Thanks Werner This is for a client who is using gpg 142 and I am trying to simulate that here. we are providing them the pgp keys.
attched the conf file. here is the list of commands run C:\gpg>set GNUPGHOME=home C:\GPG>gpg --list-keys home\pubring.gpg ---------------- pub 1024D/551A09BA 2013-11-26 uid aa <a...@xxx.com> sub 2048g/8BF467D3 2013-11-26 C:\gpg>gpg --import pgp_compatible.pgp ( this is the one generated with the pgp --export-format compatible option) gpg: key 6988865C: public key "n...@xxxx.com" imported gpg: Total number processed: 1 gpg: imported: 1 (RSA: 1) C:\gpg>gpg --list-keys home\pubring.gpg ---------------- pub 1024D/7017503A 2013-11-29 uid aa <a...@xxx.com> sub 2048g/41B425C7 2013-11-29 pub 1024R/6988865C 2010-10-26 [expired: 2010-10-26] ( This is incorrect. the PGP key does not have an expiry set ) uid n...@xxxx.com -- Edit and set trust to see if that helps C:\gpg>gpg --edit-key 6988865C pub 1024R/6988865C created: 2010-10-26 expired: 2010-10-26 usage: CS sub 1024R/8530919D created: 2010-10-26 expired: 2010-10-26 usage: E sub 2048R/939E43AE created: 2010-12-12 expired: 2010-12-12 usage: E sub 2048R/0DF32565 created: 2012-12-31 expired: 2015-01-10 usage: E [ expired] (1). n...@xxxx.com Command> trust pub 1024R/6988865C created: 2010-10-26 expired: 2010-10-26 usage: CS sub 1024R/8530919D created: 2010-10-26 expired: 2010-10-26 usage: E sub 2048R/939E43AE created: 2010-12-12 expired: 2010-12-12 usage: E sub 2048R/0DF32565 created: 2012-12-31 expired: 2015-01-10 usage: E [ expired] (1). n...@xxxx.com Please decide how far you trust this user to correctly verify other users' keys (by looking at passports, checking fingerprints from different sources, etc.) 1 = I don't know or won't say 2 = I do NOT trust 3 = I trust marginally 4 = I trust fully 5 = I trust ultimately m = back to the main menu Your decision? 4 pub 1024R/6988865C created: 2010-10-26 expired: 2010-10-26 usage: CS sub 1024R/8530919D created: 2010-10-26 expired: 2010-10-26 usage: E sub 2048R/939E43AE created: 2010-12-12 expired: 2010-12-12 usage: E sub 2048R/0DF32565 created: 2012-12-31 expired: 2015-01-10 usage: E [ expired] (1). n...@xxxx.com Please note that the shown key validity is not necessarily correct unless you restart the program. Command> save Key not changed so no update needed. -- I try to sign this key C:\gpg>gpg --edit-key 6988846C pub 1024R/6988865C created: 2010-10-26 expired: 2010-10-26 usage: CS sub 1024R/8530919D created: 2010-10-26 expired: 2010-10-26 usage: E sub 2048R/939E43AE created: 2010-12-12 expired: 2010-12-12 usage: E sub 2048R/0DF32565 created: 2012-12-31 expired: 2015-01-10 usage: E [ expired] (1). n...@xxxx.com Command> sign pub 1024R/6988865C created: 2010-10-26 expired: 2010-10-26 usage: CS Primary key fingerprint: 9568 7369 43F0 F8F2 512F AAAA A123 82DB 6988 846C n...@xxxx.com This key has expired! Unable to sign. -- The PGP key is definitely not expired. If i further go ahead and try to encrypt C:\gpg>gpg --encrypt --recipient 6988865C install.txt gpg: n...@xxxx.com: skipped: unusable public key gpg: install.txt: encryption failed: unusable public key ------ If I use a PGP key that has expiry date set, it seems to import fine into GPG,. But for a PGP key that has expiry set to Never, the above happens. We use PGP 10. Any suggestions? I am not familiar with config file for gpg. any help is appreciated. Thanks On Tuesday, December 3, 2013 4:45 AM, Werner Koch <w...@gnupg.org> wrote: On Mon, 2 Dec 2013 19:25, ctsonet...@yahoo.com said: > When I import a PGP public key that has "NO expiry" date, into GPG > 1.4.2, it s 1.4.2 is quite old (8 years) and you should definitely not use it anymore. It seems that you did not invoked gpg correctly. Please show us the actual command line you used and also the content of gpg.conf. You may redact keyids and user ids but please change only digits to '1' and letters to 'a' - do not redact and blanks etc. Salam-Shalom, Werner -- Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz.
gpg.conf.cpy
Description: Binary data
_______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
