Re: Essay on PGP as it is used today

Stefan Claas via Gnupg-users wrote: > raf via Gnupg-users wrote: > > > Stefan Claas via Gnupg-users wrote: > > > > > Andrew Gallagher wrote: > > > > > > > * And finally: “don’t encrypt email”? Yes, well. Email is not going > > > > away. Just like passwords, its death has been long anticipated,

Re: Fresh certificate marked as expired / messed-up certificate chain pulling expired root cert in gpgsm

Hi, thanks for looking at this … am Sat, 20 Jul 2019 11:01:49 +0200 schrieb Dirk Gottschalk : > This is the issue here. These two certs of DTAG (Telekom) are exired > and that's the reason why gpgsm is complaining correctly. Please check again my original post, though. The issue I see is that

Upgrading to GnuPG 2.2.17

Dear Developers, My OS is Linux Mint 19.1 Cinnamon. The automated software manager says that its GNUPG version is "2.2.4-1ubuntu1.2". For a transfer to GnuPG 2.2.17, what do you recommend?: - To wait for the Mint managers to update their repository - To uninstall GNUPG 2.2.4-1ubuntu1.2, and in

About support of RFC 2437, 4056 and 6979

Hi all. Does GnuPG support OAEP for RSA (PKCS#1 v2 and RFC 2437), RSA-PSS (RFC 4056?), or deterministic usage of (EC)DSA (RFC 6979)? And if GnuPG does support RFC 6979, would it also work with (EC)DSA private keys stored on OpenPGP cards which support (EC)DSA algorithms? Best Regards, Persmu

Secure algorithm extension of RSA and DSA

Hi all. Does GnuPG support OAEP for RSA (PKCS#1 v2 and RFC 2437), RSA-PSS (RFC 4056?), or deterministic usage of (EC)DSA (RFC 6979)? And if GnuPG does support RFC 6979, would it also work with (EC)DSA private keys stored on OpenPGP cards which support (EC)DSA algorithms? Best Regards, Persmul

Re: --lsign --add-me or the invisible WoT

Stefan Claas via Gnupg-users wrote: > Hi all, > > now since we have Hagrid and WKD I was wondering if in the future an > additional paramemter like --add-me for --lsign would make sense, for > people still in need of a WoT? > > The idea would be that people --lsign each others keys and GnuPG, >

--lsign --add-me or the invisible WoT

Hi all, now since we have Hagrid and WKD I was wondering if in the future an additional paramemter like --add-me for --lsign would make sense, for people still in need of a WoT? The idea would be that people --lsign each others keys and GnuPG, or other public key crypto software, would then save

Re: Fresh certificate marked as expired / messed-up certificate chain pulling expired root cert in gpgsm

Hello. Am Donnerstag, den 18.07.2019, 18:33 +0200 schrieb Dr. Thomas Orgis: > Certified by >ID: 0x61A8CF44 >Issuer: /CN=Deutsche Telekom Root CA 2/OU=T-TeleSec Trust > Center/O=Deutsche Telekom AG/C=DE > Subject: /CN=T-TeleSec GlobalRoot Class 2/OU=T-Systems Trust > Cente