El día miércoles, julio 05, 2017 a las 09:23:06a. m. +0900, NIIBE Yutaka
escribió:
> Hello,
>
> Matthias Apitz wrote:
> > The script 'scd-event' is only invoked on card removal (I do just en
> > echo of the args):
> [...]
> > A card insert is only seen *after* some agent requires something, for
Hello,
Matthias Apitz wrote:
> The script 'scd-event' is only invoked on card removal (I do just en
> echo of the args):
[...]
> A card insert is only seen *after* some agent requires something, for
> example the SSH client needs access to the secret key on the card;
Right. Scdaemon only watche
Hello,
Firstly, let me state right away that I'm a complete newbie.
I've had this software installed for a while now with everything working as
intended until a few days back. Although I'm able to access most features via
the GUI (Kleopatra and GPA), the command prompt functionality seems to be
On 04/07/17 21:03, Johan Wevers wrote:
> Is that going to be fixed, or is 1.4 now really considered EOL?
I think you need to see it in the context of this part of the announcement:
> Allowing execute access to a box with private keys should be considered
> as a game over condition, anyway. Thus
On 04-07-2017 18:30, Werner Koch wrote:
>> Is 1.4 vulnerable to this attack as well? I know it ows not use
>> libgcrypt but I'm not sure about the vulnerability.
>
> Maybe. And probably also to a lot of other local side channel attacks.
Is that going to be fixed, or is 1.4 now really considered
Hello,
I have now the GnuPG card working fine for signing mails, SSH access and
even for using GnuPG crypted credentials in Firefox. The last issue I'm
struggling with is the use of card removal and card insert via the
'scd-event' to lock and unlock the KDE desktop.
The script 'scd-event' is onl
On Tue, 4 Jul 2017 12:05, joh...@vulcan.xs4all.nl said:
> Is 1.4 vulnerable to this attack as well? I know it ows not use
> libgcrypt but I'm not sure about the vulnerability.
Maybe. And probably also to a lot of other local side channel attacks.
Shalom-Salam,
Werner
--
Die Gedanken sin
On Sat, 1 Jul 2017 16:46, linux_nutze...@mailbox.org said:
> When I tried to import a CentOS gpg key according to the manual from [1], I
> made the following observation:
>
> "gpg --quiet --with-fingerprint " does not return the fingerprint
> when using gnupg 2.1.17 (on ArchLinux and openSuse T
On Fri, 30 Jun 2017 02:33, lewis...@gmail.com said:
> Do you know any time frame and significant changes of v5 specs?
Next year we will prepare GnuPG to handle v5 keys read-only. I assume
that we can create v5 keys by default in maybe 5 years.
Shalom-Salam,
Werner
--
Die Gedanken sind fr
On 29-06-2017 9:28, Werner Koch wrote:
> The GnuPG Project is pleased to announce the availability of Libgcrypt
> version 1.7.8. This release fixes a local side-channel attack.
Is 1.4 vulnerable to this attack as well? I know it ows not use
libgcrypt but I'm not sure about the vulnerability.
--
10 matches
Mail list logo
