Re: A postmortem on Efail
On 2018-05-20 07:26, Robert J. Hansen wrote: Writing just for myself -- not for GnuPG and not for Enigmail and definitely not for my employer -- I put together a postmortem on Efail. You may find it worth reading. You may also not. Your mileage will probably vary. :) https://medium.com/@cipherpunk/efail-a-postmortem-4bef2cea4c08 I do applause here because I needed to sign up or something to applaud on the link. mick -- Key ID4BFEBB31 ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Top-posting
even shorter, A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? A: Top-posting. Q: What is the most annoying thing in e-mail? On 2016-04-28 08:20, Werner Koch wrote: Everyone is going to steal this. FWIW: Perry E. Metzger gives this shorter version for many years: A3: Please. Q3: Should I avoid top posting on this mailing list? A2: Because, by reversing the order of a conversation, it leaves the reader without much context, and makes them read a message in an unnatural order. Q2: Why is top posting irritating? A1: It is the practice of putting your reply to a message before the quoted message, instead of after the (trimmed) message. Q1: What is top posting? Shalom-Salam, Werner -- key ID: 0x4BFEBB31 ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: where is gnupg configure file
On 2016-04-02 11:42, Peter Lebbing wrote: To reiterate, apt will always use GnuPG 1.4 from the gnupg package (and gpgv from the gpgv package). You can use GnuPG 2.0 by starting your command line with gpg2 as the program name. This is all for Debian jessie. In the next release, some things will change. HTH, Peter. yes thanks -- key ID: 0x4BFEBB31 ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: where is gnupg configure file
On 2016-04-01 18:21, Peter Lebbing wrote: On 01/04/16 10:21, mick crane wrote: from what I read I don't think I can use gpg2 because Debian GNU/Linux 8 (jessie)apt uses gpg1 at present. GnuPG 1.4 and GnuPG 2.x are co-installable, they can function side-by-side. If you take the Jessie GnuPG 2.0 package, you get 2.0, which will use the same key storage as 1.4. GnuPG 1.4.12 (with backported fixes from later releases) is in package gnupg, and the binary is called gpg. GnuPG 2.0.26 with backports is in package gnupg2, and the binary is called gpg2. You appear to have both installed. is clearer I think but issue is does jessie apt work with gpg being gpg2 ? I can just try but I spent best part of a week making my new server thingy as I would like it and I don't want to change something without knowing what I am doing. -- key ID: 0x4BFEBB31 ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: where is gnupg configure file
On 2016-04-01 06:49, Viktor Dick wrote: Are you sure that you are using gpg2? private-keys-v1.d only contains private keys for gpg2. gpg1 stores them in ~/.gnupg/secring.gpg or something like that. If enigmail uses gpg2 and you created your key with gpg1, they will not see the same keys. '--version' is your friend. IIRC, using the key with gpg2 will import it from gpg1. There was a nice online FAQ entry or something alike where the process is described, but I can't find it at the moment. Regards, Viktor version is 1.4.18 from what I read I don't think I can use gpg2 because Debian GNU/Linux 8 (jessie)apt uses gpg1 at present. I'm certain private-keys-v1.d was there before I attempted to use enigma/roundcube. there is this but I do not know if that is everything required for gpg2 mick@rapunzel:~$ locate gpg2 /usr/bin/gpg2 /usr/lib/gnupg2/gpg2keys_curl /usr/lib/gnupg2/gpg2keys_finger /usr/lib/gnupg2/gpg2keys_hkp /usr/lib/gnupg2/gpg2keys_ldap /usr/share/bash-completion/completions/gpg2 /usr/share/man/man1/gpg2.1.gz I have asked on roundcube list. -- key ID: 0x4BFEBB31 ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: where is gnupg configure file
On 2016-04-01 04:35, Dashamir Hoxha wrote: On Fri, Apr 1, 2016 at 4:05 AM, mick crane wrote: First what I would like to do is find a configure file for gnupg ? Did you check ~/.gnupg/gpg.conf ? If it does not exist just create it. Ah OK, so there is no other config file somewhere with pristine install ( Debian) Is there any point me exporting private keys and putting them in private-keys-v1.d directory ? -- key ID: 0x4BFEBB31 ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
where is gnupg configure file
hello, I made a key pair a couple of years ago but I never used them. Now I try to make new Debian email server ( just for me ) all nice and tidy. there is enigma plugin for roundmail. I imported my private and public keys and they seem to be in the keyring as "gnupg -K --list-secret-keys" lists the secret keys but ~/.gnupg/private-keys-v1.d directory is empty. Using enigma it doesn't seem able to find the keys. First what I would like to do is find a configure file for gnupg ? cheers mick -- key ID: 0x4BFEBB31 ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: failed decryption
> On 19 Apr 2015, at 06:42, Adam Gold wrote: > > I'm attempting to decrypt a symmetrically encrypted tarball appx 25GB in > size. It goes as follows: > > gpg [file].tar.bz2.gpg > gpg: AES256 encrypted data > gpg: encrypted with 1 passphrase > gpg: packet(7) with unknown version 41 > gpg: WARNING: encrypted message has been manipulated! > gpg: packet(5) with unknown version 241 > > The problem with encrypting files for storage seems to be that if there is any corruption there is no way to get any of it back. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: bugs.gnupg.org TLS certificate
>> On 12 Mar 2015, at 23:21, Hugo Osvaldo Barrera wrote: >> >> On 2015-03-11 17:38, Werner Koch wrote: >> On Wed, 11 Mar 2015 15:12, br...@minton.name said: >> >>> git.gnupg.org) don't use that certificate. Have you considered a wildcard >>> certificate? I know this has been discussed before, e.g. at >> >> Too expensive ;-). To stop all these complaints I will add a so called >> real certificate but first I need to move the tracker to another >> machine. >> >> >> Shalom-Salam, >> >> Werner > > No need for a wildcard one. Just get one free certificate for each subdomain > from StartSSL. I think Werner can make his own authority and certificate ? That sort of information stuff used to much more readily accessible on the net, like how to run your own DNS. For forgetful people is difficult to track things down now with so much available.___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Why the software is crap
Something is strange, I don't know much about this stuff but it seems important to you to have encryption working. It is so easy these days to install an OS automagically I would, in your case, make a fresh installation on some other machine and do what it is you want to do to prove a point. Then once you see it working you have confidence. Cheers Mick -- Key ID: 0x4BFEBB31 > On 14 Nov 2014, at 17:24, "da...@gbenet.com" wrote: > >> On 14/11/14 13:11, NdK wrote: >> Il 14/11/2014 13:24, da...@gbenet.com ha scritto: >> >>> I have cooled. You can export your private key - you can export your public >>> key. You can >>> import your private key you can import your public key. In 20 years I have >>> always had the >>> same problem - the same error message and have each time created a new set >>> of keys. I have >>> done this 4 times. >> If all four times you did the same wrong thing, then it's obvious that you >> got the same >> wrong result. >> >> Just to prove it's your error, I copied my .gnupg from one system >> (str957-142) to another >> (str957-004), with the most basic method I ould think of. I'm not an expert >> (probably I >> transferred more than what was needed!), but as you can see I succeeded at >> the first try! >> >> diego@str957-142:~$ gpg --list-secret-keys >> /home/diego/.gnupg/secring.gpg >> >> sec 2048R/F9B9D307 2014-11-14 >> uid Diego >> ssb 2048R/3A4AD1C0 2014-11-14 >> >> diego@str957-142:~$ tar cvfz GnuPG-backup.tar.gz --exclude random_seed .gnupg >> diego@str957-142:~$ gpg --clearsign GnuPG-backup.tar.gz >> >> È necessaria una passphrase per sbloccare la chiave segreta >> dell'utente: "Diego " >> 2048-bit chiave RSA, ID F9B9D307, creata 2014-11-14 >> >> diego@str957-142:~$ ls GnuPG-backup.tar.gz* >> GnuPG-backup.tar.gz GnuPG-backup.tar.gz.asc >> diego@str957-142:~$ scp GnuPG-backup.tar.gz diego@str957-004:/home/diego >> >> Then on the other PC: >> >> diego@str957-004:~$ tar xvfz GnuPG-backup.tar.gz >> .gnupg/ >> .gnupg/gpg-agent-info >> .gnupg/pubring.kbx >> .gnupg/gpg.conf >> .gnupg/private-keys-v1.d/ >> .gnupg/reader_0.status >> .gnupg/pubring.gpg~ >> .gnupg/secring.gpg >> .gnupg/scdaemon.conf >> .gnupg/gpa.conf >> .gnupg/trustdb.gpg >> .gnupg/pubring.gpg >> diego@str957-004:~$ gpg --clearsign GnuPG-backup.tar.gz >> >> È necessaria una passphrase per sbloccare la chiave segreta >> dell'utente: "Diego " >> 2048-bit chiave RSA, ID F9B9D307, creata 2014-11-14 >> >> diego@str957-004:~$ gpg --verify GnuPG-backup.tar.gz.asc >> gpg: Firma eseguita in data ven 14 nov 2014 14:07:57 CET usando RSA, ID >> chiave F9B9D307 >> gpg: Firma valida da "Diego " >> >>> I notice that no one on this list - for all the talk of "oh I've done it" >>> can offer no >>> practical information has to HOW. No one. No one. No one knows how to do >>> this simple task. >>> In all my 20 years I have never found out how. Perhaps things are different >>> under a Windows >>> O/S but on Linux there is NO SOLUTION. >> Done just now in Ubuntu. So there's an error on your side. >> >> BYtE, >> Diego. >> >> ___ >> Gnupg-users mailing list >> Gnupg-users@gnupg.org >> http://lists.gnupg.org/mailman/listinfo/gnupg-users > I have a clean install of 64 bit LXD - all programmes are working 100 per > cent. My keys get > imported perfectly - every programme including Enigmail knows they are there. > But when I try > to sign or sign and encrypt I get the error referred too. No amount of > copying no amount of > backups no amount of anything will change that fact. > > David > > > -- > “See the sanity of the man! No gods, no angels, no demons, no body. Nothing > of the > kind.Stern, sane,every brain-cell perfect and complete even at the moment of > death. No > delusion.” https://linuxcounter.net/user/512854.html - http://gbenet.com > > ___ > Gnupg-users mailing list > Gnupg-users@gnupg.org > http://lists.gnupg.org/mailman/listinfo/gnupg-users ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: mascot_p
> On 17 Jun 2014, at 21:05, Erik Josefsson > wrote: > >> On 06/17/2014 08:12 PM, Bob (Robert) Cavanaugh wrote: >> My Vote is for the armadillo, pangolin, or hedgehog. All cute&cuddly until >> you try to look too close... > > Hedgehog is taken :-) > > http://sirireiter.dk/edge/ The turtle ( teenage mutant ninja ) is ok because it shows armour but also they are slow normally so probably making it look faster somehow would be a good thing, with wings ? ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Mascot_p
> On 17 Jun 2014, at 17:53, Mark Rousell wrote: > >> On 17/06/2014 15:55, ved...@nym.hush.com wrote: >> [...] >> Maybe an armored robotic #D Gnu might be a consideration. > > Oh yes, excellent idea. :-) > > Maybe a mask of some sort ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
