TB and OpenPGP
Hopefully this will be the last message about this stuff that comes from me. I imported the public key of a friend of mine into the key manager but I cant set the validity level... Whenever I try to check the signature of his mail it turns out invalid and there's a grey dot in the Validity column. What is going on ? -- If Bill Gates had a dime for every time a Windows box crashed... ...Oh wait, he already does. -- __ Archives : http://tbudl.thebat.dutaint.com Moderators : mailto:[EMAIL PROTECTED] TBTech List: mailto:[EMAIL PROTECTED] Unsubscribe: mailto:[EMAIL PROTECTED] You are subscribed as : archive@jab.org
Re: TB and OpenPGP
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hello Silviu Cojocaru ! On Sat, 12 May 2001 15:55:51 +0300 GMT your local time, which was 12.05.2001, 14:55 (GMT+0200) where I live, you wrote: I imported the public key of a friend of mine into the key manager but I cant set the validity level... Whenever I try to check the signature of his mail it turns out invalid and there's a grey dot in the Validity column. What is going on ? The validity is set by signing the key with your secret key. But this means you have verified the authenticity of the public key by comparing the fingerprint with your friend. Once you are sure that the received key belongs to the person who pretends to be the key owner and you have verified that the key wasn't changed on its way through the web you may sign it. But please, don't do this without your friends permission and do not upload the key to the server: instead send it back to your friend, signed exportable. And remember: others might rely on your signature. - -- Best regards, Gerd == Using The Bat! Version 1.52e PGP/GPG-Keys on request mailto:[EMAIL PROTECTED]?subject=send_key - Man kann auch ohne Hund leben, aber es lohnt sich nicht! Heinz Rühmann -BEGIN PGP SIGNATURE- Version: GnuPG v1.0.5 (MingW32) - GnuPGshell v1.75 Comment: It's me!! Key-ID 0xD56C6187 Comment: Caution, beta version, extremely biohazardous stuff. iD8DBQE6/ThvTL+wetVsYYcRAl6DAKDudU89y51o0hqJBxK+MjLOiZmQNACcDqbU Igr4y4wORYMvpAa2ie6hWJk= =/aQ3 -END PGP SIGNATURE- -- __ Archives : http://tbudl.thebat.dutaint.com Moderators : mailto:[EMAIL PROTECTED] TBTech List: mailto:[EMAIL PROTECTED] Unsubscribe: mailto:[EMAIL PROTECTED] You are subscribed as : archive@jab.org
Re: TB and OpenPGP
Saturday, May 12, 2001, 3:55:51 PM, Silviu Cojocaru wrote: Hopefully this will be the last message about this stuff that comes from me. I imported the public key of a friend of mine into the key manager but I cant set the validity level... Whenever I try to check the signature of his mail it turns out invalid and there's a grey dot in the Validity column. What is going on ? Also, I requested and got the PGP keys of two people on this list, and imported them. I found out how to make those keys valid, I had to sight those keys with my key (aparently). Then I tried to check their PGP signatures in the messages they sent to the list. They returned invalid. I have an idea why this happens but I am not sure, could it be the fact that all e-mail sent to the list gets has this: -- __ Archives : http://tbudl.thebat.dutaint.com Moderators : mailto:[EMAIL PROTECTED] TBTech List: mailto:[EMAIL PROTECTED] Unsubscribe: mailto:[EMAIL PROTECTED] You are subscribed as : [EMAIL PROTECTED] that invalids them ? I remember that someone on the list said that PGP signatures have something to do with the text of the actual e-mail. So I figure that if the e-mail message has been tampered with the signature becomes invalid. -- If Bill Gates had a dime for every time a Windows box crashed... ...Oh wait, he already does. -- __ Archives : http://tbudl.thebat.dutaint.com Moderators : mailto:[EMAIL PROTECTED] TBTech List: mailto:[EMAIL PROTECTED] Unsubscribe: mailto:[EMAIL PROTECTED] You are subscribed as : archive@jab.org
Re: TB and OpenPGP
Hi Silviu, On Sat, 12 May 2001, at 15:55:51 +0300 you wrote: SC I imported the public key of a friend of mine into the key SC manager but I cant set the validity level... Whenever I try SC to check the signature of his mail it turns out invalid and SC there's a grey dot in the Validity column. What is going on ? You have to sign a public key to express that this key is from the person it pretends to be. After that the key will be valid and you can change the level of trust you put in that person (and therefore in the keys this person signs). -- Regards, Lars The Bat! 1.53 Beta/3 on Windows NT 5.0 Build 2195 Service Pack 1 |Lars Geiger | mailto:[EMAIL PROTECTED]| | PGP Key: mailto:[EMAIL PROTECTED]?Subject=GetPublicKey | -- __ Archives : http://tbudl.thebat.dutaint.com Moderators : mailto:[EMAIL PROTECTED] TBTech List: mailto:[EMAIL PROTECTED] Unsubscribe: mailto:[EMAIL PROTECTED] You are subscribed as : archive@jab.org
Re: TB and OpenPGP
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi Silviu, On 12 May 2001 at 15:55:51 +0300 (which was 13:55 where I live) Silviu Cojocaru wrote to TBUDL and made these points: SC I imported the public key of a friend of mine into the SC key manager but I cant set the validity level... Whenever I try SC to check the signature of his mail it turns out invalid and SC there's a grey dot in the Validity column. What is going on ? You haven't signed his key on your keyring. Until you do that, you haven't validated it. PGP believes that you don't trust the key until you sign it with your key to say that you do. - -- Cheers -- .\\arck D. Pearlstone -- [ PGP Key ID: 0x929DCDA0 | www: http://www.silverstones.com ] [ BrainStorm - free thinking - www: http://www.brainstormsw.com ] [ Moderator TBUDL / TBBETA / TBTECH and fellow end user ] TB! v1.53/iKey1000 S/N 55238-48F0B on Windows NT 5.0 Build 2195 Service Pack 1 -BEGIN PGP SIGNATURE- Version: 6.5.8ckt (build 05) Comment: PGP Sealed for freshness iQA/AwUBOv0/LTnkJKuSnc2gEQKVOQCg+ZLkfI/hSsEpeZMaRxtVRPNQbQMAnjMp 8Oh/b5bnOGGxV79xIzCLMNdL =y3MN -END PGP SIGNATURE- -- __ Archives : http://tbudl.thebat.dutaint.com Moderators : mailto:[EMAIL PROTECTED] TBTech List: mailto:[EMAIL PROTECTED] Unsubscribe: mailto:[EMAIL PROTECTED] You are subscribed as : archive@jab.org
Re: TB and OpenPGP
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On May 12, 2001, at 6:19:48 AM, Gerd Ewald wrote: The validity is set by signing the key with your secret key. But this means you have verified the authenticity of the public key by comparing the fingerprint with your friend. Correct, but also realize there are two types of signatures... exportable and non-exportable, with the difference being exportable signatures will permanently remain with that Public Key if you ever upload that Public Key to any of the KeyServes. Non-exportable means the signature shows only on the Public Key on *your* Public Key Ring. Once you are sure that the received key belongs to the person who pretends to be the key owner and you have verified that the key wasn't changed on its way through the web you may sign it. But please, don't do this without your friends permission and do not upload the key to the server: instead send it back to your friend, signed exportable. Correct again, but if Silviu only wants to rid the verification info of the Invalid designation, this can be done by signing with a non-exportable signature once the Key Fingerprints have been compared. Nick - -- -=N.J. Andriash | Vancouver, B.C. Canada=- [ SecureBat! v1.53/iKey1000 | Win 98 SE 4.10 ] [ PGP 7.1 (Build 174) | Key ID: 0x7BA3FDCE ] __ -BEGIN PGP SIGNATURE- Version: GnuPG v1.0.5 (MingW32) - GnuPGshell v1.74 Comment: Join PGP-Basics: [EMAIL PROTECTED] iD8DBQE6/WPwxQKEdHuj/c4RAodRAJ0YT3wM/CcZ06sUS04DUd0iJBpqVQCfT5Oe hoEG4/HfbD1+uIDbO54UHcQ= =6jBJ -END PGP SIGNATURE- -- __ Archives : http://tbudl.thebat.dutaint.com Moderators : mailto:[EMAIL PROTECTED] TBTech List: mailto:[EMAIL PROTECTED] Unsubscribe: mailto:[EMAIL PROTECTED] You are subscribed as : archive@jab.org