Re: Keysigning challenge policies/procedures
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Marcus Frings wrote: > * Todd Zullinger <[EMAIL PROTECTED]> wrote: > >> I was wondering if some folks here have detailed their challenge >> policies and procedures and if you'd mind sharing them if you have? >> Even handier would be some scripts to help in the automation of this >> task. ;) > > http://www.sc-delphin-eschweiler.de/pgp/ > http://sion.quickie.net/keysigning.txt > http://pgp-tools.alioth.debian.org/ Thank you Marcus. I had actually found your page while doing some research and read it. Very nicely outlined. Thank you for sharing it with the world. I believe that we will be using the method outlined in Len Sassaman's and Phil Zimmermann's paper from above. This too I had read while researching this earlier. (It's good to know I've run across some of the same info you recommend. :) What I don't see in any of the links is more information about sending an email challenge before signing a key. (My apologies if I'm overlooking it on your page or any of the others.) It's been discussed here before but I've not found any scripts or good details that I could point my fellow LUG members toward. Isn't it a good thing to send some random data to each UID on the key someone wishes you to sign and require that they send back that data signed by the key to prove they control both the key and the email address in the UID? Many thanks for the helpful information, - -- ToddOpenPGP -> KeyID: 0xD654075A | URL: www.pobox.com/~tmz/pgp == Money can't buy happiness, but it sure makes living in misery easier. -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.4 (GNU/Linux) Comment: When crypto is outlawed bayl bhgynjf jvyy unir cevinpl. iG0EARECAC0FAkSt44gmGGh0dHA6Ly93d3cucG9ib3guY29tL350bXovcGdwL3Rt ei5hc2MACgkQuv+09NZUB1qEygCbBVGaCdjOa7MJ9gjkdRphpmz/Rx8AoO7Fh4Zd /pIdv/NHTQTTvue9nY2r =O8C/ -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Keysigning challenge policies/procedures
* Todd Zullinger <[EMAIL PROTECTED]> wrote: > I was wondering if some folks here have detailed their challenge > policies and procedures and if you'd mind sharing them if you have? > Even handier would be some scripts to help in the automation of this > task. ;) http://www.sc-delphin-eschweiler.de/pgp/ http://sion.quickie.net/keysigning.txt http://pgp-tools.alioth.debian.org/ Regards, Marcus -- "Was ist für einen Mann das schönste in seinem Leben?" - "Eine weite Steppe, ein schnelles Pferd, der Falke auf seiner Faust und der Wind in seinem Haar." - "Falsch! Conan, sag Du es mir!" - "Zu kämpfen mit dem Feind, ihn zu verfolgen und zu vernichten und sich zu erfreuen an dem Geschrei der Weiber." ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Keysigning challenge policies/procedures
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi, I'm putting together a short talk for my local LUG as we're planning to have a keysigning party in the near future and some folks want to hear more details so they'll understand better. I was wondering if some folks here have detailed their challenge policies and procedures and if you'd mind sharing them if you have? Even handier would be some scripts to help in the automation of this task. ;) In particular, I like how David Shaw has explained the pitfalls with various approaches to doing the email challenge several times on the list. David, is your challenge policy something you've posted anywhere? Thanks in advance for any tips and pointers, - -- ToddOpenPGP -> KeyID: 0xD654075A | URL: www.pobox.com/~tmz/pgp == Politics: A strife of interests masquerading as a contest of principles. The conduct of public affairs for private advantage. -- Ambrose Bierce -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.4 (GNU/Linux) Comment: When crypto is outlawed bayl bhgynjf jvyy unir cevinpl. iG0EARECAC0FAkStWjImGGh0dHA6Ly93d3cucG9ib3guY29tL350bXovcGdwL3Rt ei5hc2MACgkQuv+09NZUB1rfhgCgppgUCneHGIDbicUjD6D2CObVB1wAoO4mITD/ rzoIwYVh4mlSML5fMhdx =PKSA -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
No Public Key Problem
Good day, I'm quite new to GnuPG; my problem started when I want to send my email thru Evolution. I've got this error: # start # Because "gpg: [don't know]: invalid packet (ctb=01) gpg: keydb_search failed: invalid packet gpg: key ACAD66DB: secret key without public key - skipped gpg: skipped `ACAD66DB': secret key not available gpg: signing failed: secret key not available ", you may need to select different mail options. # end # When I try to revoke, I've got this error: # begin # [EMAIL PROTECTED] .gnupg]$ gpg --import ~/revoke.asc gpg: [don't know]: invalid packet (ctb=01) gpg: keydb_search failed: invalid packet gpg: key ACAD66DB: no public key - can't apply revocation certificate gpg: Total number processed: 1 # end # I'm using RHEL 4 Update 3 & gnupg version 1.2.6-1 (RHEL package). Appreciate if anyone explain me the problem and how to solve it. Thanks in advanced. My public key is here: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xACAD66DB -- ## (o_ //\ V_/_ The past belongs to Uruguay, The present belongs to Brasil, But the future belongs to Deutschland. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
poldi and cardman4040
Hello, i have tried to use libpam-poldi to login with my GnuPG smartcard. On my PC everything works. I'm using Ubuntu Dapper, libpam-poldi (version 0.3.0-4) from Debian Sid and the SPR532 card reader. On my notebook I'm using Ubuntu Dapper too, but with a cardman4040. GnuPG with the smartcard works: sign mails, encrypt/decrypt mails, etc.. But if i try to set up poldi with: poldi-ctrl --set-key i get this error messages: poldi-ctrl: pcsc_establish_context failed: no service (0x8010001d) poldi-ctrl: Error: failed to open card: Card Error. The only difference between PC and notebook should be the card reader. Any idea what's going wrong? Maybe poldi doesn't work with the cardman4040? Thanks! Bjoern ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users