Am 31.05.2020 um 12:35 schrieb Patrick Brunschwig:
> Andreas Boehlk Computer-Service wrote on 31.05.2020 11:09:
>> Hello Patrick,
>>
>>
>> Am 31.05.2020 um 10:01 schrieb Patrick Brunschwig:
>>> Mark wrote on 31.05.2020 01:28:
Doesn't TB also need your secret keys to decrypt messages?
>>>
Hello Patrick,
> Let's first define Standard users. The majority of users who use
> smartcards that *I* know are expert or power users. They can handle this.
>
> The "Standard users" I have in mind don't use GnuPG for anything else
> than encrypting mails, and they don't use smartcards either.
On Sun, 31 May 2020 12:35, Patrick Brunschwig said:
> Let's first define Standard users. The majority of users who use
> smartcards that *I* know are expert or power users. They can handle this.
I have a different experience here and we are actually promoting the use
of smartcards because they
On Sun, 31 May 2020 11:10, David Flory said:
> How does one identify a v3 key?
By trying to import it with gpg; you should get a hint that v3 keys are
not anymore supported.
Salam-Shalom,
Werner
--
Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz.
signature.asc
Description:
On Fri, 29 May 2020 14:43, karel-v_g--- said:
> But it's a pity that Thunderbird developed its own solution because of
> licensing issues while we have a proven working solution with GnuPG...
For the records: There is no licensing issue; it is just a Mozilla
policy issue not to use or depend on
Patrick Brunschwig writes:
> Andreas Boehlk Computer-Service wrote on 31.05.2020 11:09:
> ...
Also what if you need your public keys outside of TB such
as encrypting a file?
>>>
>>> That's not supported by Thunderbird. The idea of OpenPGP
>>> in Thunderbird is that you use it for email.
So for all of us that don't use a smart card to store our keys, they are
stored in TB? What if we also have need for that key outside of email
such as signing or decrypting files? We still need that key in GNUPG as
well. If we change the key at all then we have to make sure it has been
updated in
On 5/30/2020 10:17 AM, Patrick Brunschwig wrote:
[snip]
> I'm sorry, but that is simply not true. There is a known bug in the
> library used by Thunderbird (RNP) that leads to crashes when importing
> _certain_ keys. But I succeeded in importing all of my keys without any
> problems (more than
That is what I see happening too. When you start having multiple key
stores, which one contains the "correct" keys? I saw that happening in
just my very limited usage where another program has its own key rings...
On 5/31/2020 1:28 AM, Andreas Boehlk Computer-Service wrote:
> Hello Mark,
>
> I
Andreas Boehlk Computer-Service wrote on 31.05.2020 11:09:
> Hello Patrick,
>
>
> Am 31.05.2020 um 10:01 schrieb Patrick Brunschwig:
>> Mark wrote on 31.05.2020 01:28:
>>> Doesn't TB also need your secret keys to decrypt messages?
>>
>> With smartcard support via GnuPG, all secret key
Hello Mark,
I totally agree. It is not possible to have more than one key store.
Synchronization always fails some time and the standard user cannot
handle it. So the only solution for TB will be to use GNUPG, because it
has the only key store for all platforms and has proved to work for
years.
Hello Patrick,
Am 31.05.2020 um 10:01 schrieb Patrick Brunschwig:
> Mark wrote on 31.05.2020 01:28:
>> Doesn't TB also need your secret keys to decrypt messages?
>
> With smartcard support via GnuPG, all secret key operations are handled
> by GnuPG, and all public key operations are handled
Mark wrote on 31.05.2020 01:28:
> Doesn't TB also need your secret keys to decrypt messages?
With smartcard support via GnuPG, all secret key operations are handled
by GnuPG, and all public key operations are handled by TB (Note: the
standard case, without smartcard support, will be that all
Doesn't TB also need your secret keys to decrypt messages?
Also what if you need your public keys outside of TB such as encrypting
a file?
The reason I'm asking is that awhile ago I posted about unknown files in
my GNUPG directory. PAPubring.gpg and PAsecring.gpg. I eventually found
out those
> I'm sorry, but that is simply not true. There is a known bug in the
> library used by Thunderbird (RNP) that leads to crashes when importing
> _certain_ keys. But I succeeded in importing all of my keys without any
> problems (more than 1.000), except for 5 V3-keys. I can definitely say
> that
Mark wrote on 30.05.2020 20:54:
> So then do you have multiple pairs of key rings? One pair for TB78 and
> its built in PGP and another pair as part of GNUPG?
No exactly. You have your secret keys with GnuPG, and your public keys
with Thunderbird. No synchronization required.
-Patrick
>
> If so
So then do you have multiple pairs of key rings? One pair for TB78 and
its built in PGP and another pair as part of GNUPG?
If so how do you keep them synchronized?
On 5/30/2020 9:17 AM, Patrick Brunschwig wrote:
> Robert J. Hansen wrote on 30.05.2020 01:07:
>>> If TB 78 is going to have native
Robert J. Hansen wrote on 30.05.2020 01:07:
>> If TB 78 is going to have native support of openGPG encryption, then the
>> original person in the thread should be able to export all of the keys
>> in their key rings, and import all of those keys into TB 78, or am I
>> missing one of the gotchas
Robert J. Hansen wrote on 30.05.2020 01:26:
>> 1. Will key management and crypto happen in the same process as
>> IMAP/POP/SMTP, GUI, JavaScript and everything else? If so - do you
>> believe it's acceptable?
>
> It should be an easy learning curve for Enigmail users. That isn't the
> same as
On 5/30/20 1:26 AM, Robert J. Hansen wrote:
2. Is there any real plan to have working smartcard support in the
near future?
No. There's some talk about supporting it, but as far as I know there's
no plan to do it. It's still at the "you know, it'd be kind of nice
if..." stage, not the "we
On 5/29/20 7:39 PM, Grzegorz Kulewski wrote:
> Time to check Claws I think.
i've found that claws, evolution, sylpheed and kmail all integrate
seamlessly with gpg2 (using standard debian packages for everything)
~c
--
Charlie Derr Director, Instructional Technology 413-528-7344
> I wasn't asking if GUI is acceptable. I was asking if crypto and GUI
> happen in the same process (the main TB process). Since they seem to
> be using a library for PGP it's quite probable. And if so - is that
> acceptable in your opinion?
Oh! When you said "process", I read that as
W dniu 30.05.2020 o 01:26, Robert J. Hansen pisze:
>> 1. Will key management and crypto happen in the same process as
>> IMAP/POP/SMTP, GUI, JavaScript and everything else? If so - do you
>> believe it's acceptable?
>
> It should be an easy learning curve for Enigmail users. That isn't the
>
> 1. Will key management and crypto happen in the same process as
> IMAP/POP/SMTP, GUI, JavaScript and everything else? If so - do you
> believe it's acceptable?
It should be an easy learning curve for Enigmail users. That isn't the
same as finding it acceptable, though.
Back in the mid-'90s
W dniu 30.05.2020 o 01:07, Robert J. Hansen pisze:
>> If TB 78 is going to have native support of openGPG encryption, then the
>> original person in the thread should be able to export all of the keys
>> in their key rings, and import all of those keys into TB 78, or am I
>> missing one of the
> If TB 78 is going to have native support of openGPG encryption, then the
> original person in the thread should be able to export all of the keys
> in their key rings, and import all of those keys into TB 78, or am I
> missing one of the gotchas with
> TV 78 and it's openGPG encryption support.
Robert.
I am a long-time version of many different versions of Thunderbird,
enigmail, and multiple packages of gpg.
If TB 78 is going to have native support of openGPG encryption, then the
original person in the thread should be able to export all of the keys in
their key rings, and import all of
Robert J. Hansen wrote:
> > Since you mention that you did support for Enigmail, do you have
> > also infos about the current status of Thunderbird development, i.e.
> > beta testing etc., regarding OpenPGP support, so that you may can
> > tell us what people can expect?
>
> Enigmail
> Since you mention that you did support for Enigmail, do you have also
> infos about the current status of Thunderbird development, i.e.
> beta testing etc., regarding OpenPGP support, so that you may can tell
> us what people can expect?
Enigmail development has ended. The upcoming 2.2 is the
One of the potential problems I can see is multiple key rings. which I
have just recently discovered in my own setup. I have the "standard" key
rings that GPG4Win/Enigmail use and then I discovered 2 unknown files in
my gnupg directory. PAPubring.gpg and PAsecring.gpg. I eventually
deduced they
Robert J. Hansen wrote:
> >> But it's a pity that
> >> Thunderbird developed its own solution because of licensing issues
> >> while we have a proven working solution with GnuPG...
> >
> > We never know, maybe in the future someone writes again a fully
> > working solution for Thunderbird/GnuPG
>> But it's a pity that
>> Thunderbird developed its own solution because of licensing issues
>> while we have a proven working solution with GnuPG...
>
> We never know, maybe in the future someone writes again a fully working
> solution for Thunderbird/GnuPG users.
Over the last fifteen years
karel-v_g--- via Gnupg-users wrote:
Hi,
> But it's a pity that
> Thunderbird developed its own solution because of licensing issues
> while we have a proven working solution with GnuPG...
We never know, maybe in the future someone writes again a fully working
solution for Thunderbird/GnuPG
Hello!
No, I don't work for an Aufsichtsbehörde and (fortunately) I don't have to deal
with them directly most time. But the Aufsichtsbehörde defines how my work has
to be done and they have the right to inspect it. And one of the things they
require is use recommended (e.g. BSI) software for
On Fri 29/May/2020 12:29:48 +0200 Stefan Claas wrote:
> Binarus wrote:
>> On 28.05.2020 23:21, Stefan Claas wrote:
>>>
>>> while it is not my business, I do not understand why you have to
>>> take care about the Thunderbird issue, as a users and not the
>>> Aufsichtsbehörde ... If for example you
On Tue, 26 May 2020 12:27, karel-v_g--- said:
> Because of this I have been using a combination of Thunderbird,
> Enigmail and Gpg4Win, as the latter one is certified by German BSI.
Well, it is not certified but approved to handle data at the EU
RESTRICTED level (BSI-VSA-10400 and 10412). There
Binarus wrote:
>
>
> On 28.05.2020 23:21, Stefan Claas wrote:
> >
> > while it is not my business, I do not understand why you have to
> > take care about the Thunderbird issue, as a users and not the
> > Aufsichtsbehörde ... If for example you have a job at the
> > Aufsichtsbehörde then ok,
On 28.05.2020 23:21, Stefan Claas wrote:
>
> while it is not my business, I do not understand why you have to take
> care about the Thunderbird issue, as a users and not the
> Aufsichtsbehörde ... If for example you have a job at the
> Aufsichtsbehörde then ok, like I said, I would contact
karel-v_g--- via Gnupg-users wrote:
> Hello!
> The German translation should be "Aufsichtsbehörde" (or even better
> "Rechtsfähige Anstalt des öffentlichen Rechts"). In fact I don't know
> the exact translation and didn't find any appropriate in
> Google-Translate or deepl. So "supervising
Hello!
The German translation should be "Aufsichtsbehörde" (or even better
"Rechtsfähige Anstalt des öffentlichen Rechts"). In fact I don't know the exact
translation and didn't find any appropriate in Google-Translate or deepl. So
"supervising authorities" was my best guess without being a
karel-v_g--- via Gnupg-users wrote:
> Hello!
[...]
> Aside from advising to use BSI-certified products the authorities are
> not of any help unfortunately...
In your previous post you spoke about *supervising* authorities.
https://en.wikipedia.org/wiki/Supervisor
Regards
Stefan
Hello!
>I just checked the BSI's list of certified products. Gpg4Win andGpg4KDE are
>currently listed until >2022-06-30, and you can continueusing them.
>Thunderbird and Enigmail are not included in that list,so >you are apparently
>using your own software mix anyway.
Indeed, the only
> I just checked the BSI's list of certified products[1].
Sorry, I forgot to include the URL:
[1]
https://www.bsi.bund.de/DE/Themen/Sicherheitsberatung/ZugelasseneProdukte/Liste_Produkte/Liste_Produkte_node.html
___
Gnupg-users mailing list
* karel-v:
> With the approaching release of Thunderbird 78 Gpg4Win and Enigmail
> won't be available any longer and the new OpenPGP-implementation of
> Thunderbird won't be certified to the best of my knowledge.
I just checked the BSI's list of certified products[1]. Gpg4Win and
Gpg4KDE are
karel-v_g--- via Gnupg-users wrote:
> Hello!
> I am required to use certified encryption for mails by my supervising
> authorities and good practise. Because of this I have been using a
> combination of Thunderbird, Enigmail and Gpg4Win, as the latter one
> is certified by German BSI. With the
Hello!
I am required to use certified encryption for mails by my supervising
authorities and good practise.
Because of this I have been using a combination of Thunderbird, Enigmail and
Gpg4Win, as the latter one is certified by German BSI.
With the approaching release of Thunderbird 78 Gpg4Win
46 matches
Mail list logo