> Please help me with this.
Unfortunately, we really can't. GnuPG is written in C, not Java, so
it's unlikely your OpenPGP applet uses GnuPG. You might have better
luck on a mailing list for the applet you're using.
___
Gnupg-users mailing list
Gnupg-
Hi all,
Am trying to implement disk encryption/decryption using truecrypt with
security token support. I have a java card with openPGP applet loaded on to
it. Inspite of configuring truecrypt to use the security token, its not
finding it and notififng me with an error saying : security token error
It was not my intention to start an IPv6 advocacy thread, but in case
anyone is interested in facts about the current state of things, this is
a good summary:
http://www.slideshare.net/AkamaiTechnologies/edge-2014-ipv6-is-here-what-you-need-to-know
_
> I'm not convinced that it's gnupg's job to compensate for
> unreasonably-configured IPv6 stacks that think they have a route but
> actually don't.
Nor am I, but the world has never much cared whether something was my
job: it concerns itself more with ensuring there are consequences for
the job
> I didn't claim that one version was better than another version, I
> said it will probably never become widespread.
It already *is* widespread. China and Japan have signed onto it in a
big way. In the US, the largest wireless carrier -- Verizon -- has
migrated over a third of its smartphones t
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Hi
On Wednesday 18 February 2015 at 8:29:40 PM, in
, Xavier Maillard wrote:
> Just a quick question: do I need to have both keypairs
> in my keyring ? I mean both my old secret key and my
> new secret key.
To sign, yes. To check the signatures
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Hi
On Tuesday 17 February 2015 at 11:13:18 AM, in
, Jerry wrote:
> That is the reason I detest INLINE as opposed to
> PGP/MIME.
You detest pgp-inline for the main reason I prefer it. Wouldn't life
be boring if we all liked the same things?
>
On 18-02-2015 19:56, Peter Lebbing wrote:
>> Admit it, IPv6 has failed. It may get some uses, but the widespread
>> adaptation of carrier NAT has made it largely obsolete.
> Tired as I may be of this discussion (what's your next argument, NAT provides
> beneficial firewalling behaviour?), I still
> On 18 Feb 2015, at 19:07, Johan Wevers wrote:
>
> Admit it, IPv6 has
> failed. It may get some uses, but the widespread adaptation of carrier
> NAT has made it largely obsolete.
Utter, complete, nonsense.
--
Ville
___
Gnupg-users mailing list
Gnu
> On 18 Feb 2015, at 21:13, Daniel Kahn Gillmor wrote:
>
> I'm not convinced that it's gnupg's job to compensate for
> unreasonably-configured IPv6 stacks that think they have a route but
> actually don’t.
I agree. I think the actual problem should be addressed at the networking level
instead o
Am Mi 18.02.2015, 21:29:40 schrieb Xavier Maillard:
> Jesper Hess Nielsen writes:
> >> gpg -u -u --clearsign keytransition.txt >
> >> keytransition.signed2
> >
> > woops, forget about the '> keytransition.signed2' part. Just running
> > with --clearsign will give you a keytransition.txt.asc fi
At Sun, 15 Feb 2015 12:16:58 +0100,
Michael Felt wrote:
> My key question is about the difference between v1.X and v2.X - are there
> security elements in v2 that are missing/weaker in v1 - or are the
> differences mainly that v2 supports/is always GUI while v1 is always CLI.
gpg2 is a more extens
Hi
I do think your key fingerprint should be made more visible on gpgtools.org
and it would be a good idea to have instructions for users to do the checksum
and
verify the signature of the dmg (there are probably lots of people who don’t
even
know how to do checksums).
Sandeep Murthy
s.mur...@m
Hi Jesper,
Jesper Hess Nielsen writes:
>> gpg -u -u --clearsign keytransition.txt >
>> keytransition.signed2
>>
>
> woops, forget about the '> keytransition.signed2' part. Just running
> with --clearsign will give you a keytransition.txt.asc file
> automatically.
Thnaks for that Jesper.
Just
On Wed 2015-02-18 11:46:23 -0500, Doug Barton wrote:
> On 2/18/15 2:52 AM, Jonathan Schleifer wrote:
>> Well, I guess you have to take into account that a lot of downloads
>> are from packaging software like pkgsrc, FreeBSD ports, Gentoo
>> portage, ArchLinux's makepkg, etc. Usually, these do downl
On Wed 2015-02-18 06:40:12 -0500, Werner Koch wrote:
> On Wed, 18 Feb 2015 06:24, r...@sixdemonbag.org said:
>
>> I don't have IPv6 routing, period. This raises the question of why
>> GnuPG is trying to reach an IPv6 address at all.
>
> Because the resolver tells that there is an record. It
Hello,
I have a quite simple question on best practice for the use of GPG. I
haven't found an answer searching online. I hope this mailing list is
the right place for asking.
I have an automated process that collects some data and unattended sends
it via email. I want that data to be encrypted an
On Sat, 24 Jan 2015 05:05, gni...@fsij.org said:
> DINSIG (DIN V 66291-1) card
> German Geldkarte
> Telesec NKS card
> pkcs#15 card
> SmartCard-HSM card
>
> ... but I think that most are outdated, except the last one.
DINSIG is still German standard (actually a pre-s
On 18/02/15 18:07, Johan Wevers wrote:
> Admit it, IPv6 has failed. It may get some uses, but the widespread
> adaptation of carrier NAT has made it largely obsolete.
Tired as I may be of this discussion (what's your next argument, NAT provides
beneficial firewalling behaviour?), I still wish to s
On Wed, 18 Feb 2015 12:59, joh...@vulcan.xs4all.nl said:
> The most easy solution in such cases is to try IPv4 first, if that
> doesn't work or is unavailable, try IPv6 if available.
That server has no v4 address. For obvious reasons we use the standard
version first and only then fallback to a
On 18-02-2015 17:31, Doug Barton wrote:
>> The most easy solution in such cases is to try IPv4 first, if that
>> doesn't work or is unavailable, try IPv6 if available.
> Yeah, please DO NOT do that. The more traffic we can push to IPv6 the
> better for everyone, both now and in the future.
I've
> "A user complained, so we'd rather use something insecure."
That's not what the GPGTools folks did. Your caricature of their
response is unfair and ungentlemanly.
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/list
On 2/18/15 2:52 AM, Jonathan Schleifer wrote:
Well, I guess you have to take into account that a lot of downloads are from packaging
software like pkgsrc, FreeBSD ports, Gentoo portage, ArchLinux's makepkg, etc. Usually,
these do download the signature and tarball once, verify it and then write
On 2/18/15 3:59 AM, Johan Wevers wrote:
On 18-02-2015 12:40, Werner Koch wrote:
Because the resolver tells that there is an record. It seems that
we need to figure out at runtime whether v6 is actually working. Any
hints on how to do that?
The most easy solution in such cases is to try
On Mon, 16 Feb 2015 11:03, bernh...@intevation.de said:
> * What the items in section "What's New in GnuPG-2.1" actually meant,
I should have read "What's New in GnuPG 2.1.2", sorry.
> * "This version fixes a lot of bugs found after the release of 2.1.0"
> which probably should have been "2.1.
Hello!
We are pleased to announce the availability of a new stable GnuPG-2
release: Version 2.0.27. This is a maintenance release which fixes a
couple of bugs. Update to this version is suggested.
The GNU Privacy Guard (GnuPG) is a complete and free implementation of
the OpenPGP standard as def
On Wed, 18 Feb 2015 11:52, js-gnupg-us...@webkeks.org said:
> I do verify the fingerprint, and they are quite easy to find actually:
>
> https://help.github.com/articles/what-are-github-s-ssh-key-fingerprints/
>
> First Google match for "GitHub SSH fingerprint".
Using a search engine to find impo
On Wed, 18 Feb 2015 12:21, js-gnupg-us...@webkeks.org said:
> And even worse: Why did you decide to hide what is going on by
> prefixing it with a @? This really feels like you are trying to deceit
I also do this often to avoid cluttering the screen. No need to assume
a backdoor. It is for a Ma
On Wed, 18 Feb 2015 12:05, js-gnupg-us...@webkeks.org said:
> I suppose it might be a good idea to have a Qt GUI. That looks native
Although Kleopatra is a KDE application there is not much of KDE in it
and, iirc, Andre once suggested to turn it into a plain Qt application.
Salam-Shalom,
We
On Wed, 18 Feb 2015 11:54, js-gnupg-us...@webkeks.org said:
> While this is much better from a security point of view, it still means that
> building needs an internet connection. It would be nice to be able to build
> it on an air-gapped machine, which I guess is quite a common use case for
>
On Wed, 18 Feb 2015 14:18, er...@askerrol.org said:
> #0 0xfedc28a4 in abort () from /lib/libc.so.1
> #1 0xff15367c in get_lock_object (lockhd=0xff16e3b0) at posix-lock.c:111
That is an assert() checking that the used library matches the one used
for building. This is all in libgpg-error - ple
gdb gpg2
GNU gdb 6.6
Copyright (C) 2006 Free Software Foundation, Inc.
GDB is free software, covered by the GNU General Public License, and you are
welcome to change it and/or distribute copies of it under certain
conditions.
Type "show copying" to see the conditions.
There is absolutely no warran
On 18-02-2015 12:40, Werner Koch wrote:
> Because the resolver tells that there is an record. It seems that
> we need to figure out at runtime whether v6 is actually working. Any
> hints on how to do that?
The most easy solution in such cases is to try IPv4 first, if that
doesn't work or i
Am 17.02.2015 um 15:14 schrieb Hugo Osvaldo Barrera :
> Actually, I've noticed that there was a very quick reply to this when it was
> brought to the dev's attention. I'll leave this here for anyone else
> interested
> in following-up:
>
>
> https://github.com/GPGTools/GPGTools_Core/commit/518
On Wed, 18 Feb 2015 06:24, r...@sixdemonbag.org said:
> I don't have IPv6 routing, period. This raises the question of why
> GnuPG is trying to reach an IPv6 address at all.
Because the resolver tells that there is an record. It seems that
we need to figure out at runtime whether v6 is act
Am 17.02.2015 um 22:32 schrieb Lukas Pitschl :
> The best way to reach us is either our support platform at
> https://gpgtools.tenderapp.com or t...@gpgtools.org.
When I tried contacting you guys a little more than a month ago, there was no
e-mail to be found on the website. Only a support foru
On Wednesday, February 18, 2015 12:05:18 PM Jonathan Schleifer wrote:
> I suppose it might be a good idea to have a Qt GUI. That looks native enough
> on Mac so that most users won't complain, works good on X11 or Wayland
> based systems and also works well on Windows. Ideally, this would be a
> pr
Am 17.02.2015 um 20:16 schrieb Juergen Fenn :
> Enigmail has discussed recently to drop support for GnuPG1, making
> gpg-agent/pinentry a crucial issue on the Mac. The standard version of
> pinentry from MacPorts does not work properly out of the box.
For homebrew, there's a pinentry-mac formula,
Am 17.02.2015 um 17:00 schrieb Ville Määttä :
> Upstream still does have the issue which now seems to have been fixed in the
> fork but in a binary removed from upstream…
I really can not confirm this. I am running vanilla GnuPG 2.1.2 (built from
source) on Yosemite (10.10.2 to be exact) with a
Am 17.02.2015 um 14:58 schrieb Sandeep Murthy :
> FYI I think you haven’t really looked at the support forum. This page
>
> http://support.gpgtools.org/kb/faq/found-an-issue
>
> clearly lists instructions for submitting a bug. They are always interested
> in reproducible issues, and every week
Am 17.02.2015 um 14:31 schrieb Werner Koch :
> GnuPG's speedo build system also downloads stuff via the Makefile but it
> verifies the checksums before proceeding. The checksums are taken from a
> public file which has a detached signature and the public key for that
> is one of the GnuPG release
Am 17.02.2015 um 14:22 schrieb Werner Koch :
> I do not think that it matters whether you pull using the git or the ssh
> protocol. In both cases an active attacker can intercept the traffic
> easily. Virtually nobody checks ssh host keys and how should they do it
> given that I can't find its f
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 17/02/15 22:32, Lukas Pitschl wrote:
> We’ve recently been accused again of "knowlingly lowering the overall
> security“ [1] by not allowing such a key size. We’re still not sure what
> to do about it exactly.
There will always be people who think
43 matches
Mail list logo
