaller* the
>  impact of a larger key is. (If it takes minutes to hash a few
> gigabytes, it doesn't matter if signing the hash takes 10, 100 or
> 1000 milliseconds.)
I think I understand after doing a little research as suggested. Only
the hash is signed, and only the key (for the symmetric encryption) is
encrypted with the public key, and the message itself is encrypted
symmetrically. The recipient unlocks the symmetric key with the
private key that corresponds to the public key with which it was
encrypted and can then decrypt the message. Large file sizes aren't an
issue because the files (or messages) are encrypted symmetrically,
which is much more efficient than encrypting them directly
asymmetrically. Right?

- --
Windows NT 5.1.2600.2180 | Thunderbird 2.0.0.4 | Enigmail 0.95.1 | GPG
1.4.7
Key ID: 0x60A78FCB - available on major keyservers and upon request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRnWFGviOA0Bgp4/LAQME+Qf/S8YTteXkIWKFfzZr7d3ERRSiqOz7BEJX
JEKv12pve0U4WIPQW11g7nTomKVDOgk8ALMTaAkXA5x1u9KJ7KNV5y9ewMtxXPxz
a1jTWUzZgrJdReWM7t7FtOaLojPwdZbOoTtlcM+skektsCMs/XdStCO4xVTzKJwI
3G2sDpMX/pVNSpKSbfs842h4Px51DkQxK4M0Hg0lzO9nxC9+mAIUfHEU0PIeFR/s
ttsRA+autGY+HJOpDKwRWyDXkcOkjVZY4Dc7Jdl1OycYNbsXloyxJykBE2y1s24Z
RytmUc1Qbzk/d9D6Z9sE0h3zeU5pooyR8ic7INyvcpT+4l/U5EZe4A==
=RLRi
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: RSA 1024 ridiculous

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
Robert Hübener wrote:
> Andrew Berg wrote:
>> Try signing/encrypting files that are tens, hundreds, or
>> thousands of megabytes in size. Sure, your average machine can
>> sign/encrypt messages that don't even fill a cluster without
>> breaking a sweat, but if the sensitive data is large, RSA-4096
>> isn't a good choice unless a gov't agency wants that data.
> The work for the RSA-part of the algorithm is always the same: It
> only has to process either the hash of the message/file or the key
> for the symmetric cipher.
I don't completely understand. Does this mean that
encryption/signature time is only dependent on the hash, and that RSA
key size doesn't matter in this regard?

- --
Windows NT 5.1.2600.2180 | Thunderbird 2.0.0.4 | Enigmail 0.95.1 | GPG
1.4.7
Key ID: 0x60A78FCB - available on major keyservers and upon request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRnV7YfiOA0Bgp4/LAQOH2gf+POMCNDoSeQeGYuct0RTMPCaV2ByvB0wB
2uXCpGPqlA71pgd+wQ+UC/yEE0f+8v3j3lv7PBfM4e3q3HJhcsAAZJe6lcCYGX1Z
duF9yRfZdrn2TcCIL6URdMds788HWUyGurazzun+kJzUfEkd3hE0BPWyvzyBKV82
7c+ti7v2cPAVhcRx2ZDQ50ttVpbWNuIFzRWevS94ns6YQ/HOk9YW2ZB/wowEtOXk
nxivQqWgCEO0meRjPiw4uhS2TNdP5tnKrr0Yh6kXOf2t27L6PNU2JN8tRIA9DByH
muy6q5ZQcoF0P0uN/tvE2hZfD4tkXu6cvkZW/G60GEuWYSpdL51uAA==
=u+hz
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: RSA 1024 ridiculous

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
Atom Smasher wrote:
> gpg does support RSA-2048/SHA-256 (or even RSA-4096/SHA-512) which
>  is what i've been using for a while now. i'll sign this email with
>  RSA-2048/SHA-256 (my default on this key) just to show what it
> looks like. it's a big signature block, but not ridiculous and on a
>  reasonably powerful computer it's hardly a noticeable delay to
> work with such keys.
Try signing/encrypting files that are tens, hundreds, or thousands of
megabytes in size. Sure, your average machine can sign/encrypt
messages that don't even fill a cluster without breaking a sweat, but
if the sensitive data is large, RSA-4096 isn't a good choice unless a
gov't agency wants that data.
- --
Windows NT 5.1.2600.2180 | Thunderbird 2.0.0.4 | Enigmail 0.95.1 | GPG
1.4.7
Key ID: 0x60A78FCB - available on major keyservers and upon request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRnV3UviOA0Bgp4/LAQN7hgf/buVG0w8ddbzysqDJT/AA5tfFnmEbotzS
y+26YnXoGn1TgghyCL1h2GC4UXirFGWj50Ql5TuuJBR2xvt8/StRe1ZVYOKaHTs4
pytDLMyi4/K93uNdavnIt5NijYFmrJhFLTSm6/d3l+eEZl/d4jkovJc/YqjvsFOf
73lHUDbBDzvACjPi7maU4StCNgbybQ114Tm9mgtDwIzqtSkDODkV4kUtmVVFypnf
Tu4haS8KOOepsYTIGSxxhrTJOgI7E/iLDq/9dMUFYaH8XKpb2pJnHTUkExGYZdKm
mbopiCM8xKOalPrNaiCnkH0HbqOyNjdX8VwWe4CoGoj82UeJ99aCqQ==
=nEp3
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: RSA 1024 ridiculous

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
Remco Post wrote:
> Does gnupg support elliptic curve crypto? ;-)
I found this link on the Wikipedia page:
http://www.calcurco.cat/eccGnuPG/index.en.html

- --
Windows NT 5.1.2600.2180 | Thunderbird 2.0.0.4 | Enigmail 0.95.1 | GPG
1.4.7
Key ID: 0x60A78FCB - available on major keyservers and upon request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRnVXSfiOA0Bgp4/LAQMD+AgAuQNLsp7dQxl9jgiTjOejqIBBuRF2t7Z/
TvIU0HC7fztaJD0SaaX65IZlGM54+v8tmD90chBMtzM7AkrJchEQ/AAh6NmeMoGv
X/GgK8KhVgMUxDAhCQPYgqXLIvlXQPKrVg7I723ge93DKGwIg/rt7zjUfEM0rc7Q
2UYib/DePZzaq7olS9WOE4ngR5jBrhoLGJwsRrCjLWA6ayiLBkuaaQhg8N/I6eau
GKbgnIsZnh1RHgmm/QBr5qvRwZcNfAYAt78zp3gGMMMBaj5Bk+GsxX9nZXI8RU8z
L/m17BuSZsuD9q0KL/wAeldvMZhE8sNdy7jpmjYIc2fVgGgoitacDw==
=25Ca
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: RSA 1024 ridiculous

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
Snoken wrote:
> Hi, I just read the latest CRYPTO-GRAM, June 15, 2007, by Bruce
> Schneier. He writes:
>
> "We have a new factoring record:  307 digits (1023 bits).  It's a
> special number -- 2^1039 - 1 -- but the techniques can be
> generalized.  Expect regular 1024-bit numbers to be factored soon.
> I hope RSA application users would have moved away from 1024-bit
> security years ago, but for those who haven't yet: wake up.
> http://www.physorg.com/news98962171.html "
>
> I suppose this means that 1024 bit RSA-keys are ridiculous and the
> Open PGP Card is a joke. And what about all web sites protected by
> SSL with a 1024-bit RSA-certificate? Snoken
>
Anyone who's worried about an entity with the power needed to break
their messages in time to make any use of it has probably already been
using a longer key size for a while now.
- --
Windows NT 5.1.2600.2180 | Thunderbird 2.0.0.4 | Enigmail 0.95.1 | GPG
1.4.7
Key ID: 0x60A78FCB - available on major keyservers and upon request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRnR2PfiOA0Bgp4/LAQOpngf+JCg56eeHSN4KCD1UBW5AF7FjHMqy1pEO
pY9M31GWR/1hnaHG3b0/EYjGUXiH5Ev5zBlwKFk7/fDqHqcrw88A+WRcpbVx1oHs
ZQfjYUkqMic66sEwJ9HrXkBt1XQOFK6jsuVq7Ar3Irqy7rr2MzOYJcvpAgAoPJb3
34phVybR2UHS8N8JBe7qNXZvK0hkicH0mYO1a42HkWgsMU8WxpTAoDblVDIdCsRI
4wy0NP+j1i3LmY+SPwr/0U4yyYPp/6+0Y3UpVTHd8LZbEVVdsWJb6bZWAcDhEqTn
+xfXSRIDQeee/Z8icBvn4J6W4I4rHQBMdzON9mjcf8sfekZ5biyAlA==
=CeDk
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: decrypt and secret key location

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
Bruno Costacurta wrote:
> I received an email from you with an ecrypted message. When I tried
> to decrypt :
>
> gpg -v -v --decrypt test01.asc gpg: armor: BEGIN PGP MESSAGE gpg:
> armor header: Charset: UTF-8 gpg: armor header: Version: GnuPG
> v1.4.7 (MingW32) gpg: armor header: Comment: Using GnuPG with
> Mozilla - http://enigmail.mozdev.org :pubkey enc packet: version 3,
> algo 16, keyid 42531C9A0CC897B5 data: [2048 bits] data: [2047 bits]
>  gpg: public key is 0CC897B5 :pubkey enc packet: version 3, algo 1,
> keyid BBC3C45BBBC5C9CF data: [2046 bits] gpg: public key is
> BBC5C9CF :encrypted data packet: length: unknown mdc_method: 2 gpg:
> using subkey BBC5C9CF instead of primary key 60A78FCB gpg:
> encrypted with 2048-bit RSA key, ID BBC5C9CF, created 2007-04-20
> "Andrew Berg <[EMAIL PROTECTED]>" gpg: using subkey
> 0CC897B5 instead of primary key 2E604D51 gpg: encrypted with
> 2048-bit ELG-E key, ID 0CC897B5, created 2006-06-11 "Bruno
> Costacurta <[EMAIL PROTECTED]>" gpg: decryption failed: secret
> key not available
>
>
> So I'm still having the problem about my secret key not
> available...
Looks like a subkey problem. I used the public key I got from a
keyserver, which verifies that signed message.
The lines that say it's using a subkey instead of the primary key seem
to be the problem. Unfortunately, I know almost nothing about subkeys.
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRmbADfiOA0Bgp4/LAQN/QQf+IGqq1rs+aLBe+Xy4ZjbD4Za2wjnMGeoB
D9akrHJw+Tf7J/m+cqIYFrG/9lhm9Jf6sAdQRSYiUmuQ7qMl1fdaBkhnjrvOPw1o
NUWp2SBay0HPZGC9eCU36Lj+/wtuQZN9OR/2Y9YvEL92r/t9oT0poYtE0DSvxH4U
Md9orLNgBHwbi8N1Yp5jD2P6CtlkRKkLEDSg4QEh4f5LOP6GZRc90046ceJ4a+UH
xZviIsf5Zk8XdcJBb5xjVVOpGPvwftCZ2+D7QrFUu7a0rjNpjCVnlrmOe3w/+E4x
dQ8aAgL0V4DTkTS2ZSMtmH2f2A8xK9bZoaoymtTpTwuWCJIhgAOeHQ==
=kIIj
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: initial GnuPG install?

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
Claude Poliakoff, MD FACS wrote:
> downloaded and installed the Windows XP binary, tried entering
> gpg.exe in a DOS cmd window, and command not recognized, so off to
> Control Panel>System>advanced tab & added ;C:\Program
> Files\GNU\GnuPGwith no improvement. So checked again for
> instance of gpg.exe in search of entire system, again finding no
> instance thereof.
So you ran the installer, but no copy of gpg.exe was on the drive
afterward. Is that correct?

- --
Windows NT 5.1.2600.2180 | Thunderbird 2.0.0.0 | Enigmail 0.95.0 | GPG
1.4.7
Key ID: 0x60A78FCB - available on major keyservers and upon request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRmavC/iOA0Bgp4/LAQNXnAgAzAUuGMbcCA+gb8Wqkbo+/MPFDt4dHbmo
7ev+5CPzzXDKjNeVfR8nuRHv2oaj1s27bNh0BWDklkIFwiUWK+tPzimNjMdaoO1Q
wB3i+JUPHFJ9QMwVWB9oRcKTLkar+ardQLeA690fkj47JL+OHjWcNzc9ONxFi8On
hRuXepRVYb1TRlWD4F09T3KW2MoV+En1OJPdnXHjbbGdvssY9L0AdmwRZdulQmSU
+VjR3iXp1PHyBJ2vj1S+OyyX64zczCg7ygHMfv0h6P7Iem9soqnpBAOqMsKRdxnI
cHcO8QSIvuNGua7EO9O8A9+GjnVTu/xIltU0PoPPvN5qnVG9XxLXOg==
=h3gi
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

[Fwd: Re: decrypt and secret key location]

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
Bruno Costacurta wrote:
> Hello, I received an encrypted file called 'test.asc' (recipient is
> correct, hereafter it is truncated) but trying to decrypt it I have
> following error :
>
> gpg --decrypt test.asc gpg: encrypted with 2048-bit ELG-E key, ID
> 0CC897B5, created 2006-06-11 "Bruno Costacurta
> <[EMAIL PROTECTED]>" gpg: decryption failed: secret key not
> available
>
> Is it only key location? If so, how / where can I indicate my
> private key location ? If not, what type of problem ?
Your secret key should be in ~./gnupg/secring.gpg. If you ran GPG from
the command line and don't have homedir explicitly overwritten, that's
where it is created when you generate a new key pair.

If you run gpg --help, what does it say is the home directory?
If you run gpg -K, are any keys listed?
If you run gpg --list-keys, is your public key listed?



[forgot to change the address again :p]
- --
Windows NT 5.1.2600.2180 | Thunderbird 2.0.0.0 | Enigmail 0.95.0 | GPG
1.4.7
Key ID: 0x60A78FCB - available on major keyservers and upon request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRmRqNviOA0Bgp4/LAQN2kwf+PyPszDM1wFNhn+GrPB4fWTUn8FIlFEQH
nrtjbSoUOoKLbWzkrWqJqit7XZ2W6xfJMhZYSeaunLGyRPQ9bm1RgJlgUCfuR8kM
I1qwT5bCmDY6QcVuM0aw869DyJQJT6HdUI7fiBQeIOmPpujBJeT5+oi/jihaA34P
+j5ZLitgHLhycyQLy5Ryw1iaxmwMFLNZRGlwsLATHgO2j8BFxYQYuiXbV1Hcx5Cc
VJ4bGXrD/Frd7syMWGN3iG5MsRHnnGDfzhwJ6w0z6XQyg4rG4ClKas2gOQHnc8GK
lzjSYtDu/e3KtNlEq0jQxgmXTWvuuY6H5r+h5j9nt+1RdY4OCxYi8Q==
=2Yn8
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Can't run GPG --recv-keys under Windows Vista.

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
Henry Hertz Hobbit wrote:
>> 1. Vista considers the %ProgramFiles% area as semi-protected.
>> Since GnuPG is installing into this area, it is a reason for
>> concern.
IIRC, NT 5 and higher (and probably 9x) treat %programfiles% that way.
But, since I have never used Vista, I can't know what you mean
exactly. I know for sure that %programfiles%, %windir%, and
%windir%\system(32) are special in at least NT 5 and higher. I am
interested in how Vista treats these directories, though. If you feel
it's too off-topic for the list, email me directly.

- --
Windows NT 5.1.2600 | Thunderbird 2.0.0.0 | Enigmail 0.95.0 | GPG 1.4.7
Key ID: 0x60A78FCB - available on major keyservers and upon request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRl7XU/iOA0Bgp4/LAQNkrwf+PLitsHAxn2N0pHj8h6M2ZAoPKge+rvG/
sCHzYNA4x+G9d2r9UFT/VIOA45gxSAKc1ohQJM5Wl4K4NtPxNcqaCX8d5h2tiR48
C/wOh0MFwF8iYq2u5iMKMmKAHsRK7ZOCdGTAbaHsPEarNVEGrX8E0gPAjLhQE+NU
ALUWsoC5/F2Dc/pdo0r6GjM4ge8Oiio3LdXKZ3tBXf04jauZbbeHgUDuJksUxgyM
oDU2ey7KlkGW+C5Q8oXz+VyMXLKTQdBoSb/Y6ELWdF2hleyOM9uGZTxqONi8oOJm
jyIX9tj8QqI5k9Z1nYFby6juvZ4EUXFJ+gb4QCmGiFytjsrCj+sEnA==
=1GiY
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: easy way to confirm email validity

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
Peter Todd wrote:
> The *only* thing included in the hash is what is between the START
> and END bits, that's it, no headers no nothing. I'm not positive,
> but I belive the MIME based PGP is pretty similar. Of course, this
> means that you can fake the headers without invalidating the
> signature...
Can that really do any harm? Besides, of course, confusing a novice
recipient.
- --
Windows NT 5.1.2600 | Thunderbird 2.0.0.0 | Enigmail 0.95.0 | GPG 1.4.7
Key ID: 0x60A78FCB - available on major keyservers and upon request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRlYcVviOA0Bgp4/LAQPUVwf/boZj//EEsRnK96O9D+Uot/gLW52S6t5M
tqw4u0CdCcyZj+7iTETgHRsVdqkXUNfkEc1UN0Jo0RteAajnVIpgthE+IeoJlKO7
CaX6Ux+0fvl0QILno0jrkm0XSeAKCypU7FGwcEpfXavltkwWaOlpGc0sEv25vb+8
O19I3QVXZQuVnrzUr2VH2fX7D9boRj1zDfLWJDPbjXYVVTmAH4UCBfC1mkjcCTIQ
xyiWLvdi6M2qiBOKY9CxF8h7Fs0dhE//jnKbkCCyELpv9g/93174EvMMw7vGCeKD
5GD6NskVeEySlFSDEgJkf69w0dSSyxZ/mcQ3vn6mme/Ow1pM5RxwOQ==
=s4o7
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: decryption not possible?

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
engage wrote:
> I wasn't prompted for a passphrase!
Perhaps the message was only ASCII-armored.

- --
Windows NT 5.1.2600 | Thunderbird 2.0.0.0 | Enigmail 0.95.0 | GPG 1.4.7
Key ID: 0x60A78FCB - available on major keyservers and upon request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRlXZHPiOA0Bgp4/LAQNfYQgAlcaXIDdrGl/3+6F76EBQsfEUeUcmX916
p+ve9bi1bbD9AFiDRLLvRnQ8rHaNc7+opl0A+u3EBH3waSf1F7ikyo+2lSh2eiqK
a3cmkG+KDV7KI8etYLXKA03Ys68Ri6bh8X8O4fX7LTJP89PiAzaOvg+l0HowCmjZ
2qT72WLRvFaP6oYgklhjzotYpR6oAIzApWVK95t5oVjQiykH8Y1/GkzxZ7y67VR9
yM2eLTSQBmls8+fAuhUZxXAR22ukCsC1wsGUFdrdqBfQsWzTqiEWFr0GaG4+EEm9
Q55wtoprXF5htbsKUjfhBc2s6DpNW3s8n0nAXVsmRauTEPgagLpyLA==
=iViR
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Feature request: load gpg.conf from the same directory as GPG

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
John Clizbe wrote:
> FWIW, the "look for gpg.conf
> in same directory as executable" idea, falls apart if you ever need to have
> additional copies of GnuPG in the case of different OS or CPUs.
There's not really a directory that W32, Mac, and*nix versions will
share without tinkering, so everything would "fall apart" in that
case, wouldn't it?
> Storing user data together with programs is generally considered a "BAD
Idea™".
Only if there are other users.
>> It's a shared home machine, and I'd rather not even use the
>> user-specific directory on my own machine.
> It would be just as valid to leave gpg.conf in its default location and
redirect
> GnuPG to the keyring files. There's really nothing 'security sensitive' in
> gpg.conf.
I know that. I just don't like having things in %appdata%.
>> I'm not entirely sure how to do that.
>
> For illustration, I'll use the location I use for my keyrings.
>
> If only using GnuPG in a command window...
>
>SET GNUPGHOME=O:\GnuPG
>
> If you only need to use GnuPG with Enigmail within Thunderbird, you can
do this
> using Enigmail's preferences. From Thunderbird's menu bar, OpenPGP -->
> Preferences. If the 'Display expert settings' box is unchecked, check
it now.
> Now click on the Advanced tab. In the box labeled 'Additional
parameters for
> GnuPG', add '--homedir O:\GnuPG' (without the quotes and changing to
whatever
> path you are using).
>
> To set it for all your applications, you can define an environment variable
> using Control Panel.
>
> Control Panel --> System --> Advanced --> 'Environment Variables'
button. Under
> 'User variables' at the top of the panel, click the 'New' button.
>For Variable Name, enter GNUPGHOME
>For Variable Value, enter the location you are using, eg O:\GnuPG
>
> Click OK three times to close the applet. BTW, right-clicking the
desktop's My
> Computer icon and selecting Properties is equivalent to Control
Panel-->System.
> (Start --> Run --> sysdm.cpl [OK] also will work.)
For some reason setting the variable via CP didn't work, but the set
command did. This is especially strange since I set another variable
via CP, and it has worked the whole time. I was familiar with setting
such variables, but I did not know that GPG would pick up on
%gnupghome%. Of all the docs I read to try to solve this problem, I
just had to overlook readme.w32 and news.txt.

- --
Windows NT 5.1.2600 | Thunderbird 2.0.0.0 | Enigmail 0.95.0 | GPG 1.4.7
Key ID: 0x60A78FCB - available on major keyservers and upon request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRlRBLviOA0Bgp4/LAQOJXggA0BJibQenFCblksl9Y2cbJCzXMKdRN43q
yjLNUxkegsws74LBdxeUGmEiRDIZ1mn4TE5DSqPzlzO9mSrtDPaJot8kldK4pQd0
Smp7goV3h7QMX3mb8oqSNJSzhw3BlwyvrunVJwqIrvz+hRe/PP5OYBeY/1Wz3HWQ
NYkv5/mdMI8b3K/3owx2tS/F8bNWk9jSSDIAFU16bAKB/EGOvovzE60pEja36TQa
idmgqZWIT182wcAI6N0MnXTsiLTkTbOvuKNoHdwUT01g5WSlv3VmXKokONostagN
OI44Uy5dTKXhvOGy33L08ntZeB+HvG/eI7eggGEvaAwak8nRwogq9w==
=NdqC
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Feature request: load gpg.conf from the same directory as GPG

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
Peter S. May wrote:
> Andrew Berg wrote:
>> In instances where GPG is used on a portable drive and used on
>> different machines, it is much better to have gpg.conf read from the
>> same directory as GPG rather than read from %appdata%\gnupg or
>> ~/.gnupg. Just to have it check the same directory, then
>> %appdata%\gnupg or ~/.gnupg would be a big help.
>
> There's been plenty of discussion on this channel concerning whether or
> not you even should use this stuff on computers that aren't your own.
It's a shared home machine, and I'd rather not even use the
user-specific directory on my own machine.
> Assuming it's an okay idea, set either --options or --homedir, or set
> $GNUPGHOME in your env.
I'm not entirely sure how to do that.

- --
Windows NT 5.1.2600 | Thunderbird 2.0.0.0 | Enigmail 0.95.0 | GPG 1.4.7
Key ID: 0x60A78FCB - available on major keyservers and upon request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRlNUJPiOA0Bgp4/LAQNstQgAs07YlX9D1rm/ayGtXY8fFaYY918jKFTZ
az9g/sVXLM+l4DO6SyZ90fKmy1OJ7zyCHTMWuyPj0Js5DgTvcbHS+wyNm1JrM8f2
hWxUP4t8pNgVJOQBijXAp8gKgJy+Tu2HeLqPYy11eVBsPyI18j4lKlL5Dx8+Eu/6
Mfpu52ebSWtMUTm4z/Uyio4dtukpTh83jIMHTk5dXFJmLrIKDimNVOv/2XFRd+5q
dsQOmdOBGaIjQ0uTlFrzEeTlaQOqOFVrrp8R8YPFrmcR1M4YjWq0ihjPsgNecdpi
QSP0AMNqj/HF7kCRgZsu5NiLHmf1XJVhoTpFBKyo6n/tzjSEOuPoig==
=BvC4
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Printing Keys and using OCR.

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
Benjamin Donnachie wrote:
> David Shaw wrote:
>> For paper to last 100 years is not even vaguely impressive.  Paper
>> regularly lasts many hundreds of years even under less than optimal
>> conditions.
>
> All seems rather academic to me as I would expect the current encryption
> algorithms to be rendered useless by then.
Computing machines do have physical limits, though. Just because the
last few decades have shown an exponential growth in computing power
doesn't mean the next few will. Perhaps RSA and DSA/El-Gamal keys will
be breakable, maybe they won't.

- --
Windows NT 5.1.2600 | Thunderbird 2.0.0.0 | Enigmail 0.95.0 | GPG 1.4.7
Key ID: 0x60A78FCB - available on major keyservers and upon request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRk354/iOA0Bgp4/LAQPadAgArBwwxEj3+N4LG87Z8oh7k4N/NIMyQrmf
5AXRo5OBL3CIM5zeDe+mAUVktA1nZQw/qa6X2x9A4tFQIik6QEf7MWvt/+0Tor2r
zK0pVKh39xMQ3zztHI5CQMghn93eCNIcMZIWrqMhWntZzIQdpr6knHfdpqgXLGx4
P1q+Gy8oRu9MrzQlgNHE1vyJ6rgFc1clMS1YbcCZiMz2HvFilXZl6QAXbVyZQuDx
ZzwpJWROCLCPPUmA9zNd3JRJ0QKe6ioEeTPL4lH2Y17A/VLEjLeOFawdSizKkMqr
kXqAEDvdnPUYbCzIq5M2dmhN3aW7kgrDVsSIhD/QqxW5umAI3QcubQ==
=m5FK
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Printing Keys and using OCR.

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
Ryan Malayter wrote:
>> Aren't optical discs supposed to last for many decades if stored
>> properly and almost never used?
> Theory and practice are often far apart. The price of CD media has
> dropped so low that quality is often an issue. CDfreaks has many
> articles about this topic.
I'll check that out.
> Also, who is to say that a CD or DVD drive will even be available
> decades from now to read the discs? Could you read 8" floppy media
> on any equipment you have or can buy today? Could you find a paper
> tape machine to read data archived in the 1950s?
>
> Anything but printed characters on paper will likely require some
> form of archive maintenance over a decade timeframe.
The last 3 generations of optical discs (CD -> DVD -> HD-DVD/Blu-Ray)
have been the same size. The latest generation players support the
first generation. Floppies, for example, have changed in size, and
each generation didn't care about supporting the previous. Even as
optical discs continue to see improved formats, previous generations
will be supported. I don't see DVD or even CD support to disappear for
a very, very long time. Besides, it's not like one's hardware will
spontaneously upgrade from out of nowhere.

I do agree, though, that an electronic storage medium won't beat paper
in the long run. A piece of paper (in a locked box | out in the open)
is as secure as an unencrypted disc (in that same box | out in the
open). And encrypting a disc isn't worth the hassle, except in certain
circumstances.

- --
Windows NT 5.1.2600 | Thunderbird 2.0.0.0 | Enigmail 0.95.0 | GPG 1.4.7
Key ID: 0x60A78FCB - available on major keyservers and upon request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRkyaZPiOA0Bgp4/LAQNRrQgAipnZkYQ8WBQLZNm94/KiyvNGt1QDhInm
ZfAFAtuYf8Pt2ml0wMNbPI5EvQTXJ8BOtaCVbxHTZKF5PUU7RE0C40n0shtah2Gk
oDRXUHqSp/UZ+StWE7W3TcVaQgEZrXZ/bCPTDbR7wKy0jmyUGNQmbUlxcKTIY5Uv
N0Li6fb1pIvw802iRRmJZMLmLIFKf6YbwoB0vQbK0ze6uAgGWV7OGEajQnpbUuXx
yLzXisq4DbvwfJr3B/6cSyJFJf4i2bPauloQ7M2ELIRYU75ZzpvuBCwO9pJOuoxW
eplVZNykOrgfYJicv9lkwgCU8atKeWcsfP4205bUaMbfX96oIF8o+w==
=W5ua
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Printing Keys and using OCR.

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
David Shaw wrote:
> Most of the storage media in use today do not have particularly
> good long-term (measured in years to decades) retention of data.
> If and when the CD-R and/or tape cassette and/or hard drive the
> secret key is stored on becomes unusable, the paper copy can be
> used to restore the secret key. If you have the passphrase but the
> secret key that it encrypted was on that bad CD-R, you have nothing
>
Aren't optical discs supposed to last for many decades if stored
properly and almost never used?

- --
Windows NT 5.1.2600 | Thunderbird 2.0.0.0 | Enigmail 0.95.0 | GPG 1.4.7
Key ID: 0x60A78FCB - available on major keyservers and upon request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRkxhkPiOA0Bgp4/LAQNk3QgA5OVwjwAKGcm6hFf1uc2F+YTOJn6L+xDt
uy45TxnA9TJkgGi44jqUdpOP9EbjHpTAvKi0P0pXQ5+LF6AY+8EPA4BhwrYb+fuc
7XLLpxonw7ANxsOSBE8yNOCD9G/K5uwQc4Ot+sbj18hgd7qW6wJdcAQWw+JYu4jL
nD5Y3svWNevSOoYKEIbrl93F55H/IyD3AfQY/M7KPf+A9fBVlEOTUtVMI8Qtewif
igKVK5UnobnBGSsIqMVDLD0VVUN2NkYMEiWnVJju1Jxt7sLwD8TsTo6+sIM9Pmda
88MEtOMkTYV0Doxlz4u/8F8pAvdk1VcKhXEJ0SjRbehWo/nPGQLBlA==
=4ZkO
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Feature request: load gpg.conf from the same directory as GPG

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
In instances where GPG is used on a portable drive and used on
different machines, it is much better to have gpg.conf read from the
same directory as GPG rather than read from %appdata%\gnupg or
~/.gnupg. Just to have it check the same directory, then
%appdata%\gnupg or ~/.gnupg would be a big help.

- --
Windows NT 5.1.2600 | Thunderbird 2.0.0.0 | Enigmail 0.95.0 | GPG 1.4.7
Key ID: 0x60A78FCB - available on major keyservers and upon request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRksMuviOA0Bgp4/LAQMq+wgA2h266iXjST8D8D/MqYPsoO6RL/5Pi2fB
TId1EszILBksENEIOzH+ReHCWAl8B/nsVUi4z5jTiCBC/+9fkHxqd77JWk46VpA5
Mbh+uMSM/udwFISTNRzcc8cSMugfLAZTVsG87p2TWPikcLgx51gyGUTPrYZ9wff4
rNLcBYHmUPr9tHapKS3sEFw4bkuDBfzl03mxUIAdohjjZkIEoE4CnXLTyA6RrLql
VOMcGAHNHsDad6IznznU/bFz2hSr9vLhvMKZPajeEPbYzqu9DYkvVo8QSiXE8gOk
UYoxVc8vDnGcYMtJ6+VnI6837ZPZLclAjA4OKk/TDWH1Xdne/FKyoA==
=iGHZ
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Old PC as Hardware Security Module?

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
Sven Radde wrote:
> unless you can calculate SHA-1 values in your head...
I know it's off topic, but how hard would that be? I've never looked
over the algorithm.
How hard would it be to calculate MD5?
MD4? CRC32?

- --
Windows NT 5.1.2600 | Thunderbird 2.0.0.0 | Enigmail 0.95.0 | GPG 1.4.7
Key ID: 0x60A78FCB - available on major keyservers and upon request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRkipEfiOA0Bgp4/LAQO10AgAgZ6sQ7TsaT+H2gIdt9GFqNiNoasK+UUQ
jz8c+GaGcPNP08cHUAPlQHfaxoXF/OdZO6fuuPGtkwuaf+hL64VYG25cNRtClDu8
fvZXppEm1RqAzOoauEkMLm0ynpB3fE3wGyNh5GM4x12DIOwTSMM2MHquxxk5GlIW
N6mm+m4i08CxlQJ8syWmGlzwd1yNpSjeu3lp7OhwjHGUh+FNavy6Y2/ligGgYU61
yGSzcjszRBXo2JaFeBrdILJKOu6wUpuE+cu/OVy+Ov+v80Qc8ohu+a/Bc8uRVtgr
2ZaitIBDkI/f5WR/lpQDeiXcabFBphrA3uAivMUX/IHerh5deCtjbQ==
=3BdY
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Old PC as Hardware Security Module?

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
Robert J. Hansen wrote:
>> I've been considering getting an OpenPGP Card, but there are
>> three reasons I'm reluctant to. The main one is that I want
>> something that will only do one signature or decryption at a
>> time. That way if my machine is compromised, I'll only suffer one
>> hit before I'll notice something's wrong.
>
> The OpenPGP card actually gives you a substantial advantage in this
>  situation.
>
> Let's say that you're running GnuPG on a PC and I'm able to subvert
>  the box.  I put in a keylogger and snarf your passphrase.  I also
>  copy your private keyring and mailspool off the box.  I can now
> read your mail without ever touching it, except to copy a couple of
> files and install a small app.  You're none the wiser.
>
> Compare this to an OpenPGP card, where I have to find you in a dark
>  alley and have a conversation with your kneecaps to get your card
> and PIN.  You will most probably know that something has happened
> to you.
If you have enough physical access and time to compromise a Linux box,
install a stealthy keylogger and then harvest the logs at a later
time, all without being caught, I think you can snoop around and find
the card and compromise it. Then again, I don't see how you would have
access to the mail if you get the card and its PIN, even if you don't
get caught, without access to either box or the mailserver of the
email provider assigned to your victim (and in the case of the latter,
you'd only likely have access to new mails anyway).
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRkhy6viOA0Bgp4/LAQMD1QgA0b/+0Snz4UH/7McPZ6L0jMbzOmfyTq01
FfYkrVDRSJ4bAW2J63FAedJ/gEdNisyNgu76I6rsTB1WTg3bKQ3t8NkqauRBRUEn
bXnAkMH952kNCPaoNNDfLsVBkRb5buXYQTJGXqR6Cji/VY2b+IMwAMQC45bGgHBK
T/N3TZ6imuwG80pmha48StRdyXdXS3YYH7m6ZswAWnzl4P8EleMSUe6nyCarPTeN
3R3g2rvPjQLLA2gIR6lxL4A//g+Un7lwvegdsSNgzoA3mIePKmpAdPwiIAESPqYL
aRRozgseOjXnt5ip8Z0oBAJnt4+xaQ16NvI38LaCt0rc+eP21BNixw==
=W5n1
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Extra key best solution for very insecure locations?

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
Janusz A. Urbanowicz wrote:
> On Mon, May 07, 2007 at 04:27:55PM +0800, Jim Berland wrote:
>> Hello everybody,
>>
>> I'm trying to find the best solution for using GPG on a USB drive
>> while travelling.
>>
>> I read the FAQ about subkeys which suggests to only use subkeys on
>> insecure computers. As far as I understand this, though, anybody who
>> got hold of my private subkeys would still be able to read all my
>> previous mails. The document was obviously written with workplace
>> computers and such in mind, rather than heavily infected Windows PCs
>> in internet cafes.
>
> I suggest abandoning carrying the key, and taking a good look at
hushmail.com.
Which is probably even less secure. In order to compromise a
PGP-encrypted message (without breaking the encryption), one must have
the private key and passphrase. In order to compromise Hushmail, one
only needs the passphrase, which is easier to obtain remotely. The
former requires a silent keylogger, knowledge of the key's existence,
and a program that will silently copy the key. The former requires an
IE data miner (not uncommon) unless the café owner has another browser
like Firefox or Opera, or allows users to use a portable browser like
Firefox Portable. A keylogger would work for the latter as well.
Personally, I wouldn't take the risk on a machine that I consider
insecure.
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRkDzGviOA0Bgp4/LAQOHTAgApdF9UKbbhyXdU5OdLuSlYHQ2eZ+raWel
vFvnjOFq9NkZIl4YOm8WuZi7Al5Xv7lRzebjcq+4nZOmRkBCY5JnD58bjPFUp4Yv
/B84T/scOV9bfqN2X0BVAA5QMmmy0YQFL9LGPCguidVHO8NikgJpIVaGyBijOiHW
p52AOXSgNrV6U5pLagJffRwnIWEMD+0UGu592YJ6ije9MUqUEN+v3hUQyw1HFtUf
B2KWKQ+apZ3k5muoV0wPjmVPp8kHD65JVRUM90kWiZBRt9gDZzvIBfQwjGFWxhdg
ciTFrn3Y9oXI9pQYsiJopHPKziQeSDLhvLpTfVq1pbfdvgkoSmgntg==
=m4BO
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: W32 version tries to write to /dev/null

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
Werner Koch wrote:
> On Mon,  7 May 2007 16:58, [EMAIL PROTECTED] said:
>
>> gpg: can't create `/dev/null': No such file or directory
>> gpg: signing failed: file create error
>
> Fixed in my working copy by using /dev/nul instead
How would that help? /dev/nul can't exist on a Windows system either.
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRkCxOfiOA0Bgp4/LAQM3FwgAlX296BiqMZmECGjlNcDlt4bImcfOYzXH
ZVF0xV5JYuadC12VN38p7Pzi6eAJOgn/WAbaFNyN5gYdfnIEALi0RMT+Hd+4yngi
jArSmJSEBqvtXqbKAlqqo+dBDIfTRufFs5Mpo+xc1V8xtJdFbOIks0s9Qz5sgE3X
fC2joB5wkB2M6aU7DwF60jTwLU5ivMmleG27E+Jjlbm38zQF5NQ7ZG4lcD6hWAuO
MiRy1EUajR6wNmQ/O+HqZgt3w5phDMk+cbZ69sU4Hp6B6ndd0AWe6X3NXvqOyuyQ
XktuaGDkNZaJcGYLvLQDR3jIu6lWoBJrK4ADXiRT+7nuQEOn8Zt4+Q==
=LJ28
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

W32 version tries to write to /dev/null

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160

I used the -n switch to simulate signing and it returned an error
saying that /dev/null doesn't exist.
gpg -v -n -o "somefile" -s "someotherfile"
returns
gpg: can't create `/dev/null': No such file or directory
gpg: signing failed: file create error

GPG 1.4.7 (W32)

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEVAwUBRj8+p/iOA0Bgp4/LAQMkRAf+OdKlzmR5w4nkt0CRiYW6ISoOT7LJoYrg
2y06fus00rl0/nWuBIsrVYt48TuJdhI7TDsYydn5cvfClNmCE9eyTBj/BwcmFd7h
m7TVM9Hlqa2TVI5ljMZU4TrPH2d1NnYjkOMLKyfvfLF6z7IuPULUn0LJo5rsJfaN
TBY4XuJcV7UEKEIA4HNhkVo10qV3ftiyNdGU17BdXrscgVHUFwSCbfj3PbsHq+Pc
FpLJLaix9IGAm69Yl+AL13tczTN3F5wYTHbua0j+JMEMnDGEwIGHKdU1ERo9QxIN
c5thukGCmut96YtYHHE2bYOgQSg+bdxwRlNK7GcoH4YYRb+BxKe/bA==
=FcRR
-END PGP SIGNATURE-

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Generating and storeing keys on usb pen

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
 
Robert J. Hansen wrote:
> ... Moral of the story: be very careful where you go plugging your
> USB tokens into, recognize they are infection vectors and infection
>  targets, recognize they can be compromised, and act accordingly.
Or better yet, use some good security practices like setting up a
default-deny system (on one's own computer), especially if running
Windows. Most non-exclusive computers (i.e. machines that are shared
among, say, a group of employees, or a school/university/work machine,
as well as public terminals) have adequate protection (like not
allowing root or near-root access to just anyone, or something like
Clean Slate (the computers at my school allowed admin access, but the
hard drives were rewritten upon reboot unless the program was
disabled)). As far as I know, malware is pretty harmless without
elevated privileges.
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRjYjf/iOA0Bgp4/LAQMuggf/bx7M/oW+rao+VLpUUj6I+yJ3L4z8TxZj
/R/FlO4pva+1pqFr41ThMKpq/5f6d+eEmJj2tvFNA/0GwmhhfZz4w9tzqs1xQuCR
hBFYwaCUckOytvuPhbCJBaaFWLgP/V7tdATt6HLHfjDw67zKO+ne5ntpFJL4atIW
d+IVogxAlK/lBEJpCwDbmiQs0oh7lnCLKcuPo6hVsKfCAU6VYgB+I+5cC8K6pk38
2EqZxuDQVQ5tczZBscf7u2kLpDO/hkFopPTwikbLSLPr83yYCLiPcN7cwZVQN2nW
K9TCPw7z8P3nTLBMxFwo2lf+C5Zsnyr6QOqMNw57f8K3CE33Im5f4g==
=xqhn
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: GnuPG incompatible with windows-vista ?

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160

I think that this problem came up before, and that one has to rename
gpgkeys_hkp.exe to gpgkeys_curl.exe (or was it the other way around?; I
can't remember).
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFF9tuZQkZZy5xsw6MRA4WBAKCRy9wV7k3r9HadSFSMS3QtGv7hTACgtCT7
BxNDJ4e8ZLe4UeIXAaxx6ks=
=w9Ee
-END PGP SIGNATURE-

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: no-force-v3-sigs

[Andrew Berg]

Laurent Jumet wrote:
> Hello Andrew !
> 
> Andrew Berg <[EMAIL PROTECTED]> wrote:
> 
>>> owNCWmg2MUFZJlNZdJmIEgAAe3///nJoRmAH/Niv/3AAf///6gBYUQJIRKgCBAGA
>>> EDAAMkCwANlIioNAGmgAAyAAAaA0aAAB6hoaA0YhwaNGgaDQGTEBkaGQABppkAAA
>>> wQAGqZNBPFTbVPQnqaBoNGgZNMZQG1AAG1NAPUNo0IVjWWSuyM1TmmqY8NR90zKy
>>> 12jrMdhEbD0z16J17Xgxg4pkASOuseqqEE7yFL5TI0IRut11ZSQlwrO5yqFlRiWI
>>> oY3zLE4RvcHjpHWA5AQG3yxrwPgstSoX0dgQSpQbHiPy1Cnr8fbsuCJPXTOehj0Z
>>> HY7dPzuHCGoCRUIP72fFyI84UC2j0fkC6L6ds7QadpOXxi5MgNxpy4WHp689ua4Z
>>> dcig5SYaqfS4eS3xgx/u8ixjEslqSWAVBKMHlHwHf9KQIGTHAtOgciCS9I1P+LuS
>>> KcKEg6TMQJA=
>>> =WqE0
> 
>> No one can read messages if you encrypt them to another's key. ;)
> 
> It's not encrypted, only armored !
> ClearSign signatures not always work, charset problems I suppose.
> 
> Before deciding you can't read a file, just run GPG against it and see.
> 
How was I to know?



(I always forget that gnupg-users messages show the original sender and
not gnupg-users@gnupg.org or [EMAIL PROTECTED] as the sender)

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: [Announce] GnuPG: remotely controllable function pointer [CVE-2006-6235]

[Andrew Berg]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
 
Ludwig Hügelschäfer wrote:
> Enigmail didn't even indicate a signed message :-((
Same here.
- --
 /\_/\   /\_/\   /\_/\
( o.o ) ( o.o ) ( o.o )
 > ^ <   > ^ <   > ^ <  Don't make me send my ASCII kitten minions.
Key ID: 0x9C6CC3A3
Fingerprint: 5474 04A6 2BAC 7138 204A D61B 4246 59CB 9C6C C3A3
(Portable) Thunderbird 1.5.0.7 w/ Enigmail 0.94.1.1 and GnuPG 1.4.5
Windows XP SP2 Home Edition
Every time you send private information unencrypted, a kitten cries.
So won't you please, please, think of the kittens?
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.6 (MingW32)
Comment: --
Comment:  /\_/\
Comment: ( o.o )
Comment:  > ^ < Meow!
Comment: Key ID: 0x9C6CC3A3
Comment: Fingerprint: 5474 04A6 2BAC 7138 204A D61B 4246 59CB 9C6C C3A3
 
iD8DBQFFebW/QkZZy5xsw6MRCIL3AJ9Ut8rwdmYw3nq/p9KDv6Goz5b65wCdFrdh
MRk5kRK9LR19b9dvNRNP8RQ=
=nP0X
-END PGP SIGNATURE-


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Logo ballot reminder

[Andrew Berg]

Joseph Oreste Bruni wrote:
> Werner, your original ballot announcement ended up in my "Junk" box
> accidentally by my filter. I only noticed it after a rare venture to
> look to see what was there. Perhaps the HTML email is setting off
> people's filters?
I don't think HTML was why, it could be because of the number of links.
Were there a lot? (it arrived before I subscribed to the list)
Doesn't really matter,though. Just add [EMAIL PROTECTED] and
[EMAIL PROTECTED] to your address book.

-- 
 /\_/\   /\_/\   /\_/\ 
( o.o ) ( o.o ) ( o.o )
 > ^ <   > ^ <   > ^ <  Don't make me send my ASCII kitten minions.
Key ID: 0x9C6CC3A3
Fingerprint: 5474 04A6 2BAC 7138 204A D61B 4246 59CB 9C6C C3A3
(Portable) Thunderbird 1.5.0.7 w/ Enigmail 0.94.1.1 and GnuPG 1.4.5
Windows XP SP2 Home Edition
Every time you send private information unencrypted, a kitten cries.
So won't you please, please, think of the kittens?


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: [Announce] GnuPG 2.0.1 released

[Andrew Berg]

Johan Wevers wrote:
> Werner Koch wrote:
>
>   
>> This is maintenance release to fix build problems found after the
>> release of 2.0.0 and to fix a buffer overflow in gpg2
>> 
>
> Will there come a 1.4.6 too?
>
>   
Yes.



I don't remember if this was asked, but will 1.4.6 have a Win32 build?

-- 
 /\_/\   /\_/\   /\_/\ 
( o.o ) ( o.o ) ( o.o )
 > ^ <   > ^ <   > ^ <  Don't make me send my ASCII kitten minions.
Key ID: 0x9C6CC3A3
Fingerprint: 5474 04A6 2BAC 7138 204A D61B 4246 59CB 9C6C C3A3
(Portable) Thunderbird 1.5.0.7 w/ Enigmail 0.94.1.1 and GnuPG 1.4.5
Windows XP SP2 Home Edition
Every time you send private information unencrypted, a kitten cries.
So won't you please, please, think of the kittens?


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users