Need help with GPG + Thunderbird + Enigmail on a RaspberryPi
Hello Groups, I do this as crossposting on gnupg and enigmail - lists. Raspian: November 2018 (Kernel 4.4) Thunderbird: 52.9.1 - 32bit Enigmail 2.0.8 (20180804-1515) all installed from the Raspbian-sources At the moment I try to etablish a "Backup-Mail-Client" on a RaspberryPi with Thunderbird, GnuPG and Enigmail. So far so good - I brought all to run, except problems with the import of GPG keys. When I try to import a key I just exported a minute before from my desktop pc there is only the public key imported. And YES I double checked to export the secret key. I did export and try to import via Enigmail. Can anyone figure out where i make a mistake or where there is an error? best regards Juergen -- Juergen M. Bruckner juer...@bruckner.tk smime.p7s Description: S/MIME Cryptographic Signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Are here any ProtonMail users which use the service from the very beginning?
Hi all, while i don't use public keys from email services which offer as a service to create the key pair on their servers, i have a question, for those who use ProtonMail from the very beginning and have made a copy from that public key. I ask because it puzzles me a bit when i discovered a while ago that i have now 2 public keys on my account, which are created at a later date, then when i signed up to the service, which then created the key pair upon sign-up. Therefore i like to know if users can show me that when they signed up with the service from the beginning that they also had a public key with the uid u...@protonmail.ch and not name etc. @protonmail.ch. and @protonmail.com I can't prove publicity that i had from the very first time a public key with the UID u...@protonmail.ch, because i never bothered with this key and therefore never stored it as a backup on my computer. I signed up for ProtonMail in Nov 2014 and the public keys i have now there are created (not by me) at a later date. I asked also a while ago their support and the answer from them was not convincing. You can see my question here (posted as anonymous) when you scroll down: https://protonmail.com/support/knowledge-base/how-is-the-private-key-stored/ Regards Stefan -- https://www.behance.net/futagoza https://keybase.io/stefan_claas pgp8So7z0HWcA.pgp Description: Digitale Signatur von OpenPGP ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Need help with GPG + Thunderbird + Enigmail on a RaspberryPi
On Sun, 18 Nov 2018 14:52:14 +0100, Juergen Bruckner wrote: > Hello Groups, > > I do this as crossposting on gnupg and enigmail - lists. > > Raspian: November 2018 (Kernel 4.4) > Thunderbird: 52.9.1 - 32bit > Enigmail 2.0.8 (20180804-1515) > all installed from the Raspbian-sources > > At the moment I try to etablish a "Backup-Mail-Client" on a > RaspberryPi with Thunderbird, GnuPG and Enigmail. > So far so good - I brought all to run, except problems with the import > of GPG keys. > When I try to import a key I just exported a minute before from my > desktop pc there is only the public key imported. And YES I double > checked to export the secret key. > I did export and try to import via Enigmail. > > Can anyone figure out where i make a mistake or where there is an > error? Hi Juergen, while i no longer use Enigmail, i would try to export your secret key with gpg --export-secret-key Juergen and then see if it imports properly on the other side. Regards Stefan -- https://www.behance.net/futagoza https://keybase.io/stefan_claas pgpfVnzlJcPa6.pgp Description: Digitale Signatur von OpenPGP ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: key server query tool
Hi Stefan. Am Sonntag, den 18.11.2018, 17:41 +0100 schrieb Stefan Claas: > Hi all, > > while i do respect the privacy of people, i was wondering, > since i see the public key server network as a public data > base containing full names and who signed who's public > key, if there is a tool available (source code preferably > written in Golang) which allows a user to connect to > a key server and do a query in a form that it spits out > all the data where a name or key id appears. > > The idea behind this is that i can see if for example > Mallory signed someone else's public, with my key > after it got compromised and i am not aware of it. > > I know that there are projects running which show > the strong set etc. but i like only see simple > data like my name or my key id/fp on someone > else's public key. Only the UID's and Key-ID's can be queried from the Servers, not the Data from the signatures, for example. AFAIK. Regards, Dirk -- Dirk Gottschalk Paulusstrasse 6-8 52064 Aachen, Germany GPG: DDCB AF8E 0132 AA54 20AB B864 4081 0B18 1ED8 E838 Keybase.io: https://keybase.io/dgottschalk GitHub: https://github.com/Dirk1980ac signature.asc Description: This is a digitally signed message part ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
key server query tool
Hi all, while i do respect the privacy of people, i was wondering, since i see the public key server network as a public data base containing full names and who signed who's public key, if there is a tool available (source code preferably written in Golang) which allows a user to connect to a key server and do a query in a form that it spits out all the data where a name or key id appears. The idea behind this is that i can see if for example Mallory signed someone else's public, with my key after it got compromised and i am not aware of it. I know that there are projects running which show the strong set etc. but i like only see simple data like my name or my key id/fp on someone else's public key. Regards Stefan -- https://www.behance.net/futagoza https://keybase.io/stefan_claas pgpOnioaxyhm0.pgp Description: Digitale Signatur von OpenPGP ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Need help with GPG + Thunderbird + Enigmail on a RaspberryPi
Hi Stefan, the ex- and import of the keys at commandline in terminal works fine. But I wanted to make screenshots of the process for a presentation i would use for a training of "newbies" and there i under no circumstances want to work in terminal or commandline interface. And i could reproduce this error/failure on another Raspi too. regards Juergen Am 18.11.18 um 15:34 schrieb Stefan Claas: > On Sun, 18 Nov 2018 14:52:14 +0100, Juergen Bruckner wrote: >> Hello Groups, >> >> I do this as crossposting on gnupg and enigmail - lists. >> >> Raspian: November 2018 (Kernel 4.4) >> Thunderbird: 52.9.1 - 32bit >> Enigmail 2.0.8 (20180804-1515) >> all installed from the Raspbian-sources >> >> At the moment I try to etablish a "Backup-Mail-Client" on a >> RaspberryPi with Thunderbird, GnuPG and Enigmail. >> So far so good - I brought all to run, except problems with the import >> of GPG keys. >> When I try to import a key I just exported a minute before from my >> desktop pc there is only the public key imported. And YES I double >> checked to export the secret key. >> I did export and try to import via Enigmail. >> >> Can anyone figure out where i make a mistake or where there is an >> error? > > Hi Juergen, > > while i no longer use Enigmail, i would try to export your secret key > with gpg --export-secret-key Juergen and then see if it imports > properly on the other side. > > Regards > Stefan > > > > ___ > Gnupg-users mailing list > Gnupg-users@gnupg.org > http://lists.gnupg.org/mailman/listinfo/gnupg-users > -- Juergen M. Bruckner juer...@bruckner.tk smime.p7s Description: S/MIME Cryptographic Signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Need help with GPG + Thunderbird + Enigmail on a RaspberryPi
On Sun, 18 Nov 2018 17:54:26 +0100, Juergen BRUCKNER wrote: Hi Juergen, > the ex- and import of the keys at commandline in terminal works fine. > > But I wanted to make screenshots of the process for a presentation i > would use for a training of "newbies" and there i under no > circumstances want to work in terminal or commandline interface. > > And i could reproduce this error/failure on another Raspi too. oh, o.k. i thought that it is only for personal usage. Well, in that case hopefully the Enigmail team can give you an answer! Regards Stefan -- https://www.behance.net/futagoza https://keybase.io/stefan_claas pgpZClS_tdfJv.pgp Description: Digitale Signatur von OpenPGP ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Are here any ProtonMail users which use the service from the very beginning?
On Sun, 18 Nov 2018 18:30:00 +, df. wrote: > I signed up to ProtonMail in March '14 but did not actually get the > account until December '14. That's 9 months later. > > I have one pair of keys generated (for both .ch and .com), generated > on the day I setup the account, which for me was on the day > ProtonMail made it available to me in December '14. Thanks for the info, hopefully someone else can tell me if they had only one pub key, like me, with that user@ UID. :-) > If you have any doubts on current ProtonMail keypair(s) you have, I > strongly recommend you login in to webmail, goto settings, select > keys, and generate new keypair(s), mark them as primary, then mark > obsolete or compromised the keypair(s) that are in doubt, you can > then delete from your account if needed. Thanks for the advise, much appreciated! Since i don't use those keys for communications i am imho o.k. I may consider to delete that account, because my email provider is now posteo. Regards Stefan -- https://www.behance.net/futagoza https://keybase.io/stefan_claas pgpyACLOwOlA3.pgp Description: Digitale Signatur von OpenPGP ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Are here any ProtonMail users which use the service from the very beginning?
Stefan Claas: > I ask because it puzzles me a bit when i discovered a while > ago that i have now 2 public keys on my account, which > are created at a later date, then when i signed up to the > service, which then created the key pair upon sign-up. > > Therefore i like to know if users can show me that when > they signed up with the service from the beginning that > they also had a public key with the uid u...@protonmail.ch > and not name etc. @protonmail.ch. and @protonmail.com I signed up to ProtonMail in March '14 but did not actually get the account until December '14. That's 9 months later. I have one pair of keys generated (for both .ch and .com), generated on the day I setup the account, which for me was on the day ProtonMail made it available to me in December '14. > > I can't prove publicity that i had from the very first time > a public key with the UID u...@protonmail.ch, because > i never bothered with this key and therefore never stored > it as a backup on my computer. > > I signed up for ProtonMail in Nov 2014 and the > public keys i have now there are created (not by me) > at a later date. If you have any doubts on current ProtonMail keypair(s) you have, I strongly recommend you login in to webmail, goto settings, select keys, and generate new keypair(s), mark them as primary, then mark obsolete or compromised the keypair(s) that are in doubt, you can then delete from your account if needed. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: key server query tool
On Sun, 18 Nov 2018 18:15:01 +0100, Stefan Claas wrote: > On Sun, 18 Nov 2018 17:57:47 +0100, Dirk Gottschalk wrote: > > Hi Dirk, > > > Am Sonntag, den 18.11.2018, 17:41 +0100 schrieb Stefan Claas: > > > Hi all, > > > > > > while i do respect the privacy of people, i was wondering, > > > since i see the public key server network as a public data > > > base containing full names and who signed who's public > > > key, if there is a tool available (source code preferably > > > written in Golang) which allows a user to connect to > > > a key server and do a query in a form that it spits out > > > all the data where a name or key id appears. > > > > > > The idea behind this is that i can see if for example > > > Mallory signed someone else's public, with my key > > > after it got compromised and i am not aware of it. > > > > > > I know that there are projects running which show > > > the strong set etc. but i like only see simple > > > data like my name or my key id/fp on someone > > > else's public key. > > > > Only the UID's and Key-ID's can be queried from the Servers, not the > > Data from the signatures, for example. AFAIK. > > That's a pity. If a tool could for example query the whole key block > downloaded from a reliable source, that would be o.k. too, but > i wanted to avoid to download 12gigs or so and then refresh > all the time. > > Regards > Stefan > -- https://www.behance.net/futagoza https://keybase.io/stefan_claas pgpXSkxH7bJYA.pgp Description: Digitale Signatur von OpenPGP ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: WoT question - policy
On Fri, 16 Nov 2018 10:32:36 +0100, Wiktor Kwapisiewicz wrote: Hi Wiktor, > As for the sigs, sig1 are ignored in GnuPG by default, everything > else has the same value. So if Stefan's friends trust his key fully, > all keys he's signed will be equally valid. I like again to make it clear that people don't have to be my friends, or that third parties would know that they are my (real) friends. ;-) Also regarding privacy. I fully understand that people may think that I am crazy, demanding a postal address. I see this currently (because of lack for better suggestions) as the only valid method for me, to do a proper verification. Hi hope i make now people at EFF not angry!!! The community could also run a petition, asking EFF if they could do this as a paid service, in case they would like to do so and have the resources... I trust EFF 100% and they already have my postal address because i did a small donation recently. ;-) Best regards Stefan -- https://www.behance.net/futagoza https://keybase.io/stefan_claas pgp7fK0Qt81ZI.pgp Description: Digitale Signatur von OpenPGP ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users