Recovering private keys in a friend's GPG installation

2020-09-21 Thread Andrew Engelbrecht via Gnupg-users 
Hello GnuPG mailing list,

A friend of mine is running into issues with restoring their private
keys after a botched system upgrade. While I don't have details of what
exactly went wrong, they do have 3 keys in:

~/.gnupg/private-keys-v1.d/

~/.gnupg/secring.gpg is empy, and their backups don't have any private
keys in them.

I asked them to run commands on both gpg and gpg2 commands in Trisquel
8, which is based off of Ubuntu 16.04, however, neither gpg
--list-secret-keys nor gpg2 show any private keys.

I asked them to cross-import public keys from both the gpg and gpg2
public keys exports, and checked to make sure that their public key is
installed in their public keyring. We tried touching
~/.gnupg/.gpg-v21-migrated , and all permissions look correct.
Unfortunately, none of these methods have imported / activated the
private keys.

My best guess is that these 3 keys are associated with some older
private keys, and were merely left behind. If there is a way to check
the fingerprint of the keys they belong to, and to import them, that
would be super helpful. Is there a way to do that?

Thanks, : )
Andrew




signature.asc
Description: OpenPGP digital signature
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: Announcing paperbackup.py to backup keys as QR codes on paper

2020-09-21 Thread Philihp Busby via Gnupg-users 
A: Take a look at Paperkey, https://wiki.archlinux.org/index.php/Paperkey; I 
think it serves this need well. Not to diminish your work, good job! It's 
probably a good thing to have diversity in implementations, so we don't get 
stuck with the only thing being written in OCaml.

B: I'm not well versed in Python, but have you tried `pip install qrencode`?

C: If you're using an rsa4096 key, extracting just the secret key with paperkey 
will just barely fit in a QR code, and if you have subkeys then just forget it 
with "export-minimal". This, to me, is a good reason to migrate to an ed25519 
key which is a deci-order of magnitude smaller (e.g. 
https://philihp.com/assets/id_ed25519.png)

On 2020-09-14T08:16:19-0400 bexnews--- via Gnupg-users  
wrote 7.3K bytes:

> Hello Friends,
> 
> Ok I am no coder so I am trying to bungle my way thru setting up
> paperbackup.py.
> 
> My goal was to be able to print out a paper encrypted backup of a strong
> key that I can use to encrypt data or other keys. I tried the Windows
> Paperbackup from OllyDbg but it is older, on Windows (I'm on Linux atm) and
> was having a hard time getting the roundtrip to work with my printer and
> scanner. Paperbackup.py looked like a smart idea and I like the redundancy
> of the QR code and text string outputs. I tried the usage instructions
> 
> 1. the first issue was I think specifically you need to prefix
> "paperbackup.py" with "python" correct?
> 2. second issue was when I do #1 I get
> 
> > Traceback (most recent call last):
> >   File "paperbackup.py", line 35, in 
> > import qrencode
> > ImportError: No module named qrencode
> >
> 
> 3. I may be failing to install all the dependencies properly. I did  "sudo
> apt install qrencode" and seems installed (qrencode version 3.4.4 Copyright
> (C) 2006-2012 Kentaro Fukuchi), but no change in the ImportError in #2. Is
> there some other way to "hook" qrencode into paperbackup.py? I tried
> putting it all into the same folder but it doesn't seem to help.
> 
> danke schoen!
> - bexnews
> 
> > Announcing paperbackup.py to backup keys as QR codes on paper *Gerd v.
> > Egidy* gerd.von.egidy at intra2net.com
> > 
> > *Tue Feb 21 15:34:17 CET 2017*
> >
> >- Previous message (by thread): Problems with cert validation via CRL
> >
> >- Next message (by thread): Announcing paperbackup.py to backup keys
> >as QR codes on paper
> >
> >- *Messages sorted by:* [ date ]
> >
> > 
> >  [
> >thread ]
> >
> > 
> >  [
> >subject ]
> >
> > 
> >  [
> >author ]
> >
> > 
> >
> > --
> >
> > Hi,
> >
> > I'd like to announce a program I wrote to backup GnuPG and SSH keys as
> > qrcodes on paper:
> >
> > paperbackup.py https://github.com/intra2net/paperbackup
> >
> > This is designed as fallback if all your regular backups failed to restore 
> > or
> > were lost.
> >
> > Usage is like this:
> >
> > gpg2 --armor --export "User Name" >key.asc
> > gpg2 --armor --export-secret-key "User Name" >>key.asc
> > paperbackup.py key.asc
> > paperrestore.sh key.asc.pdf | diff key.asc -
> > lpr key.asc.pdf
> >
> > You'll find all the details, reasoning and examples in the README.
> >
> > Kind regards,
> >
> > Gerd
> >
> >
> >
> >

> ___
> Gnupg-users mailing list
> Gnupg-users@gnupg.org
> http://lists.gnupg.org/mailman/listinfo/gnupg-users


___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: how to suppress new "insecure passphrase" warning

2020-09-21 Thread Werner Koch via Gnupg-users 
On Thu, 17 Sep 2020 11:27, Alan Bram said:

> configuration, there was an already-running agent that I had to kill first
> in order to get it to reread the config.

Just for the reecords:

  gpgconf --reload gpg-agent

would have been sufficent but "gpgconf --kill gpg-agent: works of course
also.


Salam-Shalom,

   Werner

-- 
Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.


signature.asc
Description: PGP signature
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users