Re: OT: virus on the wild?
On Sat, 24 Jan 2009 02:49:40 -0500 Charly Avital wrote: > > Bingo! I found it... > > http://www.technipages.com/disable-the-firefox-prefetch-setting.html > > Great, thank you! [snipped] When you get a URL such as this (or an IP number), add them at the bottom of yours hosts file in /etc/hosts and have the IP referencer as 127.0.0.1 Computers don't actually look up URLs as such, they route them through DNS servers who gives the computer the IP number and then it connects with that. The hosts file cuts this down by making your computer connect with the IP number listed in the hosts file for a given URL. By convention, the IP address which your computer recognises as itself is 127.0.0.1, and if this were listed in /etc/hosts as the reference for a "bad" URL, in trying to connect to the URL, your computer would simply be trying to connect with itself - which kills the attempt to connect. A good hosts file is a good second line of defence and you can get one at : http://www.mvps.org/winhelp2002/hosts.htm The webpage explains it all. Add it to the bottom of the exist /etc/hosts file and comment out (put # at the begining) the line in which the mvps.org file says: 127.0.0.1 localhost Also for a double line of protection, use a filtering proxy such as privoxy. -- Graham Todd ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Installation gnupg on Windows
On Wed, 27 Aug 2008 13:35:10 -0500 John Clizbe <[EMAIL PROTECTED]> wrote: > Alan Wong wrote: > > Hi, > > > > Are there installation guides for installing gnupg on Windows > > platform? Probably the best place to help you is the PGP-Basics yahoogroup. It also deals with GnuPG, though this does mean joining another group :-) http://tech.groups.yahoo.com/group/PGP-Basics/ -- Graham Todd ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: playing with cryptography...
"Hardeep Singh" <[EMAIL PROTECTED]> writes: > There is nothing that can prove who you say you are. State provided ID > cards only prove that you were able to convince the system that you > have a specific name. For individuals I think that too much importance is placed on identity based on name. For companies it is different, it is useful to know that the email/web site etc that purports to be from example.com is actually from the company Example Ltd. For individuals, it is much more useful to treat the certificate/gpg key as identity so that it can be said (as long as the sender is careful with not allowing others access to the private key) that the email signed by John Doe's key/certificate is from the same person calling himself John Doe that you have previously received email. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: pgp servers hanging
On Sat, 16 Feb 2008 16:15:50 +0100 Noiano <[EMAIL PROTECTED]> wrote: > Are there any pgp server quality statistics like remailers? For > example: "this server is fast and reliable, this other often goes > timeout" > > Noiano Yes, and regularly given to this list - forget by whom as I've just cleared a lot of emails. -- Graham Todd ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: [Announce] GnuPG's 10th birthday
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Thu, 20 Dec 2007 10:55:16 +0100 Werner Koch <[EMAIL PROTECTED]> wrote: > A Short History of the GNU Privacy Guard > > > It's been a decade now that the very first version of the GNU Privacy > Guard [0] has been released. [snipped] Thank you Werner for that most informative annoucement. Certainly, kudos to all those hackers who gave us a FREE (as in freedom) privacy tool, and thanks to them all - from Phil Zimmerman onwards - who risked personal freedom to ensure we had liberty. However, as many philosophers have observed, "liberty is not licence"; just because you CAN do something, it doesn't mean you necessarily SHOULD be allowed to do it under all circumstances. Apart from not being able to find anyone to use encryption using PGP or GnuPG outside of our very small community, we are faced with the use of these very strong encryption tools by those who would attack the very heart of our way of life. We need to take a step back and consider how GnuPG should be used in the future. We need a debate at the widest level in the internet community. - -- Graham Todd -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Please sign and encrypt for internet privacy iD8DBQFHampbthMHx1h/UZYRAhUwAJ9EpB2ZDoaKBq6t3wW5ekvefODNKACePOOF vhgv1FnAjhDzTWqdEfWJQBA= =n7fk -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: 'Tis the season.
On Fri, 07 Dec 2007 16:56:30 -0600 "Robert J. Hansen" <[EMAIL PROTECTED]> wrote: > This year, as with last year, I will be donating to the Free Software > Foundation with a note that it's in thanks for the GnuPG Project. I > encourage anyone who is interested in doing likewise to take a look > at: > > https://www.fsf.org/associate/support_freedom I agree! At the risk of upsetting some people, at this time of year, I celebrate the Feast Of Saturnalia (which got hi-jacked from the Romans) as the mid-winter feasting and celebration for our good fortune. So Happy Saturnalia (as my Christmas cards say) and also "Bah Humbug!" And support freedom with the FSF! -- Graham ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: GPG, card reader & udev
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Mon, 1 Oct 2007 16:48:58 +1000 (EST) Srihari Vijayaraghavan <[EMAIL PROTECTED]> wrote: > I'm unable to download gnupg-ccid from that page (cos it points to a > broken link or something). I've downloaded the gnupg-ccid.rules files > perfectly fine though. [snipped] The link points to the page you are looking at (ch02s03.html) and not to the file gnupg-ccid. Thus the instructions on the page will not work. Could somebody change this? - -- Graham Todd -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Please sign and encrypt for internet privacy iD8DBQFHAKHpthMHx1h/UZYRAiY/AJ48xmYxwSh6xzHUENG6L14hR4daiQCfS+a2 IUl4kH2EAPdnZW2IqnWIPXw= =ezyg -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: OT (resend)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Thu, 06 Sep 2007 14:34:04 -0500 John Clizbe <[EMAIL PROTECTED]> wrote: > From a wiki of US Navy slang > (http://www.mshtawy.com/en-wiki.php?title=U.S._Navy_slang): > > Cryppy/Cryppy Critter: Cryptographer, also seen on a highway near > the Cryptography School (aka Goodfellow Air Force Base) in San > Angelo, Texas without vowels, as CRYPPY CRTTR. > > The US Navy has a long (very long) and honored history of SIGINT and > cryptography going back to the beginnings of radio. This early > history may be found in public histories of what are now the NSA and > the CIA. [snipped] John, I respect your point of view and I shall defend to the death your ability to say it. However, whether the US Navy uses slang of this kind doesn't make it part of the English language, nor whether these things can be found in the histories of the CIA and NSA is irrelevant to me as a Brit (except as an academic exercise). I use the English language (maybe not always the correct Queens English) and if I might be so bold as to say, not a version of it for American usage. But both our versions of English have to be understandable to people in other countries who use the internet without it being their first tongue, and its well not to muddy the waters with cultural and linguistic allusions that might not be generally accepted nor understood in the same way by those people. I think this is what Vedaal meant in his OP. Its not a matter of "political correctness", but of using the English language in a way that's not misunderstood or which causes offence. In speaking to people in the US I have found that the phrase "political correctness" means different things to those of us in the UK, and in any case "politics" by itself often means different things and conjures up different images. So its best not to use the phrase. Can I ask that people think before they write and realise that the internet has lots of different people, from differing cultures and backgrounds, and which can be easily offended by things which you find innocuous in your culture. - -- Graham Todd -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Please sign and encrypt for internet privacy iD8DBQFG4GipthMHx1h/UZYRAsX4AJ4twJGCJI2JKj4aKPNak7ObkD8CMACeMArp Gjm1F4Z8fsBJJYtHju/RQtw= =EB7H -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Algorithm 11 not available
I am no longer able to verify signatures, or even list my keyring. I suspect that a key as been (automatically) imported which uses SHA224 which gpg does not support. Can anyone advise what I can do to a) Fix the keyring and b) Stop it getting borked in future? gpg --version gpg (GnuPG) 2.0.3 Copyright (C) 2007 Free Software Foundation, Inc. This program comes with ABSOLUTELY NO WARRANTY. This is free software, and you are welcome to redistribute it under certain conditions. See the file COPYING for details. Home: ~/.gnupg Supported algorithms: Pubkey: RSA, ELG, DSA, ELG Cipher: 3DES, CAST5, BLOWFISH, AES, AES192, AES256, TWOFISH Hash: MD5, SHA1, RIPEMD160, TIGER192, SHA256, SHA384, SHA512 Compression: Uncompressed, ZIP, ZLIB, BZIP2 gpg -v -v --list-keys gpg: using PGP trust model gpg: key 34309C41: accepted as trusted key gpg: key E6FFC9A9: accepted as trusted key gpg: checking the trustdb gpg: 59 keys cached (2134 signatures) gpg: 8 keys processed (3 validity counts cleared) gpg: removing stale lockfile (created by 20121) gpg: 3 marginal(s) needed, 1 complete(s) needed, PGP trust model :signature packet: algo 17, keyid B222F1DC7BCDCE07 version 4, created 1158698871, md5len 0, sigclass 19 digest algo 2, begin of digest 27 53 hashed subpkt 2 len 4 (sig created 2006-09-19) subpkt 16 len 8 (issuer key ID B222F1DC7BCDCE07) data: [159 bits] data: [154 bits] :signature packet: algo 1, keyid 7398AF7F55831030 version 4, created 1153162490, md5len 0, sigclass 19 digest algo 2, begin of digest 5b a7 hashed subpkt 2 len 4 (sig created 2006-07-17) subpkt 16 len 8 (issuer key ID 7398AF7F55831030) data: [1024 bits] :signature packet: algo 1, keyid 8CBBBC01287D010B version 4, created 1153162849, md5len 0, sigclass 19 digest algo 2, begin of digest c3 51 hashed subpkt 2 len 4 (sig created 2006-07-17) subpkt 16 len 8 (issuer key ID 8CBBBC01287D010B) data: [1024 bits] :signature packet: algo 17, keyid 7F65C1CA8D02BBB3 version 4, created 1174408405, md5len 0, sigclass 19 digest algo 11, begin of digest 18 78 hashed subpkt 2 len 4 (sig created 2007-03-20) subpkt 16 len 8 (issuer key ID 7F65C1CA8D02BBB3) data: [223 bits] data: [223 bits] DBG: md_enable: algorithm 11 not available gpg: O j: ... this is a bug (sig-check.c:450:check_backsig) Aborted ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: [gnupg-users] Re: Still Bad Signatures - KGPG seems broken
On Wed, 3 Jan 2007 00:07:24 -0800 Robert Smits <[EMAIL PROTECTED]> wrote: [snipped] > I've submitted it as a bug to the kde group. > > Bob. I get the following message using Claws-Mail: Key 0x33ACF71B not available to verify this signature. Do you have it on a keyserver or webpage that I could get if from? -- Graham signature.asc Description: PGP signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: GnuPG neophyte inquiries.
On Sunday 20 August 2006 6:31 am, Caitlin wrote: > Hi all. Hi and welcome :-) > Ok. I'm quite interested in GnuPG but I felt compelled to ask a few > questions. Ready? > > 1). My roommate and I share a WinXP box. If I install GnuPG 1.4.5 on > it, would this represent a potential security concern? There should be no security problems. Only you will know your passphrase, but if you let anybody have access to your passphrases, then they will be able to decrypt messages on your box. I take it that you use different (passworded) accounts and therefore you would not normally gain access to the data of your roommate, and he/she not your data. To keep things extra secure, however, I would keep your keyring separate and download it into your machine before use and delete the keyring on ending your session. > 2). Would I have to copy and paste encrypted messages received via > email to a disk (for example) then transport them to the machine > mentioned in #1 for decryption? Depending upon the email program you use, this should be done automatically. I would suggest you use Thunderbird as your email program with the Enigmail extension to handle GnuPG, but you may wish to stick with another. Just make sure it supports the OpenPGP standard. > 3). If a security issue arises with the version of GnuPG I'm using, > what happens to my keyring, private key, etc. when I upgrade? I'm > assuming I would have to send my friends/associates a newly generated > public key so we could resume communication? People are trying all the time to find chinks in GnuPG's armour in order that the security and stability of the program is maintained. They do occasionally find chinks and as these are reported to the GnuPG developers a new version is very quickly out. It all depends on the security risk, but I have never had to generate new keys for this purpose in the six years I've been using GnuPG. There is an OpenPGP standard to which GnuPG adheres, so there shouldn't be any reason why your keyring, private keys, etc can't be used with a new version of GnuPG. > 4). How secure (generally speaking) is installing GnuPG on a flash > drive and using it for all GnuPG related activity? I'm a college > student and security on the campus network is clearly of paramount > importance. As I am (although a VERY mature student!). There is no problem with security (other than general problems with Windows security) in using a flash drive. It all depends if you are using a machine that will recognise your flash drive. What I do under Linux is carry my keyring on an SD/MMC card and connect a card reader to the USB port of the machine. It is then recognised as a mass storage device. I point the email program to GnuPG and my keyring at its location. I'm not sure how I would do it under WinXP, but you might like to look up WinPT, a front end for GnuPG on Windows. -- Graham pgpvzQqBGBSP2.pgp Description: PGP signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Driving licence as identification and accepting signed keys without exchanging encrypted data
On Tuesday 25 July 2006 19:13, Sam Morris wrote: > Message was signed by Sam Morris <[EMAIL PROTECTED]> (Key ID: > 0x5EA01078). Warning: The signature is bad. I get this message when viewing through KMail. Anyone else confirm the sig is bad? -- Graham ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: [lists] gpg 1.4.4 build error on Ubuntu
On Wednesday 19 July 2006 1:39 pm, Ludwig Hügelschäfer wrote: > Hi together, > > I'm trying to compile gpg 1.4.4 on ubuntu-Linux 5.1 Just a thought. Have you installed build-essential? Ubuntu doesn't install many tools to compile from source code with the base install, so you have to do that yourself. You might trying to change your sources.list to the dapper repositories, and then doing: sudo apt-get update sudo apt-get dist-upgrade Which will upgrade your distro to Ubuntu 6.06 and then other tools will be available to you. The version I believe that is in the dapper repositories is gnupg 1.4.2, which may be sufficient for your needs. But if you want to compile from scratch you will still have to install build-essential This is one of the reasons I am using MEPIS 6.0. It uses the dapper repositories but it installs much more easily and has facilities to compile source from the base install. Its default desktop is KDE, but you can easily change that if you're a Gnome user -- Graham pgp46NjIBp3MV.pgp Description: PGP signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: [lists] re: Signing vs. encrypting was: Cipher v public key
On Thu, 01 Jun 2006 11:33:14 -0400 <[EMAIL PROTECTED]> wrote: > > While I prefer gnupg to pgp myself, I did just happen to see a > > reference to pgp command line today > > the cost is *astronomical* > > have played around with it when it was released as a free > command line pgp 8.5 beta [snipped] AFAIK this is the latest PGP command line version available - except for server based systems, which is why the cost is *astronomical*. When Network Associates sold the rights to PGP to PGP Corporation, they kept the rights to the command line version, and unless things have changed this is why PGP Corporation don't offer it. But why bother when there is GPG? -- Graham ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Problems Deleting Key and Adding Key to Keyring
On Monday 30 Jan 2006 08:22, Graham wrote: > I have Gpg 1.4.2 installed by default on my Mepis system. When I > tried to delete a key from my keyring both from the command line and > through Kgpg I got this error: > > gpg --delete-keys 0xCB1AA7B0 > > pub 1024D/CB1AA7B0 2003-11-18 Robert Blayzor (INOC) > <[EMAIL PROTECTED]> > > Delete this key from the keyring? (y/N) y > gpg: /home/graham/.gnupg/pubring.gpg: copy to > `/home/graham/.gnupg/pubring.gpg.tmp' failed: file read error > gpg: deleting keyblock failed: file read error > gpg: 0xCB1AA7B0: delete key failed: file read error [snipped] I don't know why it did it, but solved the problem by naming pubring.gpg and secring.gpg with a suffix "old" (eg pubring.gpg.old), then doing an import on each file. It asked me for my passphrase on each of my (old) keypairs but imported them fine. I can now import and export keys to my hearts content! As I said, I don't know what was wrong with the old keyrings, but its the simple things we tend to overlook HTH anyone with the same problem! -- Graham pgpEwAvJF5WUV.pgp Description: PGP signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Problems Deleting Key and Adding Key to Keyring
I have Gpg 1.4.2 installed by default on my Mepis system. When I tried to delete a key from my keyring both from the command line and through Kgpg I got this error: gpg --delete-keys 0xCB1AA7B0 pub 1024D/CB1AA7B0 2003-11-18 Robert Blayzor (INOC) <[EMAIL PROTECTED]> Delete this key from the keyring? (y/N) y gpg: /home/graham/.gnupg/pubring.gpg: copy to `/home/graham/.gnupg/pubring.gpg.tmp' failed: file read error gpg: deleting keyblock failed: file read error gpg: 0xCB1AA7B0: delete key failed: file read error When I tried to import a key I got a similar file read error. I tried renaming my .gnupg file as .gnupg_old, rerunning gpg --help so a new .gnupg file would be set up and copying my keyrings, gpg.conf file, and gpg.trust file. Still no luck. I've checked permissions and they seem OK with all access except by owner being forbidden. I've tried adding a .gnupg/pubring/pubring.gpg.temp folder and file without success. Anybody know what I should do to get this to work? -- Graham ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Trouble with enigmail and Thunderbird 1.5
On Monday 23 Jan 2006 18:03, Jean-David Beyer wrote: > Is this a known problem? Or should I find a Thunderbird newsgroup to > ask? And if so, which one? [snipped] The official Enigmail list can be joined at http://mozdev.org/mailman/listinfo/enigmail But there is also an unofficial Thunderbird forum which you can join at http://groups.yahoo.com/group/Mozilla_Thunderbird/ This yahoogroup was set up by Nick Andriash, who also set up the PGP-Basics yahoogroup, so it could be of use. But these are both UNOFFICIAL yahoogroups -- Graham pgpVQgMAuxHnY.pgp Description: PGP signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
GPA
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 I have Fedora FC4. with all available updates. I am using GPG 1.4.1 and v1.9.18 is also installed. The GPA is version 0.7.0 My Firestarter firewall is set to let all traffic out, and is not showing as blocking anything when I try. First I bring up GPA. Then I click on my default key set. Next I select 'Server', then 'Send Keys...' It asks me if I am sure I want to distribute the selected keys to: "hkp://subkeys.pgp.net". Most of the time I will get the error: *"An error occurred while contacting the server:" "Internal keyserver error" * Note there is an empty line between the two. If I do not get this error, it says: '*Connecting to server "hkp://subkeys.pgp.net". Please wait.*' and nothing happens till I click on the X to close the window, then I get the original error. This happens with this server, and any of the default servers GPA has on its default list. Let me know if you need any other information. Gary -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.1 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org iD8DBQFDLx5XJgYFZehli50RAj2nAJ0XCqWdFl/LjdQCBkDL22VGn3y47QCdH74n 9FOMVJl+QSuNDVHT7Tn7hNM= =Trmw -END PGP SIGNATURE- smime.p7s Description: S/MIME Cryptographic Signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
gpa / gpg-agent
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 I have been trying to figure out what all GPG will do. I do not see any notes on how to run gpg-agent. I went thru the session manager, and placed it as a startup program. The only problem with this is I keep noticing I have several copys running if I have rebooted the system several times. Is this the right mailing list to discuss GPA? There are too many problems to mention before finding out if this is the correct place to address it. Gary -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.1 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org iD8DBQFDKf+/JgYFZehli50RAopeAKDB4gbNLR57pzX0UUifoW+EayBTZACfdH8X 6poVREV3PqoUGDdzvuJeNgY= =o8SG -END PGP SIGNATURE- smime.p7s Description: S/MIME Cryptographic Signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Two questions
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 I have a couple questions I have not been able to figure out on my own. First, and probably easiest: Is it possible to put a photo into a key? I see some keys have it, but have not figured how to do it. Second: I have a Thawte Freemail certificate. I have Enigmail set to use it. How do I import it, or whatever, it into my GNUpg keyring? I see several have done it. Thanks in advance. Gary -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.1 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org iD8DBQFDKDY8JgYFZehli50RAgZRAJ9ZgVaRvnSTCoFO3/d7GcPWerdIBgCcDTFO LvF7BpWYmOAaUJcBGQ6h0og= =9ztg -END PGP SIGNATURE- smime.p7s Description: S/MIME Cryptographic Signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Protecting signing key]
On Wednesday 03 Aug 2005 3:05 am, Kara wrote: > What would be an equally good equivalent > for those of us using a Linux distro? What distro and what kernel are you using? -- Graham ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: revokation thing
On Sunday 10 Jul 2005 19:49, Folkert van Heusden wrote: > Hi, > > How do I create such a revocation certificate without revoking my key > yet? Could not find it. > > > Folkert van Heusden First of all, are you using Windows or Linux, and if Linux, which desktop (KDE, Gnome, etc)? -- Graham ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Revoking Keys
On Sunday 10 Jul 2005 14:54, David Shaw wrote: > I'm afraid I don't understand exactly what you do and don't have left > from your crash. Do you have the secret keys for the keys you want > to revoke or not? > > David No, that's just the point. I have the revocation certificates, I can get the public keys from keyservers but (obviously) not the secret keys and I didn't have a chance to save them. Using an old saved keyring I have some old public and secret keys, but not the recently generated ones. If I can revoke the keys then I can generate new keypairs (and save them this time!) -- Graham ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Revoking Keys
Recently I generated some keypairs with their relevant revocation certificates, but was not able to save my new keyrings before the PC crashed :-( I am therefore dependent on using an old keyring without these new keys plus the revocation certificates. I am not clear exactly how to revoke the keys I've generated and now have lost. I've looked up the man pages and the html howto but they just refer to generating a revocation certificate and use revuid But how do I revoke keys on the keyserver so I can generate new ones? -- Graham ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users