Strange problem and key preferences
-BEGIN PGP SIGNED MESSAGE- Hash: RIPEMD160 Hello! I'm currenly using GnuPG 1.4.2 on WinXP SP2 and I have a problem: When I write gpg -d file.ext.asc I receive long output of hard readable characters and PC Speaker loud beeping. I can stop this only by manual ending processes cmd.exe and gpg.exe via Task Manager. Is it possible to avoid this? For example, ask for an output location (file, etc.) as gpg asks for recipient when he/she/it isn'n specified. Also I didn't understand how to set up preferences for a key: allowed and preferred ciphers, digest algorithms and compress methods. It is possible to set up them using PGP Desktop 9. Regards - -- Current OpenPGP key ID: 0x500B8987 Fingerprint: E883 045D 36FB 8CA3 8D69 9C79 9E35 3B56 500B 8987 Keyserver to use: sks.keyserver.penguin.de Encrypted mail preferred. -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.2 (MingW32) iD4DBQFDNa+bnjU7VlALiYcRA7+CAKC4cW6IK6k2h6CTuGhP8OzvZkGHSQCYumOq gUSOFscrigrX3NMjb/sJ9Q== =bV6s -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Can't check message signature
-BEGIN PGP SIGNED MESSAGE- Hash: RIPEMD160 Hello. Recently I submitted my key to PGP Global Directory and received a verification request. I can't check it't signature, I see the following: OpenPGP Security Info Unverified signature gpg command line and output: C:\\Program Files\\GNU\\GnuPG\\gpg.exe --charset utf8 --verbose --batch - - - --no-tty --status-fd 2 --verify gpg: armor header: Hash: SHA1 gpg: original file name='' gpg: armor header: Version: PGP Universal 2.0.3 gpg: Signature made 09/29/05 19:40:01 using RSA key ID CA57AD7C gpg: WARNING: signature digest conflict in message gpg: Can't check signature: general error What may be a problem? GnuPG 1.4.2, Windows XP SP2, Enigmail 0.92.1.0 - -- Current OpenPGP key ID: 0x500B8987 Fingerprint: E883 045D 36FB 8CA3 8D69 9C79 9E35 3B56 500B 8987 Keyserver to use: sks.keyserver.penguin.de Encrypted mail preferred. -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.2 (MingW32) iD8DBQFDPTyAnjU7VlALiYcRA7O5AKC1tovmDY+eIyQoS6AffJI4bZRPjwCeKpob UuyDPqW8WNqj3SgVcd53Crk= =0pX/ -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Can't check message signature
-BEGIN PGP SIGNED MESSAGE- Hash: RIPEMD160 David Shaw wrote: > On Fri, Sep 30, 2005 at 05:24:22PM +0400, lusfert wrote: > >>Hello. >> >>Recently I submitted my key to PGP Global Directory and received a >>verification request. I can't check it't signature, I see the following: >> >>OpenPGP Security Info >> >>Unverified signature >> >>gpg command line and output: >>C:\\Program Files\\GNU\\GnuPG\\gpg.exe --charset utf8 --verbose --batch >>- - --no-tty --status-fd 2 --verify >>gpg: armor header: Hash: SHA1 >>gpg: original file name='' >>gpg: armor header: Version: PGP Universal 2.0.3 >>gpg: Signature made 09/29/05 19:40:01 using RSA key ID CA57AD7C >>gpg: WARNING: signature digest conflict in message >>gpg: Can't check signature: general error > > > Interesting. This means that the signature is malformed in a > particular way. If there is nothing private in it, could you send me > the message off-list? I receive message ([PGP Global Directory] Verify Your Key) with such "unverified signature" each time after submitting a key to PGP Global Directory. What is "the message off-list"? Regards - -- Current OpenPGP key ID: 0x500B8987 Fingerprint: E883 045D 36FB 8CA3 8D69 9C79 9E35 3B56 500B 8987 Keyserver to use: sks.keyserver.penguin.de Encrypted mail preferred. -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.2 (MingW32) iD8DBQFDPYeNnjU7VlALiYcRAwtTAJ44m9jQilLRh0SsyQgUHtfk5Y1vBwCgicon feDu0RbQiETpmPOGGuibacw= =h/ut -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Armor headers
Hello. How can I change text (not by manually editing) in armor headers (for example, "Version:") or armor headers themselves (add, remove)? Will it affect compatibility with other applications? Can I put custom text into "Version:" in stage of exporting public key, making signatures, encrypting with ASCII output, etc.? Sometimes I do not wish that others will know what exactly OpenPGP implementation and OS I'm currently using. Thanks -- With best regards... Current OpenPGP key ID: 0x500B8987 Fingerprint: E883 045D 36FB 8CA3 8D69 9C79 9E35 3B56 500B 8987 Keyserver to use: sks.keyserver.penguin.de Encrypted mail preferred. signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Disk Partition
nidhog wrote: > Hi, > > Do you guys have any suggestion as to how to go about encrypting a > partition that can be available both to linux and win32? > > Thanks. > I know 2 cross-platform solutions: CrossCrypt (http://www.scherrer.cc/crypt/) and FreeOTFE (http://www.freeotfe.org/). I haven't tried them and can't give any advice. But be aware: they both are in beta stage of development so you can experience problems. Also I see there will be a Linux version of TrueCrypt (http://www.truecrypt.org/future.php). Now it is available only for Win32. -- With best regards... Current OpenPGP key ID: 0x500B8987 Fingerprint: E883 045D 36FB 8CA3 8D69 9C79 9E35 3B56 500B 8987 Keyserver to use: sks.keyserver.penguin.de Encrypted mail preferred. signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Disk Partition
[EMAIL PROTECTED] wrote: > On Sat, Oct 08, 2005 at 04:30:41PM +0400, lusfert wrote: > >>I know 2 cross-platform solutions: CrossCrypt >> > > A quote from the CrossCrypt homepage: "Denaiablity: You will not be able > to tell that this file has been encrypted by filedisk as it looks > completely random and can have any extension you wish." > > IMHO, There is a problem in that the data looks TOO MUCH random, i.e. it has > much higher entropy than would result by "normal" computer usage. Such high > entropy is a strong indication that the data is encrypted. Then you should use stenographic programs together with cryptographic. ;) -- With best regards... Current OpenPGP key ID: 0x500B8987 Fingerprint: E883 045D 36FB 8CA3 8D69 9C79 9E35 3B56 500B 8987 Keyserver to use: sks.keyserver.penguin.de Encrypted mail preferred. signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Armor headers
Alphax wrote: > lusfert wrote: > >>>Hello. >>> >>>How can I change text (not by manually editing) in armor headers (for >>>example, "Version:") or armor headers themselves (add, remove)? Will it >>>affect compatibility with other applications? >>> >>>Can I put custom text into "Version:" in stage of exporting public key, >>>making signatures, encrypting with ASCII output, etc.? >>> >>>Sometimes I do not wish that others will know what exactly OpenPGP >>>implementation and OS I'm currently using. >>> > > > Well, you can use --no-emit-version and --no-comments... > Thanks, these commands are really useful. Albert Reiner wrote: > [lusfert <[EMAIL PROTECTED]>, Sat, 08 Oct 2005 16:15:43 +0400]: > >>How can I change text (not by manually editing) in armor headers (for >>example, "Version:") or armor headers themselves (add, remove)? Will it >>affect compatibility with other applications? > > > Not an expert, but I don't think you can put custom text into the > "Version:" field, but you can omit it and put custom text into a > "Comment:" field: > > $ echo | gpg --armor --encrypt --recip z --trust-model always > --comment 'hi there' --no-emit-version > -BEGIN PGP MESSAGE- > Comment: hi there > > hQEOAySceYtaaKyoEAP7BRdkZhUotlFOHtp891NG1aSO0727JKiSE/C8l9P2oKgm > tnwhctB29507aDOqxsA20ZWl7VqmoJ3lMwQpvZ4iKsCzcoi2i7sH8eU1glozqVKv > K0hPYPsKCyHz/Wjn7Yo243CP9ulktwN10MAsGuojQjg9XPcMm3DEgphcHFKk+KID > /RWu7taGDOj+1oYyzPNiElHUoHgS0IDeFE+bDf6VB6M6nysOqwwdVAzSdILi/vts > mz59hZQ1MEDl6PzitDBiID6jKuC7PwB+kP1hJOQKYLfjpkJb+76tjzSdvdHLijve > Upxvgkj///I5lfxOvmk6ypBC8uDBc6wCCFHKwLLAO9Xx0jwBEG+yymDUq5pmVFzd > UxwQlvD7Z/NqJauti9AtvFhDGB3ocGFY9ew7hLkTG6ldLMaaXgRkeQi1G8+v7xg= > =Ntod > -END PGP MESSAGE- > > HTH, > > Albert. > But sometimes I see public keys with custom "Version:", for example, http://www.pgpru.com/contacts/keys/0x4D8BB49E.asc Is it possible to change this field only by manually editing? About "Comment:" I already know. BTW, --comment 'hi there' (with apostrophes '') doesn't work, works only with quotation marks "" Thus very paranoid message should be sent via anonymous remailers and encrypted with options: --no-emit-version --no-comments --no-throw-keyids Anything else (except removing BEGIN PGP MESSAGE)? -- With best regards... Current OpenPGP key ID: 0x500B8987 Fingerprint: E883 045D 36FB 8CA3 8D69 9C79 9E35 3B56 500B 8987 Keyserver to use: sks.keyserver.penguin.de Encrypted mail preferred. signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Large file issues again (win32)
Hi all. I recently encrypted (for testing purposes) 4,36 GB file using my public key. I used official debian 3.1r0a DVD ISO image #1 as initial file. The command was: gpg -e -r [recipient] -v [file] Then I unsuccessfully tried to decrypt file using the same way, after this I use method which was decribed here: http://lists.gnupg.org/pipermail/gnupg-users/2005-September/026966.html http://lists.gnupg.org/pipermail/gnupg-users/2005-September/026661.html Now I'm trying to decrypt file and receive the following: - C:\folder>gpg -d -v < file.gpg > file gpg: public key is 0xBF3D3DC2 gpg: using subkey 0xBF3D3DC2 instead of primary key 0x500B8987 gpg: encrypted with 4096-bit ELG-E key, ID 0xBF3D3DC2, created 2005-08-06 "lusfert <[EMAIL PROTECTED]>" gpg: TWOFISH encrypted data gpg: original file name='debian-dvd-1.iso' gpg: buffer shorter than attribute subpacket gpg: [don't know]: invalid packet (ctb=45) node 00B1A160 00/00 type=gpg-control ctrl=3 len=0 node 00B1A028 00/00 type=user-id "[bad attribute packet of size 135]" gpg: invalid root packet detected in proc_tree() node 00B1A028 00/00 type=user-id "[bad attribute packet of size 135]" gpg: [don't know]: invalid packet (ctb=10) gpg: WARNING: encrypted message has been manipulated! gpg: [don't know]: invalid packet (ctb=30) Every time only 391 739 392 bytes of output file were written before error occurs. Thus it seems workaround described in previous messages doesn't help. GnuPG 1.4.2 official build, Windows XP SP2 Pro, standard cmd.exe Is it possible to solve this problem? -- With best regards, Current OpenPGP key ID: 0x500B8987 Fingerprint: E883 045D 36FB 8CA3 8D69 9C79 9E35 3B56 500B 8987 Encrypted e-mail preferred. signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Keytypes and changing them
Christoph Anton Mitterer wrote: > Ok,.. I know that you can set at least the following flags to specify > the purpose of a key: > A - authorsation > C - certification > E - encryption > S - signation > What does type "A" mean and where is it used? -- With best regards, Current OpenPGP key ID: 0x500B8987 Fingerprint: E883 045D 36FB 8CA3 8D69 9C79 9E35 3B56 500B 8987 Encrypted e-mail preferred. signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Keytypes and changing them
David Shaw wrote: > On Tue, Nov 08, 2005 at 07:17:01PM +0300, lusfert wrote: > >>Christoph Anton Mitterer wrote: >> >> >>>Ok,.. I know that you can set at least the following flags to specify >>>the purpose of a key: >>>A - authorsation >>>C - certification >>>E - encryption >>>S - signation >>> >> >>What does type "A" mean and where is it used? > > > One possible (and current) use is to use an OpenPGP key for ssh > authentication. > > David Christoph Anton Mitterer wrote: > lusfert wrote: > >> What does type "A" mean and where is it used? >> > It means that the key can be used for authentication,... e.g. for ssh or > so. > > Chris. Thanks for useful replies. -- With best regards, Current OpenPGP key ID: 0x500B8987 Fingerprint: E883 045D 36FB 8CA3 8D69 9C79 9E35 3B56 500B 8987 Encrypted e-mail preferred. signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Zero width no-break space (U+FEFF) in clearsigned output message
-BEGIN PGP SIGNED MESSAGE- Hash: RIPEMD160 Hi all. I wrote some text (with non-ASCII characters) in file encoded in UTF-8 with BOM and save it. Then I decided to clearsign it: gpg --verbose -u 0x500B8987 --clearsign 1.txt When I open clearsigned 1.txt.asc I can find symbol U+FEFF (Zero width no-break space) before message, but after field "Hash:". Adding option - -t does not change anything. But if source file is encoded in UTF-8 without BOM, character U+FEFF doesn't appear in output clearsigned text. Why does symbol "zero width no-break space" appear if source file has Unicode signature (BOM)? Configuration: GnuPG 1.4.2 official build, WinXP Pro SP2, standard cmd.exe Regards - -- Current OpenPGP key ID: 0x500B8987 Key fingerprint: E883 045D 36FB 8CA3 8D69 9C79 9E35 3B56 500B 8987 Encrypted e-mail preferred. -BEGIN PGP SIGNATURE- iD8DBQFDiHjYnjU7VlALiYcRAy2RAKCPvZ2MNSD3/SxExNrqZqqyKplljQCgkV9i pP2KweQ1wvUI6ZHWo2M+CkM= =N/yE -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Zero width no-break space (U+FEFF) in clearsigned output message
-BEGIN PGP SIGNED MESSAGE- Hash: RIPEMD160 David Shaw wrote on 26.11.2005, Сб 18:30: > On Sat, Nov 26, 2005 at 06:01:49PM +0300, lusfert wrote: >> >>When I open clearsigned 1.txt.asc I can find symbol U+FEFF (Zero width >>no-break space) before message, but after field "Hash:". Adding option >>-t does not change anything. But if source file is encoded in UTF-8 >>without BOM, character U+FEFF doesn't appear in output clearsigned text. > > > U+FEFF is the BOM character. It was in the original document, so it's > in the signed document as well. > Then why this BOM character appears in clearsigned text if option - --textmode (-t) is used? As I understand from its description in man file GnuPG threat input file as text. But BOM is a file, not text signature; then why U+FEFF appears in output text? Or I'm wrong? PS And what about problem with verifying signatures from PGP Global Directory messages via GnuPG + Enigmail? GPG still writes: WARNING: signature digest conflict in message http://lists.gnupg.org/pipermail/gnupg-users/2005-September/027076.html I sent an example a long time ago. Regards - -- Current OpenPGP key ID: 0x500B8987 Key fingerprint: E883 045D 36FB 8CA3 8D69 9C79 9E35 3B56 500B 8987 Encrypted e-mail preferred. -BEGIN PGP SIGNATURE- iD8DBQFDiNEKnjU7VlALiYcRAyYiAJsHfCpU3zY6WErZYC1oGEjH6OIyBACgz92r RISSoLMi5NHYKT0mOBIS2vY= =ObRI -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Zero width no-break space (U+FEFF) in clearsigned output message
-BEGIN PGP SIGNED MESSAGE- Hash: RIPEMD160 David Shaw wrote on 27.11.2005 1:05: > On Sun, Nov 27, 2005 at 12:18:08AM +0300, lusfert wrote: > >>David Shaw wrote on 26.11.2005, Сб 18:30: >> >>>U+FEFF is the BOM character. It was in the original document, so it's >>>in the signed document as well. >>> >> >>Then why this BOM character appears in clearsigned text if option >>--textmode (-t) is used? As I understand from its description in man >>file GnuPG threat input file as text. But BOM is a file, not text >>signature; then why U+FEFF appears in output text? Or I'm wrong? > > > I'm not sure what question you're asking here. The BOM character is > in your original document. GnuPG doesn't modify input text, so > therefore the BOM character is in the output text as well. If you use > --textmode, GnuPG canonicalizes line endings to CRLF, but again does > not change actual text, including the BOM. > As I understand GnuPG handles input as text file, not as plain text, even if option -t used? > If you don't want a BOM character in your output, don't put a BOM > character in your input. Thanks, I already do that. Now I understand why clearsigned via command line UTF-8 with BOM text has BAD sig using WinPT or GPGshell: they just can't handle Unicode... Regards - -- Current OpenPGP key ID: 0x500B8987 Key fingerprint: E883 045D 36FB 8CA3 8D69 9C79 9E35 3B56 500B 8987 Encrypted e-mail preferred. -BEGIN PGP SIGNATURE- iD8DBQFDiOSAnjU7VlALiYcRA2BIAKDD0s+D1BXTXQNQuGW6ya+mY3CZYgCeKB8N pxL6nPj8yrv650UfWfAhPbw= =LYJ/ -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: GnuPG --edit-key, help req.
-BEGIN PGP SIGNED MESSAGE- Hash: RIPEMD160 Nicky wrote on 27.12.2005 22:06: > What does the usage letters mean in the key listing? > usage: CS > usage: SEA > What does SEA stand for? I think S and E stand for Signing and > Encryption respectively but what about A and C? > S - Signing E - Encryption A - Authentication (for SSH), look at http://lists.gnupg.org/pipermail/gnupg-users/2005-November/027478.html C - Certifying (signing OpenPGP keys), can be used only for primary key, not a subkey usage: SEA - key can be used for signing, encryption, and authentication Regards - -- My current OpenPGP key ID: 0x500B8987 Key fingerprint: E883 045D 36FB 8CA3 8D69 9C79 9E35 3B56 500B 8987 Encrypted e-mail preferred. -BEGIN PGP SIGNATURE- iD8DBQFDtYjWnjU7VlALiYcRA9AxAJ97DQKackDxK+9+651PcqP02hH7swCg0FbW JOQ12CfXjl/quyHt09qUHQo= =Y/Iu -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: lost private key password
-BEGIN PGP SIGNED MESSAGE- Hash: RIPEMD160 Patrick Plattes wrote on 05.01.2006 2:13: > Realos wrote: > >> hello, >> >> I have found an old pair of private and public keys but unfortunaltely >> do no remember the corresponding password. Public key is places on key >> servers, thus I would like to have access to it's password again. >> >> What would you suggest in this case? A brute force attack with some >> software if I know part of the password? What tool is suitable for that? >> >> > Maybe you want to revoke the Key :) > To revoke any key at first it's needed to generate a revokation certificate: gpg --output [file] --gen-revoke [key id] This operation requires passphrase for private key... Thus it's strongly recommended to generate a revokation certificate at once after creating a key and keep it in safe place. If you already have an appropriate revokation certificate, simply import it into your keyring: gpg --import [rev cert file] Regards - -- My current OpenPGP key ID: 0x500B8987 Key fingerprint: E883 045D 36FB 8CA3 8D69 9C79 9E35 3B56 500B 8987 Encrypted e-mail preferred. -BEGIN PGP SIGNATURE- iD8DBQFDvHLNnjU7VlALiYcRAwtDAJ9pYB4HrBw5Ou6TnA57dC1VsVpH1ACg2tlV BLpywWXQXfNPjz+BFDENvQc= =ZIvM -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
BZIP2 algorithm isn't supported after compiling gnupg from source code
Hello. I downloaded GnuPG source and checked its signature (under Windows): ftp://ftp.gnupg.org/gcrypt/gnupg/gnupg-1.4.2.tar.bz2 ftp://ftp.gnupg.org/gcrypt/gnupg/gnupg-1.4.2.tar.bz2.sig Then I rebooted into recently installed Debian GNU/Linux 3.1r0a system and built program from source: $ cd /home/[user]/ $ bunzip2 gnupg-1.4.2.tar.bz2 $ tar xvf gnupg-1.4.2.tar $ cd ./gnupg-1.4.2 $ ./configure $ make # make install After these steps command "gpg --version" displays the following: gpg (GnuPG) 1.4.2 [...] Compression: Uncompressed, ZIP, ZLIB Before compiling (there was default gnupg installation from Debian package) output of "gpg --version" was: gpg (GnuPG) 1.4.1 [...] Compression: Uncompressed, ZIP, ZLIB, BZIP2 Windows version (installed from official binaries) also supports BZIP2: gpg (GnuPG) 1.4.2 [...] Compression: Uncompressed, ZIP, ZLIB, BZIP2 Thus BZIP2 algorithm isn't supported after compiling GnuPG 1.4.2 from source code under Linux. How can I enable BZIP2 support using last version of GPG under Linux? Regards and thanks for advice -- My current OpenPGP key ID: 0x500B8987 Key fingerprint: E883 045D 36FB 8CA3 8D69 9C79 9E35 3B56 500B 8987 Encrypted e-mail preferred. signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: BZIP2 algorithm isn't supported after compiling gnupg from source code
John Clizbe wrote on 05.01.2006 19:50: > lusfert wrote: >>Thus BZIP2 algorithm isn't supported after compiling GnuPG 1.4.2 from >>source code under Linux. >>How can I enable BZIP2 support using last version of GPG under Linux? > > > What was the output from configure? You should have seen lines like > (near top) > checking whether to enable the BZIP2 compression algorithm... yes > > (near bottom) > checking for bzlib.h... yes > checking for BZ2_bzCompressInit in -lbz2... yes > > './configure 2>&1 | tee configure.log' will save the output from > configure for diagnostic purposes. > OK, I tried again. Here is configure log: http://lusfert.land.ru/files/configure_log It contains these lines: - checking whether to enable the BZIP2 compression algorithm... yes checking for bzlib.h... no - > BZIP2 support won't be built if configure cannot find the bzlib.h include file > and the libbz2 library. You may need to 'help' configure find the bzip2 > library. > configure's --help will tell you: > > --with-bzip2=DIRlook for bzip2 in DIR > But what directory should I write here? > Finally, what version does apt-get install? > 1.4.1 Regards -- My current OpenPGP key ID: 0x500B8987 Key fingerprint: E883 045D 36FB 8CA3 8D69 9C79 9E35 3B56 500B 8987 Encrypted e-mail preferred. signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: BZIP2 algorithm
Henry Hertz Hobbit wrote on 06.01.2006 16:34: > lusfert wrote: >>$ cd ./gnupg-1.4.2 >>$ ./configure > > > Where did the output go? To /dev/null? Output was on the screen... > Since you are not > using C Shell (please use bash, sh, of ksh),do it this way: > I use bash. > $ ./configure > LOG.config 2> ERR.config > > Now you can study the results to decide what to do next... > I can already tell you right now that you will be building > the BZIP library. If you see the following magic line in > the LOG.config file: > > "checking whether to enable the BZIP2 compression algorithm... yes" > > you will know you are okay. If you don't ... more on that in a > moment... > OK, see here: http://lists.gnupg.org/pipermail/gnupg-users/2006-January/027768.html Log file does contain above line. > >>$ make > > > Ditto with output going to other files... > > $ make > LOG.make 2> ERR.make > $ ls -l ERR.* > > If both of those files are empty, you may be okay. If they > are and you are happy with what is in the LOG.* files, then > you can proceed... > Both files (ERR.config & ERR.make) are empty. Log file contains magic line too. > > First, I am assuming you put the program by default into /usr/local. GnuPG installs into /usr/local/bin. > Do you have /usr/local/bin and /usr/local/sbin first in your PATH? > I ALWAYS DO THIS TO MY PATH VARIABLE. That is because I leave the > older version of GnuPG (and whatever else) alone since I don't want > to get whacked by an update from the OS creators that undoes all that > nice work to get things as up to date as possible (especially useful > with GnuPG). Download bzip2 and install it in all its glory (which > includes not only the executables, but also the header and bzip2 > link library files. > > http://www.bzip.org/ > Thanks, this helps. I installed bzip2-1.0.3.tar.gz and after this command "./configure" found bzlib.h without additional options. Now after compiling "gpg --version" displays: gpg (GnuPG) 1.4.2 [...] Compression: Uncompressed, ZIP, ZLIB, BZIP2 Thanks to everyone! -- My current OpenPGP key ID: 0x500B8987 Key fingerprint: E883 045D 36FB 8CA3 8D69 9C79 9E35 3B56 500B 8987 Encrypted e-mail preferred. signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: GPGOL breaks Enigmail
Werner Koch wrote on 23.01.2006 18:01: > On Mon, 23 Jan 2006 09:25:18 +0100, Patrick Brunschwig said: > >> Does GPGOL install gpg, or does it modify the path to the GnuPG home >> directory? > > Yes, it installs gpg into the same location as the new installer of > gpg does. The HOMEDIR is the user specific directory. > > c:\Program files\gnu\gnupg\gpg --version > > should show the homedir. > Above command should be used with quotation marks: "c:\Program files\gnu\gnupg\gpg" --version -- Regards My current OpenPGP key ID: 0x500B8987 Key fingerprint: E883 045D 36FB 8CA3 8D69 9C79 9E35 3B56 500B 8987 Encrypted e-mail preferred. signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: problems with gnupg-pgp
Nuno Donato wrote on 19.01.2006 0:44: > hello > > i've recently installed gnupg to be able to communicate with some > persons who are using PGP (i like free alternatives :) > before installing i certified that both systems were compatible. > i sucessfully created my private and public keys and we exchanged > them. after that, i send a couple of test emails to another person > using GPG, and we were able to encrypt and decrypt the message. > however, i can not do the same with the PGP guys. when i try to > decrypt the message i get an error saying something it is not a valid > file... What *exactly* was written in an error message? Try to use options "--verbose", alternatively you may temporary add option "verbose" without "--" in gpg.conf. -- Regards My current OpenPGP key ID: 0x500B8987 Key fingerprint: E883 045D 36FB 8CA3 8D69 9C79 9E35 3B56 500B 8987 Encrypted e-mail preferred. signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Trouble with enigmail and Thunderbird 1.5
Jean-David Beyer wrote on 23.01.2006 21:03: > I have recently switched ISP, but I also upgraded Thunderbird at the same > time. > As I can see in armor header you are using _very old_ GnuPG version. 1.2.1 has a serious vulnerability, please update GnuPG immediately. For details read this announcement: http://lists.gnupg.org/pipermail/gnupg-announce/2003q4/000160.html Also from 1.2.1 to 1.4.2 (latest stable version) there were many features added including support for various key servers. > Now when I get a gpg signed e-mail, I supposedly can check the pen? and it > will offer to download the key, giving me a choice of keyservers. I > generally pick random.sks.keyserver.penguin.de > > But now, when I do that, it just buzzes around and never downloads the key. > I looked at my firewall, and it is not blocking it. I tried it manually with > > gpg --keyserver keyserver.kjsl.com --recv-key 0xF621EDAD > > for example, and it worked fine. > Both key servers works fine for me. > Is this a known problem? Or should I find a Thunderbird newsgroup to ask? > And if so, which one? > At first, update GnuPG (see above why), then try again and if it won't be successful let us know. -- Regards My current OpenPGP key ID: 0x500B8987 Key fingerprint: E883 045D 36FB 8CA3 8D69 9C79 9E35 3B56 500B 8987 Encrypted e-mail preferred. signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Necessity of GPG when using SSL
Benjamin Esham wrote on 20.02.2006 7:50: > John Clizbe wrote: >> Earthlink and Google's GMail use https on their signin page then then >> switch >> over to http once authenticated > > I saw a neat trick somewhere online... if you use > "https://mail.google.com"; as your > login page for Gmail, the entire session is encrypted. I haven't used > the normal > method since I learned how to do this. I hope someone finds this > helpful! :-) > This is even included in Gmail help and recommended by Google: https://mail.google.com/support/bin/answer.py?answer=8155 I don't understand why it isn't enabled by default. For example, at https://www.safe-mail.net/ you can use web-interface only via https:// -- Regards OpenPGP Key ID: 0x9E353B56500B8987 Encrypted e-mail preferred. signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: [GPGOL] No keys found
-BEGIN PGP SIGNED MESSAGE- Hash: RIPEMD160 Anders Eriksson wrote on 23.03.2006 12:14: >> Why are you using GPG 1.2.1? There have been several security >> bugs detected since then, including a few in the last month; >> you should upgrade to 1.4.2.2 ASAP. >> > I just did and now WinPT doesn't work! It claims that I have an old version > of GPG. > > "Sorry your GnuPG version is not compatible. You need at least GPG 1.1.9x or > better" > > One would think that 1.4.2.2 is better than 1.1.9x, but ... > Download GnuPG from http://www.gnupg.org/download/ and WinPT from http://www.winpt.org/ or http://wald.intevation.org/frs/?group_id=14 At this time I can't download GnuPG w32 binary from the main site: ftp://ftp.gnupg.org/gcrypt/binary/gnupg-w32cli-1.4.2.2.exe However, you may download from any mirror (http://www.gnupg.org/download/mirrors.html.en): ftp://ftp.surfnet.nl/pub/security/gnupg/binary/gnupg-w32cli-1.4.2.2.exe ftp://ftp.surfnet.nl/pub/security/gnupg/binary/gnupg-w32cli-1.4.2.2.exe.sig Always use latest stable versions, don't forget to check signatures. Now they are GnuPG - 1.4.2.2 WinPT - 0.11.9 After verifying signatures and installation both programs check their versions: WinPT -> Menu -> ? -> Info WinPT -> Menu -> ? -> Info -> About GPG... After updating GnuPG and WinPT check if problem still occurs. - -- Regards OpenPGP Key ID: 0x9E353B56500B8987 Encrypted e-mail preferred. -BEGIN PGP SIGNATURE- iEYEAREDAAYFAkQidI8ACgkQnjU7VlALiYdaMgCgiKmCCohS4wWNjDKIXsZ1ISSc rEwAn2t9QA6+egU66dj4Cfd7hcU0tNPd =JHvz -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Public Keyserver with LDAP
Teichmeier, Heiko wrote on 23.03.2006 9:11: > Can anyone tell me - exist a public GPG-Keyserver into the internet with > LDAP-protocol as access-way? If this is true, than tell us the > adress(es), please. > ldap://keyserver.pgp.com/ -- Regards OpenPGP Key ID: 0x9E353B56500B8987 Encrypted e-mail preferred. signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Date and time format
Hi. Is it possible to change date format in GPG output? When I see D:\>gpg --verify gnupg-w32cli-1.4.3.exe.sig gpg: Signature made 04/03/06 14:42:33 gpg:using RSA key 0x1CE0C630 gpg: Good signature from "Werner Koch (dist sig) <[EMAIL PROTECTED]>" I don't understand what date does GPG mean: — 4 March 2006? — 3 April 2006? — 6 March 2004? When you see date 04/03/06 it's hard to guess what date format is used: dd/mm/yy, mm/dd/yy, yy/mm/dd or even yy/dd/mm. By default I think it's 4 March 2006 because date format dd.mm.yy (dd.mm.) is used in my country. Also GPG displays time (14:42:33) in such way when it's hard to guess is it local or UTC. Maybe it'll be better to see something like this: D:\>gpg --verify gnupg-w32cli-1.4.3.exe.sig gpg: Signature made 4-Apr-2006 14:42:33 (local - Russian Daylight Time) gpg:using RSA key 0x1CE0C630 gpg: Good signature from "Werner Koch (dist sig) <[EMAIL PROTECTED]>" or D:\>gpg --verify gnupg-w32cli-1.4.3.exe.sig gpg: Signature made 04-Apr-2006 10:42:33 UTC gpg:using RSA key 0x1CE0C630 gpg: Good signature from "Werner Koch (dist sig) <[EMAIL PROTECTED]>" or (maybe the best way) D:\>gpg --verify gnupg-w32cli-1.4.3.exe.sig gpg: Signature made 04 April 2006 14:42:33 (local - Russian Daylight Time) gpg:using RSA key 0x1CE0C630 gpg: Good signature from "Werner Koch (dist sig) <[EMAIL PROTECTED]>" Suggestions are welcome. P.S. When I see output of PGPdump ( http://www.pgpdump.net/ ) it's much more easier to understand what date and time are shown and what time zone is used. -- Regards OpenPGP Key ID: 0x9E353B56500B8987 Encrypted e-mail preferred. signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Date and time format
David Shaw wrote on 07.04.2006 1:43: > On Fri, Apr 07, 2006 at 01:31:40AM +0400, lusfert wrote: >> Hi. >> >> Is it possible to change date format in GPG output? > > GPG uses whatever the OS specifies as the date format. It is not > something that is changeable by GPG - you need to set the date format > in your OS. > In my OS (Windows XP Pro SP2 + all updates) date format is set as dd.mm. : http://i10.photobucket.com/albums/a142/someuser00/winxp_date_format.png (12 KB) Translation*: апреля = April пятница = Friday *Note that I use Russian language for date, time and other formats, but English version of Windows XP. However, GPG uses mm/dd/yy format... P.S. As you see can at the top of this message, my Thunderbird uses right date format (specified by OS): 07.04.2006 - dd.mm. -- Regards OpenPGP Key ID: 0x9E353B56500B8987 Encrypted e-mail preferred. signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Date and time format
John W. Moore III wrote on 07.04.2006 2:37: > David Shaw wrote: > >>> OS setting via LC_TIME, according to Microsoft, though I have no idea >>> how to set it on win32. > > Right Click on the Clock, Select Setting Time/Date. > http://i10.photobucket.com/albums/a142/someuser00/right_click_on_clock.png Where is "Setting Time/Date"? Then I clicked Adjust Date/Time: http://i10.photobucket.com/albums/a142/someuser00/date_and_time_settings.png Where can I set date format (via LC_TIME)? -- Regards OpenPGP Key ID: 0x9E353B56500B8987 Encrypted e-mail preferred. signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Date and time format
John Clizbe wrote on 07.04.2006 15:13: > lusfert wrote: >> John W. Moore III wrote on 07.04.2006 2:37: >>> David Shaw wrote: >>> >>>>> OS setting via LC_TIME, according to Microsoft, though I have no idea >>>>> how to set it on win32. >> Where can I set date format (via LC_TIME)? > > Via LC_TIME? I suppose you could specify an environment variable. > > The native Windows way is: > > Control Panel --> Regional and Language Options. Select the language you wish > to > use, then click 'Customize'. On the Date tab you may specify short and long > date > format strings; eg, '-MM-dd' and ', dd, '. > I have already done that. See http://lists.gnupg.org/pipermail/gnupg-users/2006-April/028353.html GnuPG still uses mm/dd/yy date format: http://i10.photobucket.com/albums/a142/someuser00/gnupg_and_pgpdump_date_format.png As you can see PGPdump output date format is much better. Enigmail uses right format, specified in Windows XP system settings: http://i10.photobucket.com/albums/a142/someuser00/enigmail_date_format.png 07.04.2006 15:14 - dd.mm. H:mm (24 hour) -- Regards OpenPGP Key ID: 0x9E353B56500B8987 Encrypted e-mail preferred. signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Date and time format
Mica Mijatovic wrote on 2006-04-07 4:24: > Was Fri, 07 Apr 2006, at 01:31:40 +0400, > when lusfert wrote: > >>> Is it possible to change date format in GPG output? > > I tried this to figure out many times but couldn't. > > I also expected that GPG will take over the local User's setting of the > OS, as most programs do, but not, it doesn't. I don't know reasons. > That's very bad. :( I haven't found any problem report about this at http://bugs.gnupg.org/ Should I create a new one? http://bugs.gnupg.org/cgi-bin/gnatsweb.pl?debug=&database=gnupg&cmd=create -- Regards OpenPGP Key ID: 0x9E353B56500B8987 Encrypted e-mail preferred. signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
