Re: Automating and integrating GPG

On Mon, Sep 18, 2017 at 11:45 AM, Grzegorz Kulewski wrote: > I am working on a project (in Python and bash) that requires me to use GPG in > "headless mode" to generate keys and edit OpenPGP smartcard (to set some > properties and transfer some of the generated keys). This

Re: Automating and integrating GPG

On Mon, Sep 18, 2017 at 2:45 PM, Daniel Kahn Gillmor wrote: > GnuPG upstream developers tend to recommend the use of GPGME for system > integration projects that require a stable interface. dpkg does that, but it doesn't help people trying to automate dpkg :-) - Dan

Re: Automating and integrating GPG

On Mon 2017-09-18 20:45:52 +0200, Grzegorz Kulewski wrote: > I am working on a project (in Python and bash) that requires me to use > GPG in "headless mode" to generate keys and edit OpenPGP smartcard (to > set some properties and transfer some of the generated keys). This > includes transfering

Re: using --keyserver but still getting gpg: no keyserver known (use option --keyserver)

On Mon 2017-09-18 13:50:00 +, Patrick Schleizer wrote: > gpg --keyserver hkp://pgp.mit.edu:11371 --search-keys m...@e-mail.com > > gpg --keyserver=hkp://pgp.mit.edu:11371 --search-keys m...@e-mail.com > > gpg: no keyserver known (use option --keyserver) > gpg: keyserver search failed: No

Re: using --keyserver but still getting gpg: no keyserver known (use option --keyserver)

On Mon, 18 Sep 2017 12:13:20 -0400 Lee wrote: > Try it without the port number > $ gpg --keyserver hkp://pgp.mit.edu --search-keys > torbrow...@torproject.org gpg: searching for > "torbrow...@torproject.org" from hkp server pgp.mit.edu (1) Tor > Browser Developers (unknown)

Re: How to encrypt using public certificate\key

On 07/09/17 12:58, shaarang tyagi wrote: > I am trying to understand the encryption process and the all the input > that is required to perform encryption. > > So according to this RFC, section 2.1: If you want to learn about what makes an OpenPGP message, gpg --list-packets is very useful: $

Re: OT: Which smartphone would you use

On Monday, 18 September 2017 20:07:38 CEST, Mauricio Tavares wrote: I'm using for more than two years an Ubuntu phone BQ E4.5. The project was driven by Canonical and BQ as the hardware OEM. The project died in March of this year, but is now moved to a community of

Re: OT: Which smartphone would you use

The answer pretty much depends on what smartphone features you are looking for. Do you need to run a web browser? Email integration? AnkiDroid? A decent camera? Let us know what features you are looking for. On Mon, Sep 18, 2017 at 6:32 PM, Thomas Hejze wrote: > Hello everyone, >

Re: using --keyserver but still getting gpg: no keyserver known (use option --keyserver)

On 9/18/17, Patrick Schleizer wrote: > gpg --keyserver hkp://pgp.mit.edu:11371 --search-keys m...@e-mail.com > > gpg --keyserver=hkp://pgp.mit.edu:11371 --search-keys m...@e-mail.com > > gpg: no keyserver known (use option --keyserver) > gpg: keyserver search

Re: using --keyserver but still getting gpg: no keyserver known (use option --keyserver)

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 September 18, 2017 11:43 AM, "Patrick Schleizer" wrote: > gpg --keyserver hkp://pgp.mit.edu:11371 --search-keys m...@e-mail.com > > gpg --keyserver=hkp://pgp.mit.edu:11371 --search-keys m...@e-mail.com > > gpg: no

OT: Which smartphone would you use

Hello everyone, I know this is off-topic, but since it is related to IT security and therefore more or less to GNUPG, I hope that I get some helping answers, though. Having been objecting to smartphones for a long time I fear that the time has come that I get one for myself. The question is

Re: Extending expiration date and SSH

Hi, On 09/18/2017 12:38 PM, Marko Božiković wrote: Will that change the SSH public key (as it is exported using ssh-add -L for adding to .ssh/authorized_keys)? No. The expiration date of the subkey is not part of the key material itself, it is stored in the subkey binding signature. A

using --keyserver but still getting gpg: no keyserver known (use option --keyserver)

gpg --keyserver hkp://pgp.mit.edu:11371 --search-keys m...@e-mail.com gpg --keyserver=hkp://pgp.mit.edu:11371 --search-keys m...@e-mail.com gpg: no keyserver known (use option --keyserver) gpg: keyserver search failed: No keyserver available What am I doing wrong?

Re: Extending expiration date and SSH

On 18/09/17 12:38, Marko Božiković wrote: > Will that change the SSH public key (as it is exported using ssh-add -L for > adding to .ssh/authorized_keys)? No, if it is a regular SSH key, it will not change by changing the expiration date. > I'm looking for a best practice approach to avoid

Extending expiration date and SSH

Hi all, I use my authentication GPG key for SSHing into different machines. My GPG keys are stored on a Yubikey and I use gpg-agent to interface with the Yubikey and use the keys for SSH authentication. My GPG keys have expired and while that doesn't have any effect on SSH authentication, I'd

Re: [Feature Request] Multiple level subkey

ok, just to clarify; my original question boils down to be able to generate Sign key using a subkey. I guess there should be an arbitrary hard limit on the number of sub-subkey, Aside from this, the validation algorithm should be made recursive, up to the hard limit. Would be possible to use