Public bug reported: Binary package hint: gpgsm
After a LOT of hunting around, I figured out why I can't use my VeriSign Digital ID to do S/MIME with KMail. When I try to import VeriSign's PCA1ss_v4.509 (downloaded from http://www.verisign.com/support/roots.html) with gpgsm, I get these messages: [EMAIL PROTECTED]:~/Desktop/VeriSign_Roots$ gpgsm --import PCA1ss_v4.509 gpgsm: unknown hash algorithm `1.2.840.113549.1.1.2' gpgsm: (this is the MD2 algorithm) gpgsm: self-signed certificate has a BAD signature: General error gpgsm: basic certificate checks failed - not imported gpgsm: total number processed: 1 gpgsm: not imported: 1 secmem usage: 0/16384 bytes in 0 blocks gpgsm doesn't like MD2 for some reason, so Kleopatra doesn't see a valid certificate chain for my personal cert, so I can't use it for S/MIME. On a related note, Kleopatra should say something about this error, rather than waiting for me to sign something in KMail and then saying "General error"... but I guess that's a different bug. ** Affects: gnupg2 (Ubuntu) Importance: Undecided Status: New -- Can't Import VeriSign Root CA Certificate https://bugs.launchpad.net/bugs/176251 You received this bug notification because you are a member of Ubuntu Bugs, which is the bug contact for Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
