Re: Finding all files encrypted with a certain key

2023-10-26 Thread raf via Gnupg-users
On Wed, Oct 25, 2023 at 09:38:55PM -0500, Jacob Bachmeyer via Gnupg-users wrote: > raf via Gnupg-users wrote: > > [...] > > While testing these, I just noticed that /usr/bin/file > > on my macOS-10.14 laptop shows a different keyid to > > what libmagic shows. That&#

Re: Finding all files encrypted with a certain key

2023-10-26 Thread raf via Gnupg-users
On Thu, Oct 26, 2023 at 11:29:38AM +0800, "Felix E. Klee" wrote: > On Wed, Oct 25, 2023 at 9:23 PM Werner Koch wrote: > > > gpg: decryption failed: No secret key > > > > > > I wonder how to get rid of that. > > > > grep -v on stderr ;-). > > Thanks, I was thinking about that. But I think s

Re: Finding all files encrypted with a certain key

2023-10-25 Thread raf via Gnupg-users
On Wed, Oct 25, 2023 at 11:01:30AM +0800, "Felix E. Klee" wrote: > On Tue, Oct 24, 2023 at 5:12?PM Andrew Gallagher > wrote: > > GNU `file` will print the encryption key ID: > > Interesting. I wonder if there is any disadvantage of using `file` over > Werner's proposal. I don't think so. The

Re: Finding all files encrypted with a certain key

2023-10-24 Thread raf via Gnupg-users
On Tue, Oct 24, 2023 at 11:38:52AM +0800, "Felix E. Klee" wrote: > For the purpose of re-encryption with a new key, I’d like to find all > files that are encrypted with my key BEF6EFD38FE8DCA0. All encrypted > files, independent of key, have the extension `.gpg`. > > How do I do that for a mass

Re: Management of background services with systemd

2023-03-01 Thread raf via Gnupg-users
On Wed, Mar 01, 2023 at 09:24:35PM -0500, Michael Richardson wrote: > > David Joaquín Shourabi Porcel wrote: > > I am researching GnuPG for my employer. We will stick with the old > > release series 2.2 at first, because few Linux distributions package > > 2.3 or 2.4 yet. However,

Re: mutt locking

2022-10-25 Thread raf via Gnupg-users
On Tue, Oct 25, 2022 at 05:16:10PM +0200, Bernhard Reiter wrote: > Am Freitag 23 September 2022 18:19:42 schrieb Louis Holbrook via Gnupg-users: > > - I would like to use pinentry-tty during my normal gpg cli operations. > > - I am fine with using pinentry-curses in the mutt context > > > > Is t

Re: Questions re auto-key-locate

2022-02-15 Thread raf via Gnupg-users
On Tue, Feb 15, 2022 at 12:32:50PM -0800, "Dan Mahoney (Gushi) via Gnupg-users" wrote: > Hey all, > > A long time ago I wrote a doc on a blog about putting PGP keys in the DNS, > which has been linked to quite a bit. I also recoded make-dns-cert as a > shell script so that people who want to d

Re: [Announce] A New Future for GnuPG

2022-01-03 Thread raf via Gnupg-users
On Mon, Jan 03, 2022 at 08:19:26AM +0100, Werner Koch via Gnupg-users wrote: > Hello and a Happy Gnu Year! Happy Gnu Year indeed! Congratulations on the marvellous news, and many thanks for all that you do. cheers, raf ___ Gnupg-users mailing list

Re: User id's without person's name, only email

2021-11-17 Thread raf via Gnupg-users
On Wed, Nov 17, 2021 at 04:40:46PM +0200, Teemu Likonen wrote: > * 2021-11-16 17:06:02+, Andrew Gallagher via Gnupg-users wrote: > > > The "Real Name" and "Comment" portions of the userID are mere > > conventions and, if you have an address book, entirely redundant. > > Thanks. That is rath

Re: v2.3 of gnupg for automation?

2021-10-27 Thread raf via Gnupg-users
On Wed, Oct 27, 2021 at 09:33:16AM +0200, Werner Koch via Gnupg-users wrote: > On Tue, 26 Oct 2021 18:21, Robert J. Hansen said: > > > That's true, and is correct. If you're passing a passphrase via the > > command line, that passphrase becomes visible to anyone with the > > privileges to get

Re: how to add a passphrase to a keypair

2021-10-02 Thread raf via Gnupg-users
On Sun, Oct 03, 2021 at 01:40:03PM +1100, raf wrote: > On Sat, Oct 02, 2021 at 07:12:45PM -0400, Jack via Gnupg-users > wrote: > > > Is it possible to add a passphrase to a secret key originally created > > without one? If so, please tell me how. I'll be happy with either > > instructions or

Re: how to add a passphrase to a keypair

2021-10-02 Thread raf via Gnupg-users
On Sat, Oct 02, 2021 at 07:12:45PM -0400, Jack via Gnupg-users wrote: > Is it possible to add a passphrase to a secret key originally created > without one? If so, please tell me how. I'll be happy with either > instructions or pointer to the fine manual I either missed or misread. > > I have

Re: Why is --auto-key-locate only for encrypting?

2021-09-02 Thread raf via Gnupg-users
On Thu, Sep 02, 2021 at 01:10:40PM +0200, Ingo Klöcker wrote: > On Donnerstag, 2. September 2021 01:28:42 CEST raf via Gnupg-users wrote: > > On Wed, Sep 01, 2021 at 01:50:36PM +0200, Ingo Klöcker > wrote: > > > On Mittwoch, 1. September 2021 07:55:21 CEST raf

Re: Why is --auto-key-locate only for encrypting?

2021-09-01 Thread raf via Gnupg-users
On Wed, Sep 01, 2021 at 01:50:36PM +0200, Ingo Klöcker wrote: > On Mittwoch, 1. September 2021 07:55:21 CEST raf via Gnupg-users wrote: > > Why is the --auto-key-locate only for encrypting (says > > the gpg(1) manpage)? Wouldn't it also be useful when > > rece

Why is --auto-key-locate only for encrypting?

2021-09-01 Thread raf via Gnupg-users
Hi, debian-11, gpg-2.2.27 Why is the --auto-key-locate only for encrypting (says the gpg(1) manpage)? Wouldn't it also be useful when receiving emails and verifying signatures? cheers, raf ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lis

Request: --export-options export-dane-modern

2021-09-01 Thread raf via Gnupg-users
Hi, Is there any chance that a new export option could be added (alongside or instead of export-dane) to output "modern" Bind9 zonefile syntax (i.e. "OPENPGPKEY" rather than "TYPE61 \# 2193", and base64 rather than hexadecimal)? I suppose it's not important. It's just prettier. But since DNS que

Re: WKD proper behavior on fetch error

2021-01-18 Thread raf via Gnupg-users
On Mon, Jan 18, 2021 at 01:42:52PM +0100, André Colomb wrote: > We need to remember that WKD is only a convenience mechanism for > discovery, not any kind of authentication. > > Kind regards > André And it's discovery that begins with an email address. I still can't work out what functionality

Re: WKD proper behavior on fetch error

2021-01-17 Thread raf via Gnupg-users
On Sun, Jan 17, 2021 at 10:27:24PM +0100, Stefan Claas via Gnupg-users wrote: > On Sun, Jan 17, 2021 at 10:16 PM Juergen Bruckner via Gnupg-users > wrote: > > Please try to accept that GitHub's SSL cert is *valid*, or do you think > that a CA certifies and invalid cert? Please try to accept t

Re: WKD proper behavior on fetch error

2021-01-17 Thread raf via Gnupg-users
On Sun, Jan 17, 2021 at 09:14:37AM +0100, Stefan Claas wrote: > Regarding a multi-purpose key and WKD. I mentioned here already > that a multi-purpose usage key can be used for other tasks as well, > besides popular email. I know that keys can be used for things other than email, but the point

Re: WKD proper behavior on fetch error

2021-01-16 Thread raf via Gnupg-users
On Sat, Jan 16, 2021 at 02:25:14AM +0100, Ángel wrote: > On 2021-01-15 at 20:34 +0100, Stefan Claas via Gnupg-users wrote: > > My intention was only to promote WKD OpenPGP usage for github.io > > pages in case people like the idea. > > This was a good idea, but github pages don't seem to support

Re: WKD proper behavior on fetch error

2021-01-16 Thread raf via Gnupg-users
On Sat, Jan 16, 2021 at 02:20:17AM +0100, Stefan Claas wrote: > On Sat, Jan 16, 2021 at 1:45 AM raf via Gnupg-users > wrote: > > > But there is no certificate that covers that sub-sub-domain. > > That's why browsers complain if you go to > > https://openpgpkey

Re: WKD proper behavior on fetch error

2021-01-15 Thread raf via Gnupg-users
On Fri, Jan 15, 2021 at 07:56:26AM +0100, André Colomb wrote: > Am 15. Januar 2021 01:56:04 MEZ schrieb raf via Gnupg-users > : > >But of course, you're not asking for that. You're just > >asking for something to work. There must be other ways. > >Accepting in

Re: WKD proper behavior on fetch error

2021-01-15 Thread raf via Gnupg-users
On Fri, Jan 15, 2021 at 07:56:16AM +0100, Stefan Claas wrote: > On Fri, Jan 15, 2021 at 2:04 AM raf via Gnupg-users > wrote: > > [...] > > > I'm really not an expert, and the above might not make > > any sense. I'm just thinking aloud. > > Me nei

Re: WKD proper behavior on fetch error

2021-01-14 Thread raf via Gnupg-users
On Thu, Jan 14, 2021 at 04:33:00PM +0100, Stefan Claas via Gnupg-users wrote: > [...] My initial post was a help request and I also explained > why it IMHO would be good to have such a solution, which > would not hurt the GnuPG ecosystem in any form and would be > IMHO an enrichment for GnuPG us

Re: Thunderbird / Enigmail / Autocrypt

2020-11-23 Thread raf via Gnupg-users
On Mon, Nov 23, 2020 at 01:23:39PM +0100, Werner Koch via Gnupg-users wrote: > On Mon, 23 Nov 2020 07:22, cqcallaw said: > > > At my job, I frequently send out summary charts and graphs surrounded by > > text. > > Attachments simply do not work; my audience cannot spend the mental energy > >

Re: how to suppress new "insecure passphrase" warning

2020-09-17 Thread raf via Gnupg-users
Alan Bram via Gnupg-users wrote: > I have been using gnupg for a few years now, with no change in the way I > invoke it. Recently (I guess my package manager updated to a new version: > 2.2.23) it started injecting a warning about "insecure passphrase" and > suggesting that I ought to include a d

Re: Protecting encryption server

2020-07-28 Thread raf via Gnupg-users
On Tue, Jul 28, 2020 at 08:39:28AM -0700, Ayoub Misherghi via Gnupg-users wrote: > A human environment went insane and uncontrollable. The system is intended > to bring sanity back and maintain it. > > > Client programs access server(s) for real-time encryption or decryption. > Network of serv

Re: Have gpg-preset-passphrase always required a keygrip? (was: Newbie question.)

2020-07-13 Thread raf via Gnupg-users
Dmitry Alexandrov wrote: > Peter Lebbing wrote: > > You can actually unlock keys the way GnuPG intends to do that with: > > > > $ my-unlocker | /usr/lib/gnupg/gpg-preset-passphrase --preset > > > > You can find the keygrip for your keys with: > > > > $ gpg --with-keygrip --list-secret-keys > > >

Re: decrypt aes256 encrypted file without gpg-agent

2020-06-29 Thread raf via Gnupg-users
Werner Koch via Gnupg-users wrote: > On Mon, 29 Jun 2020 13:07, vedaal said: > > > otherwise , just use GnuPG 1.4.x , and unless you ever need an > > Do not use 1.4 unless you have to decrypt old non-MDC protected data or > data encrypted to a legacy v3 key. > > Shalom-Salam, > >Werner Sa

Re: Fwd: The GnuPR FAQ

2020-05-11 Thread raf via Gnupg-users
vedaal via Gnupg-users wrote: > On 5/11/2020 at 6:15 PM, "Robert J. Hansen" wrote: > > > >This arrived in my inbox: I'm presenting it here without comment. > >My > >response will be following in a moment. > > > > > > Forwarded Message > >Subject: The GnuPR FAQ > >Date:

Re: US Government

2020-02-04 Thread raf via Gnupg-users
Franklin-King, Sandra M. via Gnupg-users wrote: > Hi > > I am inquiring as to this software has been reviewed and classified by the > Bureau of Security with the US Government? > > Sandra Franklin-King > LPD Trade Compliance Manager > > Thermo Fisher Scientific > 28 Schenck Parkway, Suite 400

Re: gpg-agent, pinentry and Emacs

2019-11-13 Thread raf via Gnupg-users
Ralph Seichter wrote: > * raf via Gnupg-users: > > > Does "--pinentry-mode loopback" make any difference? > > Where exactly do you suggest I add this option? > > -Ralph Wherever it needs to be to get added to the gpg command line when invoked from withi

Re: gpg-agent, pinentry and Emacs

2019-11-12 Thread raf via Gnupg-users
Ralph Seichter wrote: > I asked about the following on the Notmuch mailing list first, and > Daniel Kahn Gillmor offered some advice, but the issue is not yet > resolved. I'm hoping for additional input from the GnuPG community. > > I use Dovecot with a Maildir-based message store, allowing me to

Re: How to improve our GUIs (was: We have GOT TO make things simpler)

2019-11-03 Thread raf via Gnupg-users
ke money by analysing email content to improve advertising effectiveness so I can't see them doing it any time soon. cheers, raf > On 10/29/2019 7:33 PM, raf via Gnupg-users wrote: > > Hi, > > > > Sorry if this was mentioned before but I've just come > > a

How to improve our GUIs (was: We have GOT TO make things simpler)

2019-10-29 Thread raf via Gnupg-users
Hi, Sorry if this was mentioned before but I've just come across a novel approach to email encryption that doesn't do end-to-end encryption, but rather it encrypts email upon receipt so that an individual can encrypt the email that is stored in their IMAP account as it arrives without the need for

Re: add-photo continued ...

2019-09-04 Thread raf via Gnupg-users
Stefan Claas via Gnupg-users wrote: > Hi all, > > some of you may remember the add-photo thread we had a while ago > and I wondered why the max image size for a UAT packet is 16 MB. > > Recently I saw a Twitter post explaining that a .jpeg image header > can contain 16 MB of data. That's just d

Re: Essay on PGP as it is used today

2019-07-21 Thread raf via Gnupg-users
Ángel wrote: > On 2019-07-18 at 12:13 +1000, raf wrote: > > At work, when a client insists on email, and I (or the law) > > insist on encryption, I provide them with instructions for > > installing 7-zip and send them an AES-256 encrypted zip or 7z > > file as an attachment. It's the simplest thin

Re: Essay on PGP as it is used today

2019-07-21 Thread raf via Gnupg-users
Stefan Claas wrote: > raf via Gnupg-users wrote: > > > Stefan Claas via Gnupg-users wrote: > > > > > Andrew Gallagher wrote: > > > > > > > * And finally: “don’t encrypt email”? Yes, well. Email is not going > > > > away. > >

Re: Essay on PGP as it is used today

2019-07-17 Thread raf via Gnupg-users
Stefan Claas via Gnupg-users wrote: > Andrew Gallagher wrote: > > > * And finally: “don’t encrypt email”? Yes, well. Email is not going away. > > Just like passwords, its death has been long anticipated, yet never arrives. > > So what do we do in the meantime? > > I think the biggest problems is

Re: keyserver-options: self-sigs-only, import-clean, import-minimal

2019-07-03 Thread raf via Gnupg-users
Werner Koch via Gnupg-users wrote: > On Wed, 3 Jul 2019 12:35, gnupg-users@gnupg.org said: > > > problem but I have read RJH's article). It sounds like SKS servers can > > handle these poisoned keys but GPG can't. That suggests that maybe GPG's > > I think here is a misunderstanding. Sure, pro