Hello,
I am looking to play around/experiment with gnupg and smart cards. From
what little research I've done, I've read about OpenPGP smart cards don't
reveal private keys, and do all decrypting/signing on the device itself
after entering a PIN. Do I have a correct understanding of this, and if s
Hi.
On Do, 2016-02-25 at 08:24 +0100, Werner Koch wrote:
> Thus I am not convinced that the revocation reasons are useful for
> any automated evaluation.
Can I tell GnuPG that I, as a user, am convinced that the superseded
revocation reason is correct?
I've grepped through the gpg man page and on
Hi..
I've been looking at TProcess in FreePascal/Lazarus,
http://wiki.freepascal.org/Executing_External_Programs
and had some success using it to generate key/certificate pairs using
OpenSSL as the TProcess. I thought I would try it with GnuPG and used
the same program structure I had created fo
Il 26/02/2016 16:02, Peter Lebbing ha scritto:
>> Rotating does only make sense if you take the old key soon offline.
> Why is this the case? I must admit I'm fairly comfortable not rotating
> my keys (which are on OpenPGP smartcards). But I can think of lines of
> reasoning where it makes sense t
hi,
On 02/26/2016 08:11 PM, Peter Lebbing wrote:
> On 26/02/16 19:23, Muri Nicanor wrote:
>> (is there a switch to see the expiry date of signatures?)
>
> --list-options show-sig-expire
thanks!
and thanks to this option my other question about --default-cert-expire
1y is lapsed, because that out
I recently compiled the latest version of GnuPG 2 from source (.29, I
believe) and, when I tried to use it, was told that I had invalid
options in my .conf file. Specifically, it told me that ZLIB and ZLIB2
weren't supported as compression algos.
Are those two algos no longer supported by GnuPG or
On 26/02/16 19:23, Muri Nicanor wrote:
> (is there a switch to see the expiry date of signatures?)
--list-options show-sig-expire
Cheers,
Peter.
--
I use the GNU Privacy Guard (GnuPG) in combination with Enigmail.
You can send me encrypted mail if you want some privacy.
My key is available at
On 02/26/2016 07:29 AM, Robert J. Hansen wrote:
Why is it more resource intensive?
It's far more intensive of a much more limited resource: user happiness.
Normal users tend to find hexadecimal frustrating:
"It's a *number*? But it uses A through F."
This is something that only experience
hi dkg and list,
On 02/26/2016 03:49 AM, Daniel Kahn Gillmor wrote:
[...]
> On Thu 2016-02-25 18:59:53 +0100, Muri Nicanor
> wrote:
>> is it possible to specifiy the uid for --sign-key (so i don't have to go
>> through the gpg --edit dialog)? i tried using
[...]
> In GnuPG 2.1:
>
>--qui
On 26/02/16 15:29, Robert J. Hansen wrote:
>
> "It's a *number*? But it uses A through F."
>
> "I don't understand. Why do I need the long ID?"
>
> "Wait, now I need to use the *entire* fingerprint?"
>
> "You can't be serious: I need to give a 40-character serial number
> whenever I need to id
> Why is it more resource intensive?
It's far more intensive of a much more limited resource: user happiness.
Normal users tend to find hexadecimal frustrating:
"It's a *number*? But it uses A through F."
"I don't understand. Why do I need the long ID?"
"Wait, now I need to use the *entire*
On 2/26/2016 at 5:48 AM, "Martin Ilchev" wrote:
>I did set my key preferences a few months ago and made sure the
>key had
>them as well. Here is the output of showperf:
>
> Cipher: AES256, AES192, AES, CAST5, 3DES
.
>> > 2. Symmetrically encrypt and also encrypt for my own public
>key
On 26/02/16 15:18, Werner Koch wrote:
> Rotating does only make sense if you take the old key soon offline.
Why is this the case? I must admit I'm fairly comfortable not rotating
my keys (which are on OpenPGP smartcards). But I can think of lines of
reasoning where it makes sense to rotate, but st
On Fri, 26 Feb 2016 14:31, ndk.cla...@gmail.com said:
> same) "problem" with having only 3 keypairs (for example I can't rotate
> encryption key every year unless I'm prepared to have a different card
> per year).
Wy do you want to rotate keys and still keep all the old keys on your
smartcard? R
Hello all.
Is gnupg-pkcs11 still maintained? Files on sourceforge are from 2011...
The idea of using a "standard" key container for GPG keys is appealing,
and it could solve my (very personal, I admit, but maybe others feel the
same) "problem" with having only 3 keypairs (for example I can't rota
On 25/02/2016 14:58, Richard Genthner wrote:
> Yeah, what I'm hoping to do is be able to carry my card with me and jump on a
> terminal while traveling and sign and login to things.
Maybe keep two separate gpg home dirs, one for each yubikey?
--
Marko
ICQ: 5990814
I'm not under the alkafluence
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
On 02/26/2016 12:31 PM, Martin Konold wrote:
> Am Donnerstag, 25. Februar 2016, 15:56:32 CET schrieb Peter
> Lebbing:
>
> Hi,
>
>> Note that it is very impractical to regularly use two smartcards
>> on the same computer because of all this. You sho
Am Donnerstag, 25. Februar 2016, 15:56:32 CET schrieb Peter Lebbing:
Hi,
> Note that it is very impractical to regularly use two smartcards on the
> same computer because of all this. You should probably stick to using a
> single smartcard on any single computer.
In case there is an urgent need
Hi Peter,
Thanks for the reply.
I did browse the man pages quite a bit (I am a bit afraid I browsed too
much and touched stuff I should leave well alone :))
I did set my key preferences a few months ago and made sure the key had
them as well. Here is the output of showperf:
Cipher: AES256,
Am Donnerstag, 25. Februar 2016, 08:35:28 CET schrieb Werner Koch:
Hi,
> On Wed, 24 Feb 2016 11:34, thecisso...@hotmail.fr said:
> > Hi, is there a way to use a private key (PGP) to decrypt a message
> > without adding it to the keyring.
There is of course the option to leave the private key exc
On 25/02/16 15:42, Martin Ilchev wrote:
> I am looking for some help to figure out what cipher is used for
> symmetric encryption when both pass phrase and public keys are used. I
> have configured my gpg.conf with my preferred cipher algorithms as follows:
> personal-cipher-preferences AES256 TWOF
On Thu 2016-02-25 09:21:45 +0100, Josef Carnap wrote:
> In the option desription of --exec-path and in some descriptions of
> other options as well I can read of "Key helpers".
> What kind of program is a key helpers? Are key helpers part of the GnuPG
> suite oder are they external programs?
the
22 matches
Mail list logo
