Re: GnuPG incompatible with windows-vista ?
2007/3/13, David Shaw <[EMAIL PROTECTED]>: > You are either missing gpgkeys_hkp.exe or GPG can't find it (not in > your path). > > David > Anyway, even if gpg can find it, it will still not work. Gives me a "socket error" something.. The message flashes for a very short time so i dont have time enough to rest of it. -- Jørgen Ch. Lysdal ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: display bug
2007/3/13, David Shaw <[EMAIL PROTECTED]>: > > If there is a keyserver URL in the signature. > > David arh, i thought it was ment to display keyserver url from the public key used to verify the signature. Dident know i could store a keyserver url with a signature, but it makes sense. -- Jørgen Ch. Lysdal ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: GnuPG on MS Vista
Robert J. Hansen skrev: > It may be worth considering > telling people that Vista is an unsupported OS for GnuPG 1.4.x. But will it be supported in any near future? signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
GnuPG on MS Vista
Hi, it appears to be impossible to connect to any keyservers through gpg on my newly installed Vista box. I have disabled UAC and im running as admin, so that should not be the cause of any problems. Whenever i try to get something from a keyserver i get: gpg: refreshing 1 key from hkp://pgpkeys.pca.dfn.de gpg: requesting key from hkp server pgpkeys.pca.dfn.de gpgkeys: no key data found for hkp://pgpkeys.pca.dfn.de/ gpg: no valid OpenPGP data found. gpg: Total number processed: 0 All the keyservers i have tried works well when using their web interface. Does anyone know how to solve this problem? signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: openpgp card
Werner Koch skrev: > While in the gpg --card-edit menu, optionally enter "admin" and then > "privatedo" to change the 4 private DO fields. See the specs for the > required permissions of the read/write the fields. Thanks for the hint. What i was interested in was if i could upload a file to the card and then retrieve it later. It appears i cant do that, anyway, i need at least 1600 bytes storage. -- Jørgen Ch. Lysdal signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
openpgp card
On the back of my openpgp card, it says that it has "Private data storage" What is this storage? and can i use it to store anything? -- Jørgen Ch. Lysdal signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Bug?
GnuPG 1.4.6 (from gnupg.org) on winxp pro sp2 "gpg --edit-key PGP Global Directory Verification Key" Gives me this: "gpg (GnuPG) 1.4.6; Copyright (C) 2006 Free Software Foundation, Inc. This program comes with ABSOLUTELY NO WARRANTY. This is free software, and you are welcome to redistribute it under certain conditions. See the file COPYING for details. pub 2048R/CA57AD7C created: 2004-12-06 expires: never usage: SC trust: full validity: full [ full ] (1). PGP Global Directory Verification Key [ full ] (2) [jpeg image of size 3400] Invalid command (try "help") Invalid command (try "help") Invalid command (try "help") pub 2048R/CA57AD7C created: 2004-12-06 expires: never usage: SC trust: full validity: full [ full ] (1). PGP Global Directory Verification Key [ full ] (2) [jpeg image of size 3400]" Invalid command?? My option file: "personal-cipher-preferences twofish aes256 cast5 blowfish aes192 aes personal-digest-preferences sha256 sha384 sha512 sha1 ripemd160 sha224 s2k-cipher-algo twofish enable-dsa2" I dont get the wired stuff when i specify the key by its id.. signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: openpgp card problem
Werner Koch skrev: > It is just a stub which tells gpg the number of the card so that gpg > can ask you to insert the corresponding card. If no key is available, > gpg will create that stub automagically from the card. So, if i have my public key, and the stub is missing, all i have to do is load the card with --card-edit? and im back to normal? One thing that confuses me is the "list" output from the card: pub 1024R/B4EEB7CA 2007-01-25 Jorgen Christiansen Lysdal <[EMAIL PROTECTED]> sec> 1024R/B4EEB7CA created: 2007-01-25 expires: 2009-01-24 card-no: 0001 0A7A ssb> 1024R/ED5EFA17 created: 2007-01-25 expires: never card-no: 0001 0A7A It stores the public part of my masterkey but not the subkey? ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: trust owner => trust his key?
Hans Ekbrand wrote: > > a) Why does not "Full" owner trust of a person implicate that that >persons key is valid? (If he can correctly validate correspondence >between other persons and keys why not trust him to do that on his >own key too?) It will have no effect to set the trust value on a key that does not have a signature from a ultimately trustet key (your key) You can sign the uid´s on their keys with a local signature, such a signature will not be uploaded to keyservers or exportet with the key. > > b) What should I do for gpg to recognise the keys in debian-keyring as >valid (should I sign them myself)? Do a local sig, or if i remember correct, there is an "always trust" option. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
openpgp card problem
For the last 2 hours i have been playing with my new openpgp card and reader, trying to figure out how stuff works. So there are a few questions. Can i restore my public key with only the card? Do i need to backup my "secret key" from my local keyring or can i restore it from my card? In case im asked to type the admin pin, and i dont type anything, but just presses enter, will it result in 1 wrong attempt? (im worried that my broken enter button will send 3 keystrokes, as it sometimes does) Suppose i type the admin pin wrong 2 times, and the third time it is correct, will the "wrong pin" counter reset? - JCL ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Hash algorithmn
Hi, I got an encryptet and signed email, is it possible to see what hash algorithmn was used for signing? --- Jorgen Ch. Lysdal / 0x7763AF61 ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Hash algorithmn
okay, i missed the "verbose" option in the man page... sry :) 2006/12/14, Jørgen Lysdal <[EMAIL PROTECTED]>: > Hi, > > I got an encryptet and signed email, is it possible to see what hash > algorithmn was used for signing? > > --- > Jorgen Ch. Lysdal / 0x7763AF61 > ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Signing/encrypting options using GPGShell
2006/10/22, Richard H. Stoddard <[EMAIL PROTECTED]>: in fact seems to encrypt it. Is this "just the way it is" or is there a bug (or operator error)? No, its not encryptet. My guess it is signed and compressed, am i right? Also, is there a way using PGPShell to cache the passphrase for a certain interval? I'm assuming likely not, but though I'd ask anyway. No, i dont think you can do that.. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: GPGDisk campaign
lol, very cool with the steganography thing... ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Logo suggestions
Here´s what i made: http://img430.imageshack.us/img430/2433/logomm8.jpg based on: http://www.gnu.org/graphics/slickgnu.html It could look cool in white on a black tshirt. -- Jorgen Lysdal ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
subkeys....
When a key expires, does it mean that subkeys are also expired? -- Jorgen Ch. Lysdal / 0x13CA0C06 ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
trust signature?
Hi, why can i only use tsign from the key edit menu, and not directly with a command like i can do with sign and lsign? ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: How to verify the file was successfully encrypted...
This might be a hard one. When you encrypt to a public key, there is no way gpg can decrypt it, to verify that it can be decrypted, unless it can unlock the private key with your password. The only way i see, is that gpg would have to encrypt 2 times and compare the results. But then again, the same error might happen twice. Does this make any sense? i don't know, this was just what im thinking. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: show-photos off by defaulf, causes problem?
David Shaw wrote: > > I'm not sure. What was the problem here? > > David okay, made a mistake here... There is no problem. sry for wasting your time... (im hitting myself with the stupidity stick) ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
show-photos off by defaulf, causes problem?
Recently, a friend had a problem with a key in his keyring that appeared to be valid. However he could not find any link between that key and his only ultimately trusted key. He removed all signatures from that key, but it still appeared to be valid. After importing the key into PGP i noticed that there was a photo uid that had the link between the keys that he could not find. Okay, maybe i missed something here, but could the problem be that show-photos was turned off? are there any good reasons this is turned off by default? --- show-photos Causes --list-keys, --list-sigs, --list-public- keys, and --list-secret-keys to display any photo IDs attached to the key. Defaults to no. See also --photo-viewer. - Jorgen Christiansen Lysdal j.lysdal(at)gmail.com 0x01331B97 / 0x972BF22A ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: "valid from" date?
2006/6/28, Werner Koch <[EMAIL PROTECTED]>: It is not possible to set a valid from date. Actuall there is no valid from date but just the creatuion time of the key. My key made with PGP shows this: sub 4096R/10BFF302 created: 2006-04-06 expires: 2008-04-06 usage: E sub 4096R/B3DF6DC0 created: 2008-04-06 expires: never usage: E So GPG will see the valid period on the second subkey as 2008-04-06 to never. and not use it before 2008-04-06 ? When selecting a key, GnuPG ignores those created in the future. uhm.. i dont think im getting this right... If you ant to hack support for it, check out make_timestamp(). Can this enable me to set created date´s like, in 2010 if i want? I can see no reason for using a valid from key. Simply create it when you need it. For me, creating a key is a one-time-thing, why not add some sub´s from the start, so i dont have to mess with it later? The latest key which fits the requirements (preference, algorithms etc.) Isent theese algo settings stored with each uid? or do i mix things together? Thanks for your help. - Jorgen Ch. Lysdal ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
"valid from" date?
Ive used PGP for some time, and it allows me to set a "valid from" date on my subkeys.. Is this also possible on GPG, or can i only select the expiration date? If two encryption subkeys are valid in the same period of time, how does gpg select which one to use? --- Jorgen Lysdal / 0x01331B97 j.lysdal(at)gmail.com ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: personal-cipher/digest-preferences
2006/6/23, David Shaw <[EMAIL PROTECTED]>: Why? You are the person making the signature here. It's your choice what algorithm to use. The recipient only gets to say "these are the algorithms I will accept". Not "this is the algorithm I want you to use". Outside of DSA2, GPG will always select an algorithm that is usable by everyone. If all else fails, it's going to be SHA-1. Because in my case, it is the recipient that wants to verify my Identity, not the other way around. But i get your point. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: personal-cipher/digest-preferences
Thanks for you guys help.. :) However, i have a small problem. I dont want to interfere with any selection process by having a personal-cipher/digest-preferences in my options file. I have a RSA and a DSA key, When im using the RSA key i want to use SHA256, and RIPEMD160 for my DSA key, when i use clearsign. Is there anything i can put in my options file that will make gpg use SHA256 for my RSA and RIPEMD160 for my DSA without having the personal-digest-preferences thing in my options file? This is really important to me because i when i clearsign something, i dont have a recipient as a target and i want to use an algorithm of my choice. For encrypt and sign, i want and algorithm of the recipient choice. --- Jorgen Lysdal / 0x01331B97 j.lysdal(at)gmail.com ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
personal-cipher/digest-preferences
If i understand the gpg.man correctly.. The "--personal-cipher-preferences" does only have an effect when encrypting to more than one recipient, (besides from symmetrical encryption algo selection) and the "--personal-digest-preferences" only when encrypting and signing to more than one recipient. Im i right? What does it mean to "factor in their own preferred algorithms when algorithms are chosen via recipient key preferences." Does it mean that, when i encrypt to a key that has, lets say AES TWOFISH, and i use --personal-cipher-preferences TWOFISH AES, is the message TWOFISH encryptet andgb Is there any place i can read in detail how this works? - Jorgen j.lysdal(at)gmail.com / 0x01331B97 ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
some questions..
Hello fellow gpg users.. I have a revoker on my key that i would like to remove, but i cant find a way to do this. Can anyone help? another question. When i sign a key, is there any way i can set an expiration time for the signature? When i use the --list-sig command, is there any way i can see the expiration date for signatures? ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
