Re: Stupid Symantec
On 3/16/2018 9:16 AM, Steven Maddox wrote: > I get the impression they want the decryption happening on the end users > machines. > > Presumably so that if any users got the idea to just 'upload' a file > online - it'd be the encrypted version of that file. Course someone can > just get around that by opening an encrypted file - then just saving it > to a new local location :D Since it is automatically decrypted when opened, the uploaded file would be decrypted. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Stupid Symantec
On 3/16/2018 9:15 AM, Andrew Gallagher wrote: > How does that work when the decryption key is on the client? I don't think it is on the client. The private key is stored on the server and is decrypted when you log in. At least I think that's how it works. I've never actually tried using EFS on a server. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Stupid Symantec
On 3/16/2018 4:11 AM, Steven Maddox wrote: > Yeah I just use LUKS on my PC to protect local files, but this is (as > above) for files on SMB/Windows shares... sorry for not mentioning that > sooner. I believe you can enable EFS on the windows server and it will handle decrypting the file before sending it over SMB. Then you don't need any special software or configuration on the clients. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Stupid Symantec
On 3/15/2018 11:26 AM, Steven Maddox wrote: > The desktop portion of that software has an OS/kernel level driver that > watches if you're trying to open a PGP encrypted file... then decrypts > it on the fly and finally passes it to the application that'd normally > open it. > Anyway I can either continue to bitterly rant or convince my employers > to switch product. Does GnuPG have a similar kernel module/driver for > an as-you-open-a-file type experience? Windows has this feature built in already, why not just use that? ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: "right to be forgotten" nonsense
On 1/15/2018 10:24 PM, listo factor via Gnupg-users wrote: > If there is merit to the principle that an Internet server operator > can not keep publicly serving private data over the objections of > the owner (the same as today, after many battles, he can no longer There isn't merit. It became public, not private, the moment you published it. I have the right to free speech, the EU be damned. Are these numbnuts going to demand that libraries black out newspaper articles on microfilm because they mention someone that doesn't like the coverage of themselves? Sure, I molested children 5 years ago, but I have the "right to be forgotten" so when anyone searches for my name on the Internet they won't find out. Give me a break. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Why does import refuse to merge a new subkey?
On 11/2/2017 3:04 PM, Peter Lebbing wrote: > On 02/11/17 16:58, Phil Susi wrote: >> Why is this? > > What version of GnuPG is this? It's a well-known limitation of GnuPG 1.4 > and 2.0, but my 2.1.18 allows me to add secret subkeys through --import. Looks like I've still got 1.4.20 on one machine ( when I usually forget to run gpg2 instead of just gpg ) but 2.0.28 on another also did it I'm pretty sure. I guess I'll try again and make sure to use a recent gpg2. signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Why does import refuse to merge a new subkey?
Whenever my subkeys expire and I have to generate a new one, I try to import the keys on my less secure machines and gpg stupidly refuses to update the already existing key with the new subkey. I have to delete the key, then import to get the new subkey into the keyring. Why is this? ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users