you are trying to do here:
random key - encrypt data w/ random key
|
V
encrypt key w/ public key
... which is actually what GPG does with bog-standard public key
encryption! Or do you want something else?
--
Alphax
Death to all fanatics!
Down
,
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
signature.asc
Description: OpenPGP digital signature
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org
it for me:
http://en.wikipedia.org/wiki/Public-key_cryptography
http://www.gnupg.org/gph/en/manual.html
http://sixdemonbag.org/cryptofaq.html
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
signature.asc
where moving entries around didn't preserve the
order that you had put things in... I ended up writing out all the
option numbers on scraps of paper and shuffling them around until they
were in the order I wanted :)
--
Alphax
Death to all fanatics!
Down with categorical
-seed file!
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
signature.asc
Description: OpenPGP digital signature
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http
Henry Bremridge wrote:
On Wed, Nov 29, 2006 at 08:20:06PM +1030, Alphax wrote:
That advice is seriously flawed. You do *not* want to copy the
random-seed file!
Just out of interest: why?
As someone a lot smarter than me pointed out in a message I can't find
when I suggested just copy
, technological: the structures used in GPG2 simply don't
exist in W32-land.
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
signature.asc
Description: OpenPGP digital signature
-bit RSA key, ID 0xDEADBEEF, created 2006-01-01
Enter passphrase:
Command quit
Save changes? (y/N) y
HTH,
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
signature.asc
Description: OpenPGP digital signature
Alphax wrote:
re: setting the extension in Enigmail
I've filed an RFE at
http://bugzilla.mozdev.org/show_bug.cgi?id=15442.
Well, apparantly it's already doable:
You can set this with the following two preferences in about:config (or in
Thunderbird via Preferences/Advanced/Config Editor
. I've filed an
RFE at http://bugzilla.mozdev.org/show_bug.cgi?id=15442.
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
signature.asc
Description: OpenPGP digital signature
.
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
signature.asc
Description: OpenPGP digital signature
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http
...
What version of GPG/PGP did you create your key/backups with? Try using
that version to recover your key.
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
signature.asc
Description: OpenPGP digital signature
Show fingerprint of specified public key file. Private RSA1
keys are also supported. For RSA and DSA keys ssh-keygen tries
to find the matching public key file and prints its fingerprint.
--
Alphax
Death to all fanatics!
Down with categorical imperative
resolutions. One easy way to
ensure this is to create them in vector form, eg. as an SVG file.
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
signature.asc
Description: OpenPGP digital signature
, certify.
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
signature.asc
Description: OpenPGP digital signature
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http
of the RFC but hopefully it's a lot clearer than the
published version.
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
signature.asc
Description: OpenPGP digital signature
://blueness.port5.com/gpgcvs/ based on the trial-and-error that a
number of people went through to get native building on W32 to work.
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
signature.asc
Description: OpenPGP
on which version of PGP they are using.
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
signature.asc
Description: OpenPGP digital signature
___
Gnupg-users mailing list
the command
line. Something funny going on with Apple Mail?
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
signature.asc
Description: OpenPGP digital signature
___
Gnupg-users
, and /will/ be used at the time of
key generation.
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
signature.asc
Description: OpenPGP digital signature
___
Gnupg-users
...)
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
signature.asc
Description: OpenPGP digital signature
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http
that the behaviour is identical for sending an email
to yourself.
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
signature.asc
Description: OpenPGP digital signature
___
Gnupg
to excessive large key sizes)
Now, although it can't generate keys that big, GPG can *use* a key of
16384 bits (presumably generated with one of Disastry's PGP 2.6.3
builds); again, operations involving such keys are painfully slow and
not worth the effort.
--
Alphax
Death
/archives/2005/10/nist_hash_works_3.html
I know that sci.crypt would be a better place to ask this question, but
I don't like it.
You could also ask at PGP-Basics :)
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
not OK, it can scream at you.
Better than that, if you get GPG to sign the file when it encrypts it
(using a passwordless key/subkey) and/or use the MDC option, you'll be
able to do this more reliably...
--
Alphax
Death to all fanatics!
Down with categorical imperative
transfer via email
or FTP.
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
signature.asc
Description: OpenPGP digital signature
___
Gnupg-users mailing list
Gnupg-users
different people, or they
might not be people at all; all you can really say about the key owner
is that X is in contact with W and Z, and Z is in contact with X and Y.
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
\gnupg\some-other-trustdb.gpg
Note that on Windows paths are case insensitive, and unlike in the
registry, backslashes do not need to be escaped and paths with spaces in
them do not need to be quoted :)
--
Alphax
Death to all fanatics!
Down with categorical imperative
:\\Documents and Settings\\Username\\Application
Data\\GnuPG\\gpg.conf
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
signature.asc
Description: OpenPGP digital signature
it?
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
signature.asc
Description: OpenPGP digital signature
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org
lunch.
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
signature.asc
Description: OpenPGP digital signature
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http
the option in GnuPG
--allow-non-selfsigned-uid
to import the key, and then have it sign itself.
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
signature.asc
Description: OpenPGP digital signature
[keyring]
HTH,
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
signature.asc
Description: OpenPGP digital signature
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http
gpg-zip myself though.
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
signature.asc
Description: OpenPGP digital signature
___
Gnupg-users mailing list
Gnupg-users
not find it?
Is the key trusted?
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
signature.asc
Description: OpenPGP digital signature
___
Gnupg-users mailing list
backups of your keyring(s) and trustdb first. I've
mainly used it semi-automatically where I check the status of some keys,
run the script, and then re-check the status of the keys.
HTH,
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http
,
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
signature.asc
Description: OpenPGP digital signature
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http
brown fox jumps over the lazy dog.
^Z
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
signature.asc
Description: OpenPGP digital signature
___
Gnupg-users mailing list
7448 2CBD B370
RMD160 = F6D3 2878 5F41 B74F 97D2 5305 C6FE 95AD 45BB 70A5
Of course, you should check the detached sig for that one rather than
trust me on it... :)
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
with yes.
Use this key anyway? (y/N)
Have you tried it with
trust-model always
in your gpg.conf? The key you're trying to encyrpt to probably isn't
within your trust path.
Btw, DNS CERT retrieval work fine, see:
Oh yes, congrats on RFC 4398.
--
Alphax
Death
as lsigning
the key, but YMMV.
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
signature.asc
Description: OpenPGP digital signature
___
Gnupg-users mailing list
Gnupg
David Shaw wrote:
On Wed, May 03, 2006 at 01:45:15AM +0930, Alphax wrote:
How does one get keys from a keyserver when only the v3 fingerprint is
known? I recovered the fingerprints from a trustdb (they had
appended), but I can't work out how to get them off a keyserver...
You can't
How does one get keys from a keyserver when only the v3 fingerprint is
known? I recovered the fingerprints from a trustdb (they had
appended), but I can't work out how to get them off a keyserver...
--
Alphax
Death to all fanatics!
Down with categorical
on a USB device, but it's worth a try...
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
signature.asc
Description: OpenPGP digital signature
___
Gnupg-users mailing list
it by using the sign command.
HTH,
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
signature.asc
Description: OpenPGP digital signature
___
Gnupg-users mailing list
Gnupg-users
-1 for a
hash function.
http://en.wikipedia.org/wiki/Pretty_Good_Privacy#Feature_comparison sums
it up pretty neatly.
--
Alphax
Death to all fanatics!
Down with categorical imperative!
OpenPGP key: http://tinyurl.com/lvq4g
signature.asc
Description: OpenPGP digital
and keyserver don't).
Wouldn't it be nice if 'gpg --version' printed a list of the features
available in the version supported and not-supported by the
executable?
That's a good idea. I'll look at doing that.
Will that also include undocumented features like --enarmor?
--
Alphax
Message
-users/2006-February/028073.html
and their replies.
--
Alphax | /\
Encrypted Email Preferred | \ / ASCII Ribbon Campaign
OpenPGP key ID: 0xF874C613 |X Against HTML email vCards
http://tinyurl.com/cc9up| / \
signature.asc
Description: OpenPGP digital
always
to your .gnupg/gpg.conf file.
HTH,
--
Alphax | /\
Encrypted Email Preferred | \ / ASCII Ribbon Campaign
OpenPGP key ID: 0xF874C613 |X Against HTML email vCards
http://tinyurl.com/cc9up| / \
signature.asc
Description: OpenPGP digital signature
is on the key
server, and you will be unable to do anything except reply Sorry, I
lost that secret key, can't decrypt, here is my new key.
This is why it is *very* important to have both a backup of you secret
keys a revovation certificate.
--
Alphax | /\
Encrypted Email
for it :)
i dont want to decrypt files first and than open them. i want to do
this in one step.
If you're on W32 you can try GPGShell which has an edit clipboard
function available from the tray. Otherwise KGPG etc.
--
Alphax | /\
Encrypted Email Preferred | \ / ASCII
with no arguments assumes that you're either going to type
something to sign/encrypt (followed by ^D) or paste a signed/encrypted
blob which it will verify/decrypt. You need:
# gpg --armor --export mykey mykey.asc
HTH,
--
Alphax | /\
Encrypted Email Preferred | \ / ASCII Ribbon
something to add in the future?
(feature request ;-)
Isn't this what Kerberos was designed for?
--
Alphax | /\
Encrypted Email Preferred | \ / ASCII Ribbon Campaign
OpenPGP key ID: 0xF874C613 |X Against HTML email vCards
http://tinyurl.com/cc9up
, it won't try to.
--
Alphax | /\
Encrypted Email Preferred | \ / ASCII Ribbon Campaign
OpenPGP key ID: 0xF874C613 |X Against HTML email vCards
http://tinyurl.com/cc9up| / \
signature.asc
Description: OpenPGP digital signature
David Shaw wrote:
On Sun, Feb 19, 2006 at 11:24:40PM +1030, Alphax wrote:
Host: sks.keyserver.penguin.de
Command:SEARCH
gpgkeys: HTTP URL is
`http://sks.keyserver.penguin.de:11371/pks/lookup?op=indexoptions=mr
search=Alphax'
?: localhost: Unable to connect: ec=0
gpgkeys
David Shaw wrote:
On Mon, Feb 20, 2006 at 01:52:40AM +1030, Alphax wrote:
David Shaw wrote:
That looks correct so far. I don't suppose you have an environment
variable http_proxy set?
Yes, but I thought that --no-options would disable it... also, I've
tried using an options file without
David Shaw wrote:
On Sun, Feb 19, 2006 at 04:09:32PM +1030, Alphax wrote:
Under GPG 1.4.3rc1 I'm completely unable to get the cURL-type keyserver
handlers to function correctly. For example, using the following command:
gpg --no-options --keyserver sks.keyserver.penguin.de --search Alphax
I
before card is permanently locked
Admin PIN
PIN
Key is protected.
gpg: secret key parts are not available
gpg: Key generation failed: general error
snip
Any clue? Thanks in advance.
Is the secret part of the primary key available in your local keyring?
--
Alphax
ellegant and available for Linux and
Windows.
I not used gajim yet. I prefer tkabber and psi at the moment.
Tkabber can sign messages with gnupg.
PSI/Tkabber can encrypt messages with gnupg.
PSI also has signed presence.
--
Alphax | /\
Encrypted Email Preferred
-ness...
I'd just use whatever compression scheme you want and pipe it into
|gpg --compress-algo none.
One tool one job :).
Yes, this has the added advantage that your recipient has to be able
to deal with whatever non-standard compression you choose. YMMV.
--
Alphax
)
Compression: Uncompressed (Z0), ZIP (Z1), ZLIB (Z2)
HTH,
--
Alphax | /\
Encrypted Email Preferred | \ / ASCII Ribbon Campaign
OpenPGP key ID: 0xF874C613 |X Against HTML email vCards
http://tinyurl.com/cc9up| / \
signature.asc
Description: OpenPGP
.
--
Alphax | /\
Encrypted Email Preferred | \ / ASCII Ribbon Campaign
OpenPGP key ID: 0xF874C613 |X Against HTML email vCards
http://tinyurl.com/cc9up| / \
signature.asc
Description: OpenPGP digital signature
a user ID + key.
0x1F signatures are truly signing a key alone.
So is a backsig of type 0x1F then??
--
Alphax | /\
Encrypted Email Preferred | \ / ASCII Ribbon Campaign
OpenPGP key ID: 0xF874C613 |X Against HTML email vCards
http://tinyurl.com/cc9up
of the key, and import the secret
subkeys. That way you can still sign and encrypt as normal but you won't
be able to use the secret part of the primary key. MAKE SURE YOU BACKUP
THE ORIGINAL!
- --
Alphax | /\
Encrypted Email Preferred | \ / ASCII Ribbon Campaign
OpenPGP key
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
David Shaw wrote:
On Sat, Nov 05, 2005 at 04:39:40PM +1030, Alphax wrote:
David Shaw wrote:
On Fri, Nov 04, 2005 at 10:15:16PM +0300, Pawel Shajdo wrote:
Salve!
Can somebody explain me what is back signatures?
Manual not very clear about
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
David Shaw wrote:
On Mon, Nov 07, 2005 at 11:55:02PM +1030, Alphax wrote:
It's a countermeasure against an attack against signing subkeys.
Basically, the primary key signs all subkeys. With backsigs, the
signing subkey also signs the primary
into a bit of a screed, but it looks like
the best policy is: Don't do stuff unless you know what you are doing!
Don't use software that does stuff behind your back! Use Free software!
- --
Alphax | /\
Encrypted Email Preferred | \ / ASCII Ribbon Campaign
OpenPGP key ID
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
David Shaw wrote:
On Sat, Nov 05, 2005 at 04:32:07PM +1030, Alphax wrote:
David Shaw wrote:
On Sat, Nov 05, 2005 at 01:47:08PM +1030, Alphax wrote:
David Shaw wrote:
snip
I should add that this is a new feature for 1.4.3.
Has 1.4.3 been
be a corresponding Web of Antitrust.
- --
Alphax | /\
Encrypted Email Preferred | \ / ASCII Ribbon Campaign
OpenPGP key ID: 0xF874C613 |X Against HTML email vCards
http://tinyurl.com/cc9up| / \
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.2 (MingW32
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
David Shaw wrote:
On Sun, Nov 06, 2005 at 12:04:27AM +1030, Alphax wrote:
It's as official as any release that hasn't happened yet: that is to
say, we're happy and thrilled if you test it out and report bugs (to
gnupg-devel), but you'll have
not a particularly good attack: the attacker can't issue signatures to
prove his ownership.
I should add that this is a new feature for 1.4.3.
Has 1.4.3 been officially released yet?
- --
Alphax | /\
Encrypted Email Preferred | \ / ASCII Ribbon Campaign
OpenPGP
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
David Shaw wrote:
On Sat, Nov 05, 2005 at 01:47:08PM +1030, Alphax wrote:
David Shaw wrote:
On Fri, Nov 04, 2005 at 02:24:09PM -0500, David Shaw wrote:
On Fri, Nov 04, 2005 at 10:15:16PM +0300, Pawel Shajdo wrote:
Salve!
Can somebody explain
issue signatures to
prove his ownership.
Will this remove the possibility of moving subkeys from one primary key
to another / converting primary keys to subkeys (documented at
http://atom.smasher.org/gpg/gpg-migrate.txt)?
- --
Alphax | /\
Encrypted Email Preferred
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Alphax wrote:
I know this is probably a bad idea, but I want to do it anyway...
Is there anyway to set ownertrust on a key in batch mode?
If there isn't, how can I generate an ownertrust file and import it?
Alternatively, where can I find
a physical size of
almost 30MB. I would appreciate this feature very much.
- --
Alphax | /\
Encrypted Email Preferred | \ / ASCII Ribbon Campaign
OpenPGP key ID: 0xF874C613 |X Against HTML email vCards
http://tinyurl.com/cc9up| / \
-BEGIN PGP
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
David Shaw wrote:
On Tue, Oct 25, 2005 at 11:53:51PM +0930, Alphax wrote:
Recently, when checking my trustb I get the following appearing:
gpg: buffer shorter than subpacket
gpg: signature packet without keyid
gpg: buffer shorter than subpacket
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
David Shaw wrote:
On Wed, Oct 26, 2005 at 12:08:55AM +0930, Alphax wrote:
David Shaw wrote:
On Tue, Oct 25, 2005 at 11:53:51PM +0930, Alphax wrote:
Recently, when checking my trustb I get the following appearing:
gpg: buffer shorter than
it's better than the GD.
- --
Alphax | /\
Encrypted Email Preferred | \ / ASCII Ribbon Campaign
OpenPGP key ID: 0xF874C613 |X Against HTML email vCards
http://tinyurl.com/cc9up| / \
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.2 (MingW32)
Comment
in gpg.conf and are only applied when making signatures.
Ok,.. later I'm going to play with Smartcards, too :-)
Keep in mind that you will be called on to help debug new them if you
get one :)
- --
Alphax | /\
Encrypted Email Preferred | \ / ASCII Ribbon Campaign
OpenPGP
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Topas wrote:
Hi.
When are we going to have ECC support in GnuPG?
Is it in OpenPGP yet?
- --
Alphax | /\
Encrypted Email Preferred | \ / ASCII Ribbon Campaign
OpenPGP key ID: 0xF874C613 |X Against HTML
gpg: buffer shorter than subpacket
gpg: signature packet without keyid
gpg: buffer shorter than subpacket
Now, I figured that cleaning the keys would probably fix this, but the
question is: how do I find the offending keys?
Or should I just batch-clean the lot?
- --
Alphax
tutorial on this is available at http://fortytwo.ch/gpg/subkeys
- --
Alphax | /\
Encrypted Email Preferred | \ / ASCII Ribbon Campaign
OpenPGP key ID: 0xF874C613 |X Against HTML email vCards
http://tinyurl.com/cc9up| / \
-BEGIN PGP SIGNATURE
it's still the same). Included below is the output from pgpdump,
in case that's of any help.
Re-import it from a keyserver, the copy on the SKS network has a valid
self-sig...
If that doesn't work, gpg --sign 0x75AC881F ...
- --
Alphax | /\
Encrypted Email Preferred
into Version: in stage of exporting public key,
making signatures, encrypting with ASCII output, etc.?
Sometimes I do not wish that others will know what exactly OpenPGP
implementation and OS I'm currently using.
Well, you can use --no-emit-version and --no-comments...
- --
Alphax
, so it is compatible with PGP?
I'll cc: this to PGP-Basics @ yahoogroups; see what the people over
there can dig up.
- --
Alphax | /\
Encrypted Email Preferred | \ / ASCII Ribbon Campaign
OpenPGP key ID: 0xF874C613 |X Against HTML email vCards
http
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Klaus Fuerstberger wrote:
Alphax said the following on 10/04/05 12:04:
a time ago I created a Sign Only DSA Key with an ElGamal Encrypt
Subkey. Now I noticed that it is not possible to encrypt a message with
PGP to this Public Key because PGP
OpenPGP :)
--
Alphax | /\
Encrypted Email Preferred | \ / ASCII Ribbon Campaign
OpenPGP key ID: 0xF874C613 |X Against HTML email vCards
http://tinyurl.com/cc9up| / \
___
Gnupg-users mailing list
Gnupg-users
? ;)
--
Alphax | /\
Encrypted Email Preferred | \ / ASCII Ribbon Campaign
OpenPGP key ID: 0xF874C613 |X Against HTML email vCards
http://tinyurl.com/cc9up| / \
___
Gnupg-users mailing list
Gnupg-users
the GD are entering via one of two ways:
firstly, individuals putting their keys on the global directory, and
then sending their keys with GD sigs out to SKS keyservers; secondly,
someone doing a 2-way synchronisation of their entire keyring with both
the GD and the SKS network.
--
Alphax
cdr wrote:
MUS1876 wrote:
Alphax wrote:
I have friends who currently don't want to use PGP because they
fear that their keys will be uploaded to a keyserver, and then
they will be spammed forever more.
I totally agree what friends of Alphax say.
Wouldn't it be cute to have a sepcial
, the public key
itself should have some flag set to signed upload only so that the
server doesn't accept it without the corresponding signature.
However, the keyserver would then have to verify the signature of the
uploading key... how much of an extra burden would this be?
--
Alphax
Zeljko Vrba wrote:
Alphax wrote:
However, the keyserver would then have to verify the signature of the
uploading key... how much of an extra burden would this be?
In what way extra burden? Computationally (CPU), programming
complexity, or...?
Computationally - it would be done only
Johan Wevers wrote:
Alphax wrote:
Removing duplicated signatures however would probably have little impact,
assuming you are removing only the newest ones
Don't you mean keeping the newst ones?
Er, yes. However as David Shaw pointed out further down the thread,
there's no safe way to do so
) know think we know *how* it's being
done. And unfortunately, it's very easy (too easy!) to do, especially
for someone with a high-speed internet connection.
--
Alphax | /\
Encrypted Email Preferred | \ / ASCII Ribbon Campaign
OpenPGP key ID: 0xF874C613 |X
synchronising their
entire keyrings with multiple keyservers, leaking keys that their owners
would rather not have on the keyservers in the process :(
--
Alphax | /\
Encrypted Email Preferred | \ / ASCII Ribbon Campaign
OpenPGP key ID: 0xF874C613 |X Against HTML email
Microsoft's inbuilt
X.509 instead of OpenPGP, since Microsoft Guarantees No Back Doors in
the CryptoAPI?
--
Alphax | /\
Encrypted Email Preferred | \ / ASCII Ribbon Campaign
OpenPGP key ID: 0xF874C613 |X Against HTML email vCards
http://tinyurl.com/cc9up
else could you fit on such a card?
3. Is it possible to have multiple things on a smartcard without them
conflicting?
Thanks,
--
Alphax | /\
Encrypted Email Preferred | \ / ASCII Ribbon Campaign
OpenPGP key ID: 0xF874C613 |X Against HTML email vCards
http
Peter Gutmann wrote:
Alphax [EMAIL PROTECTED] writes:
Zeljko Vrba wrote:
Joe Smith wrote:
For example, your CA can revoke your key leaving you with one key that
is invalid X.509, but valid OpenPGP? Yuck!
Using the X.509 cert and OpenPGP public key (having the same private
key) could
Alon Bar-Lev wrote:
Alphax wrote:
The only place in the GPL where libraries are mentioned is in
reference to the LGPL. Using the Microsoft CryptoAPI doesn't appear
to be legal; AFAICT, this is similar to the reason why Enigmail
insists on GPG instead of being able to interface with PGP
Janusz A. Urbanowicz wrote:
On Tue, Sep 06, 2005 at 11:48:45PM +0930, Alphax wrote:
The application is free to do whatever it wants with these objects,
given sufficient authentication to the card (PIN). Technically, there is
nothing CA can do to prevent you to use your X.509 keys as OpenPGP
1 - 100 of 115 matches
Mail list logo