signed message test

2014-10-03 Thread Chris 
I sent myself a post and signed it. The icon for the signed message
stays red (I seem to remember on my old Mandriva box it would be green
if valid). Clicking the icon the output shows:

gpg: using character set `utf-8'
gpg: armor: BEGIN PGP SIGNATURE
Version: GnuPG v2.0.22 (GNU/Linux)
:signature packet: algo 17, keyid E372A7DA98E6705C
version 4, created 1412384205, md5len 0, sigclass 0x00
digest algo 2, begin of digest 52 ba
hashed subpkt 2 len 4 (sig created 2014-10-04)
subpkt 16 len 8 (issuer key ID E372A7DA98E6705C)
data: [158 bits]
data: [159 bits]
gpg: armor header: 
gpg: Signature made Fri 03 Oct 2014 07:56:45 PM CDT using DSA key ID
98E6705C
gpg: using PGP trust model
gpg: key 98E6705C: accepted as trusted key
gpg: Good signature from "Chris Pollock (New email address as of
04/21/07) "
gpg: aka "Chris Pollock "
gpg: binary signature, digest algorithm SHA1

I'm still trying to work out glitches in this new Ubuntu install and I'm
wondering if this is an issue with my setup or with Evolution.

Thanks in advance for any advice

Chris

-- 
Chris
KeyID 0xE372A7DA98E6705C
31.11°N 97.89°W (Elev. 1092 ft)
20:25:32 up 3 days, 4:41, 2 users, load average: 0.10, 0.17, 0.20
Ubuntu 14.04.1 LTS, kernel 3.13.0-37-generic


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: [Announce] The maybe final Beta for GnuPG 2.1

2014-10-03 Thread Pete Stephenson 
On Fri, Oct 3, 2014 at 6:39 PM, Werner Koch  wrote:
> On Fri,  3 Oct 2014 17:40, p...@heypete.com said:
>
>> make -f build-aux/speedo.mk native
>>
>> it does quite a bit, but always seems to spit out the following errors
>> and fails to complete. The bit about gnutls is non-critical for me,
>> but it'd be nice to resolve it. The "required libraries not found"
>
> That is easy: Install the libgnutls-dev package.

Now I get "Requested 'gnutls >= 3.0' but version of GnuTLS is 2.12.23"
-- again, this isn't a big deal. I'm just trying to do a test build,
and I'm not worried about TLS connectivity to keyservers.

That said, if I did want to compile the latest version of GnuTLS from
source, where should one place the compiled results so that the GnuPG
build process would know about it?

>> error seems to be a showstopper, though.
>
>> configure: error:
>> ***
>> *** Required libraries not found. Please consult the above messages
>> *** and install them before running configure again.
>> ***
>
> You should see other warning messages in the config log which tells you
> which library is missing.  You should find the full config long in
> PLAY/build/gnupg/config.log.  My guess is that there is some problem
> with libiconv which is expected to exist. It is usually part of glibc
> but you need to install the development package.

To my untrained, non-developer[1] eye, there appears to be several
things that failed though I'm not sure how to interpret things
correctly. The full config log is ~250kB. I've posted it to a Pastebin
at http://pastebin.com/xZjzsZju if that would help.

[1] I've written and compiled a few ad-hoc C programs for my research,
but I'm very much a beginner at this sort of thing. I apologize for my
lack of knowledge in this regard. Thank you (and others) for your
patience and help.

Cheers!
-Pete



-- 
Pete Stephenson

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: [Announce] The maybe final Beta for GnuPG 2.1

2014-10-03 Thread Murphy 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Pete - beta 864 compiled perfectly for me in Ubuntu 14.04 LTS.  I
suspect you need to use super user powers here.  If you want a
practice version try in a safe directory try:

sudo make -f build-aux/speedo.mk native

otherwise if you want it installed on your machine ready to go use

sudo make -f build-aux/speedo.mk native INSTALL_PREFIX=/usr/local

and Thanks Werner for putting in the INSTALL_PREFIX=/usr/local to make
it work instantly, for us non-unix gurus :)  I am now using gpg2.1 as
my main version 2.  If there is anything truly mission critical I can
always use version 1.x until the stable version of 2.1 comes out.

Cheers!
-BEGIN PGP SIGNATURE-
Version: GnuPG v1

iJwEAQECAAYFAlQvEJoACgkQUVKxkWZz2Q0/VQQAjrks7Dvhi5LZZMapE4i+qKnG
3oHyRyD6Q9K2T05zR9sWBAI2ZJwE5z3soOH/2+vcazy/uLyl1qN68cFIaE86k75T
QZ4S/1UilHV8SBnP91nS2xSRLr4TyuKWGTZrEaF0EZtV8XN8TY9a00NtJ+RsTsmo
1eK141d/t2yOaWmFNOs=
=X5VP
-END PGP SIGNATURE-

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: [Announce] The maybe final Beta for GnuPG 2.1

2014-10-03 Thread Peter Lebbing 
> I am getting the same problem.   I already have that package installed.

Please try to get the relevant part of the error message that actually tells
what it didn't find, because the log posted by Pete is cut down too far to
actually tell. You could also include the whole log, I think. Or would that hit
some size limit, either technical or social?

If so, would sharing it as a gist on github be an acceptable way? I've never
seen it suggested on this mailing list, but I encountered it while doing bug
reports, and it seems like a reasonable way to share a big make log...

Peter.

PS: Please don't top-quote. The usual way to explain it is:
A: Because it messes up the reading order
Q: Why is it annoying?
A: Top-posting
Q: What is the wrong way to quote?
But while remembering this, I'm suddenly reminded of Time-Reversed Owls and I
like that one better now: http://www.smbc-comics.com/?id=2684

-- 
I use the GNU Privacy Guard (GnuPG) in combination with Enigmail.
You can send me encrypted mail if you want some privacy.
My key is available at 

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: [Announce] The maybe final Beta for GnuPG 2.1

2014-10-03 Thread David Schraeder 
I am getting the same problem.   I already have that package installed.


On 10/3/2014 11:39 AM, Werner Koch wrote:
> On Fri,  3 Oct 2014 17:40, p...@heypete.com said:
>
>> make -f build-aux/speedo.mk native
>>
>> it does quite a bit, but always seems to spit out the following errors
>> and fails to complete. The bit about gnutls is non-critical for me,
>> but it'd be nice to resolve it. The "required libraries not found"
> That is easy: Install the libgnutls-dev package.
>
>> error seems to be a showstopper, though.
>> configure: error:
>> ***
>> *** Required libraries not found. Please consult the above messages
>> *** and install them before running configure again.
>> ***
> You should see other warning messages in the config log which tells you
> which library is missing.  You should find the full config long in
> PLAY/build/gnupg/config.log.  My guess is that there is some problem
> with libiconv which is expected to exist. It is usually part of glibc
> but you need to install the development package.
>
>
> Shalom-Salam,
>
>Werner
>

-- 



David Schraeder
Russell Regional Hospital
Direct Dial: 785-483-0890
Direct Fax:  785-483-0891
dav...@russellhospital.org



**
Electronic Mail Confidentiality Notice:
 
This electronic mail message and all attachments may contain confidential
information belonging to the sender or the intended recipient(s).  This
information is intended ONLY for the use of the individual or entity named
above.  If you are not the intended recipient(s), you are hereby notified that
any disclosure, copying, distribution (electronic or otherwise), forwarding
or taking any action in reliance on the contents of this information is
strictly prohibited and may be unlawful.
 
If you have received this electronic transmission in error, please
immediately notify the sender by telephone, facsimile, or email to arrange
for the return of the electronic mail, attachments, or documents and delete 
all materials from any and all computers.
 
Russell Regional Hospital
200 South Main Street   Tele. 
785-483-3131
Russell, KS  67665Fax  
785-483-4859
**


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: [Announce] The maybe final Beta for GnuPG 2.1

2014-10-03 Thread Ludwig Hügelschäfer 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

On 03.10.14 19:47, Peter Lebbing wrote:

> It is most definitely Staatssicherheit as in "die Sicherheit des 
> Staat(e)s". It's a genetive, just like it's People's Republic of
> China and not People Republic of China.

Perfect explanation!

> In my mind, I pronounce the two esses.

A german news speaker would do it so, but you wouldn't notice it in
every day german.

Ludwig

-BEGIN PGP SIGNATURE-
Version: GnuPG v2

iQEcBAEBCgAGBQJULu/uAAoJEA52XAUJWdLjObIH/RBFQM4x+0D7Yk4EBfo/4+7u
zMtcOM+0WJ/nYRFCdpW0lt+tyZSSzxi1FLaVypktowV3W3DdSvIbMpZ8ZffyqXn8
M/xeyifD4faV+5EfFf7KETj231y2PVxwygFEW4jfepvjrDNz4dsI7BkXrP+zItUm
C+JgysES8Hq2e0bW0fyCyjoit0CTeLpAtN5OFnT7//SayGWYpH05QwlEjQ2I/MJ5
dnXG6I1y3ys8lgLFJme5oJCumSLc8NLt92f28rVaIDv/A9lNphY/Xwtmk/DLl3N5
bSC5nJJwDjrbC4FJbpt6K282VwYMxwo1VOQALS54Gi89O8ej+38giOzLEk2501o=
=aSew
-END PGP SIGNATURE-

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: [Announce] The maybe final Beta for GnuPG 2.1

2014-10-03 Thread Robert J. Hansen 
> Disclaimer: I'm not Werner, and I'm Dutch.

These are forgivable character flaws.  :)

> It is most definitely Staatssicherheit as in "die Sicherheit des
> Staat(e)s". It's a genetive, just like it's People's Republic of China
> and not People Republic of China.

Ah, that explains my difficulty.  My usual grammatical rule of thumb for
German is "imagine 18th-century English," which works fine most of the
time but breaks for the genitive case (on account of English not having
one -- the way we structure possessives is a remnant of the Saxon
genitive, but it does not represent an actual grammatical case).

Thanks.  :)

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: [Announce] The maybe final Beta for GnuPG 2.1

2014-10-03 Thread Peter Lebbing 
On 03/10/14 19:15, Robert J. Hansen wrote:
> [*] Werner, Wikipedia lists it as Staatssicherheit, but for some reason
> that just doesn't look right to me.  Is it?

Disclaimer: I'm not Werner, and I'm Dutch.

It is most definitely Staatssicherheit as in "die Sicherheit des
Staat(e)s". It's a genetive, just like it's People's Republic of China
and not People Republic of China.

In my mind, I pronounce the two esses. Not sure how much you would
notice that, though.

HTH,

Peter.

-- 
I use the GNU Privacy Guard (GnuPG) in combination with Enigmail.
You can send me encrypted mail if you want some privacy.
My key is available at 

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: [Announce] The maybe final Beta for GnuPG 2.1

2014-10-03 Thread Robert J. Hansen 
>> Maintaining and improving GnuPG is costly.  For more than a decade,
>> g10 Code GmbH, a German company owned and headed by GnuPG's principal
>> author Werner Koch, is bearing the majority of these costs.  To help
>> them carry on this work, they need your support.  See
>>
>>   https://gnupg.org/donate/
> 
> Thanks for the reminder.

Indeed.  Today's also Tag der Deutschen Einheit ("German Unity Day"),
which celebrates the end of the GDR -- whose secret police service, the
Ministerium fuer Staatsicherheit[*], commonly known as Stasi, practiced
surveillance of its own citizens on a scale that's hard to imagine.  So,
celebrate your privacy by donating to GnuPG and sitting down with the
movie _Das Leben der Anderen_, released in English-speaking countries as
_The Lives of Others_.  It's a remarkable film and worth seeing.


[*] Werner, Wikipedia lists it as Staatssicherheit, but for some reason
that just doesn't look right to me.  Is it?

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: [Announce] The maybe final Beta for GnuPG 2.1

2014-10-03 Thread Werner Koch 
On Fri,  3 Oct 2014 17:40, p...@heypete.com said:

> make -f build-aux/speedo.mk native
>
> it does quite a bit, but always seems to spit out the following errors
> and fails to complete. The bit about gnutls is non-critical for me,
> but it'd be nice to resolve it. The "required libraries not found"

That is easy: Install the libgnutls-dev package.

> error seems to be a showstopper, though.

> configure: error:
> ***
> *** Required libraries not found. Please consult the above messages
> *** and install them before running configure again.
> ***

You should see other warning messages in the config log which tells you
which library is missing.  You should find the full config long in
PLAY/build/gnupg/config.log.  My guess is that there is some problem
with libiconv which is expected to exist. It is usually part of glibc
but you need to install the development package.


Shalom-Salam,

   Werner

-- 
Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: [Announce] The maybe final Beta for GnuPG 2.1

2014-10-03 Thread Pete Stephenson 
On Fri, Oct 3, 2014 at 4:35 PM, Werner Koch  wrote:
> Hello!
>
> I just released another *beta* version of GnuPG *2.1*.  It has been
> released to give you the opportunity to check out new features and to
> help fixing bugs.

Excellent!

[snip]

> GnuPG requires a couple of extra libraries, which need to be build and
> installed before GnuPG.  The configure script will tell you about the
> requirements.
>
> You may try the Speedo system as an alternative build method:
>
>   make -f build-aux/speedo.mk native INSTALL_PREFIX=/usr/local

When I run

make -f build-aux/speedo.mk native

it does quite a bit, but always seems to spit out the following errors
and fails to complete. The bit about gnutls is non-critical for me,
but it'd be nice to resolve it. The "required libraries not found"
error seems to be a showstopper, though.

I'm doing the build on a stock Ubuntu Server 14.04 32-bit system. I've
installed the "build-essential" package from the repo, so I have gcc,
make, etc.

configure: WARNING:
***
*** Building without NTBTLS and GNUTLS - no TLS access to keyservers.
***
*** No package 'gnutls' found
***
configure: error:
***
*** Required libraries not found. Please consult the above messages
*** and install them before running configure again.
***
make[1]: *** 
[/home/pete/gpg/gnupg-2.1.0-beta864/PLAY/stamps/stamp-gnupg-01-configure]
Error 1
make[1]: Leaving directory `/home/pete/gpg/gnupg-2.1.0-beta864'
make: *** [native] Error 2

Any ideas?

> Maintaining and improving GnuPG is costly.  For more than a decade,
> g10 Code GmbH, a German company owned and headed by GnuPG's principal
> author Werner Koch, is bearing the majority of these costs.  To help
> them carry on this work, they need your support.  See
>
>   https://gnupg.org/donate/

Thanks for the reminder.

Cheers!
-Pete

-- 
Pete Stephenson

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

[Announce] The maybe final Beta for GnuPG 2.1

2014-10-03 Thread Werner Koch 
Hello!

I just released another *beta* version of GnuPG *2.1*.  It has been
released to give you the opportunity to check out new features and to
help fixing bugs.

  If you need a stable and fully maintained version of GnuPG,
  you should use version 2.0.26 or 1.4.18.

This version is marked as BETA and as such it should in general not be
used for real work.  However, the functionality is solid enough and thus
this may actually be the last beta before we release 2.1.0 some time
this year.


What's new in 2.1.0-beta864 since beta784
=

 * gpg: Removed the GPG_AGENT_INFO related code.  GnuPG does now only
   use a fixed socket name in its home directory.

 * gpg: Renamed --gen-key to --full-gen-key and re-added a --gen-key
   command using less prompts.

 * gpg: Use SHA-256 for all signature types also on RSA keys.

 * gpg: Default keyring is now created with a .kbx suffix.

 * gpg: Add a shortcut to the key capabilies menu (e.g. "=e" sets the
   encryption capabilities).

 * gpg: Fixed obsolete options parsing.

 * speedo: Improved the quick build system.

 Already released with beta834:

 * gpg: Improved passphrase caching.

 * gpg: Switched to algorithm number 22 for EdDSA.

 * gpg: Removed CAST5 from the default preferences.

 * gpg: Order SHA-1 last in the hash preferences.

 * gpg: Changed default cipher for --symmetric to AES-128.

 * gpg: Fixed export of ECC keys and import of EdDSA keys.

 * dirmngr: Fixed the KS_FETCH command.

 * speedo: Downloads related packages and works for non-Windows.


Getting the Software


GnuPG 2.1.0-beta864 is available at

 ftp://ftp.gnupg.org/gcrypt/gnupg/unstable/gnupg-2.1.0-beta864.tar.bz2
 ftp://ftp.gnupg.org/gcrypt/gnupg/unstable/gnupg-2.1.0-beta864.tar.bz2.sig

and soon on all mirrors .

Please read the README file !


Checking the Integrity
==

In order to check that the version of GnuPG which you are going to
install is an original and unmodified one, you can do it in one of
the following ways:

 * If you already have a trusted version of GnuPG installed, you
   can simply check the supplied signature.  For example to check the
   signature of the file gnupg-2.1.0-beta864.tar.bz2 you would use
   this command:

 gpg --verify gnupg-2.1.0-beta864.tar.bz2.sig

   Depending on your installation you may use "gpg2" instead of "gpg".
   This checks whether the signature file matches the source file.  You
   should see a message indicating that the signature is good and made
   by that signing key.  Make sure that you have the right key, either
   by checking the fingerprint of that key with other sources or by
   checking that the key has been signed by a trustworthy other key.
   Note, that you can retrieve the signing key using the command

 finger wk ,at' g10code.com

   or using a keyserver like

 gpg --keyserver keys.gnupg.net --recv-key 4F25E3B6

   The distribution key 4F25E3B6 is signed by the well known key:

 pub   dsa2048/1E42B367 2007-12-31 [expires: 2018-12-31]
 Key fingerprint = 8061 5870 F5BA D690 3336  86D0 F2AD 85AC 1E42 B367
 uid  Werner Koch 

   Never use a GnuPG version you just downloaded to check the
   integrity of the source - use an existing GnuPG installation!


Building


GnuPG requires a couple of extra libraries, which need to be build and
installed before GnuPG.  The configure script will tell you about the
requirements.

You may try the Speedo system as an alternative build method:

  make -f build-aux/speedo.mk native INSTALL_PREFIX=/usr/local

This method downloads all required libraries and does a native build of
GnuPG to "/usr/local" (or to "PLAY/inst/" if you do not specify the
INSTALL_PREFIX).  Note that you need installation privileges on the
install directory, GNU make, and a decent Unix system.  Building for
Windows is in theory possible but has not been tested for this release.


Documentation
=

The file gnupg.info has the complete user manual of the system.
Separate man pages are included as well; however they have not all the
details available in the manual.  It is also possible to read the
complete manual online in HTML format at

  https://www.gnupg.org/documentation/manuals/gnupg-devel/

The chapters on gpg-agent, gpg and gpgsm include information on how
to set up the whole thing.  You may also want search the GnuPG mailing
list archives or ask on the gnupg-users mailing lists for advise on
how to solve problems.  Many of the new features are around for
several years and thus enough public knowledge is already available.

Almost all mail clients support GnuPG-2.  Mutt users may want to use
the configure option "--enable-gpgme" during build time and put a "set
use_crypt_gpgme" in ~/.muttrc to enable S/MIME support along with the
reworked OpenPGP support.


Support
===

Please consult the archive of the gnupg-users mailing list before
reporti

Re: WARNING: This key is not certified with a trusted signature!

2014-10-03 Thread Chris 
On Fri, 2014-10-03 at 07:40 +0200, Hauke Laging wrote:
> Am Do 02.10.2014, 22:38:56 schrieb Chris:
> > I'm having to put my system back together again after my Mandriva box
> > crashed back in August. I'm up to getting my key installed and when
> > sending myself a test post I get this:
> 
> > gpg: WARNING: This key is not certified with a trusted signature!
> > gpg:  There is no indication that the signature belongs to the
> > owner.
> 
> If you have not restored the whole GnuPG directory (~/.gnupg under 
> Linux) but imported the keys only then the problem is that your keys 
> have lost their absolute trust.
> 
> You can restore that with 
> 
> gpg --trusted-key 0xE372A7DA98E6705C --list-keys 0x98E6705C
> 
> or
> 
> gpg --edit-key 0x98E6705C trust
> 
> 
> Hauke

Good morning Hauke and thank you for the reply. I ran the above and now
it does seem to show as a trusted key:

gpg: using character set `utf-8'
gpg: armor: BEGIN PGP SIGNATURE
Version: GnuPG v2.0.22 (GNU/Linux)
:signature packet: algo 17, keyid E372A7DA98E6705C
version 4, created 1412342971, md5len 0, sigclass 0x00
digest algo 2, begin of digest b6 29
hashed subpkt 2 len 4 (sig created 2014-10-03)
subpkt 16 len 8 (issuer key ID E372A7DA98E6705C)
data: [159 bits]
data: [157 bits]
gpg: armor header: 
gpg: Signature made Fri 03 Oct 2014 08:29:31 AM CDT using DSA key ID
98E6705C
gpg: using PGP trust model
gpg: key 98E6705C: accepted as trusted key
gpg: Good signature from "Chris Pollock (New email address as of
04/21/07) "
gpg: aka "Chris Pollock "
gpg: binary signature, digest algorithm SHA1

Sending a test post to myself shows the above however shouldn't the icon
that Evolution shows for the signature be green instead of red since
it's now ultimately trusted? I seem to remember that being the case. I
published the key last night to

hkp://keyserver.ubuntu.com:11371
hkp://pool.sks-keyservers.net

I'm using Gnomes 'Passwords/Keys' app which looks similar to GPG-Agent
which I was used to using on my Mandriva box before it crashed. I've
installed GPG-Agent on this Ubuntu box however I seem to remember in the
old box a 'user interface' that I could use to retrieve keys and so
forth. Guess when time allows today I'll go in and read the docs on it,
I was just too tired last night to get very involved in it. I should
also be able to import your key to my keyring from one of the key
servers, will have to work on that issue today. All of this is I'm sure
has simple solutions, it's just been so long since I had first installed
it on the old box that I've forgotten a lot of what I did. I shall go
back and Read The Fine Manual today and see if I can figure out what
I've neglected to do.

Thanks very much again Hauke for your reply, it was very helpful. 

Chris


-- 
Chris
KeyID 0xE372A7DA98E6705C
31.11°N 97.89°W (Elev. 1092 ft)
09:38:07 up 2 days, 17:53, 1 user, load average: 0.31, 0.57, 0.77
Ubuntu 14.04.1 LTS, kernel 3.13.0-37-generic


signature.asc
Description: This is a digitally signed message part
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users