Hi,
On Wednesday, 31 May 2023 16:55:05 CEST Bernhard Reiter wrote:
> https://pgp.governikus.de/?lang=EN
>
> """
> Governikus provides the online service for authenticating your OpenPGP key
on
> behalf of the German Federal Office for Information Security (BSI). This
> online service compares t
Hi,
On Sunday 15 January 2023 10:52:23 CET Christoph Klassen wrote:
> When I was testing the decryption I also tried "gpg --decrypt
> test_file.gpg" (without output file) with the 10 GB file and it took 8
> minutes and 47 seconds. I was wondering why it took longer when GnuPG
> didn't need to c
ntities we provide signature files for all tarballs and
binary versions. The keys are also signed by the long term keys of
their respective owners. Current releases are signed by one or more
of these four keys:
rsa3072 2017-03-17 [expires: 2027-03-15]
5B80 C575 4298 F0CB 55D8 ED6A BCEF 7E29 4B0
Hi,
On Friday 29 January 2021 17:52:25 CET Bernhard Reiter wrote:
> for many months now, my feeling is growing that
>
> encrypted subject headers in emails
> shift the security balance in the wrong direction.
I share that feeling. My goal that encrypted mails do not feel much different
from
Hi,
I'll try to answer this even though I don't completely know how to do it in
python, but I know how it's done in C / C++.
On Wednesday 3 June 2020 12:52:46 CEST Ludwig Reiter wrote:
> how do I get public keys over WKD with python3/gpgme?
you can do a keylist with KEYLIST_MODE_LOCATE for a si
Hi,
On Sunday 8 September 2019 13:40:55 CEST Patrick Brunschwig wrote:
> Up to now, I only got 12 replies.
>
> *Reminder: Please send me a mail if you plan to come*
The GnuPG e.V. would cover the costs for privateers, those of you that do not
work for OpenPGP-Email at your Job, again. Just send
or donation to GnuPG if this helped to solve your problem. :-)
Best Regards,
Andre Heinecke
--
Andre Heinecke | ++49-541-335083-262 | http://www.intevation.de/
Intevation GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 18998
Geschäftsführer: Frank Koormann, Bernhard Reiter, Dr. Jan-
Hi,
On Monday, October 8, 2018 8:42:01 PM CEST Wiktor Kwapisiewicz via Gnupg-users
wrote:
> Is there any way to access it via API-like interface?
GPGME does:
gpg --with-colons --list-options show-sig-subpackets=\"20,26\" \
--list-sigs 6C8857E0D8E8F074
Best Regards,
And
use
> the same algorithms.
Oh! I would personally be very interested in that. I was asked this in Support
and so far have answered -> Impossible.
Any hints / documentation on how to achive this?
Regards,
Andre
--
Andre Heinecke | ++49-541-335083-262 | http://www.intevation.de/
Intevat
inentry program so that it does not start or
you are acidentally using a dummy / test pinentry which provides the wrong
passphrase.
--
Andre Heinecke | ++49-541-335083-262 | http://www.intevation.de/
Intevation GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 18998
Geschäftsführer
endif
in a central place would be appropiate. As the same policy is implicitly
already applied for the much more important MSVC Windows target. There is one
maintained way to get gnupg on windows. Cross compile it with mingw-w64 and
run it natively.
Best Regards,
Andre
--
Andre Heinecke | ++49
Oh/5DUkZ6YmUIX3j/A0z+59/qNO1i2hQ==
=zswl
-END PGP MESSAGE-
$ gpg --no-options -vd cve201812020
gpg: AES encrypted data
gpg: gcry_kdf_derive failed: Invalid data
gpg: encrypted with 1 passphrase
gpg: decryption failed: No secret key
$ gpg --version
gpg (GnuPG) 2.2.8-beta1
Which should be aff
r.baz" you can run:
gpg --yes --pinentry-mode loopback --passphrase '' --quick-gen-key f...@bar.baz
Best Regards,
Andre
--
Andre Heinecke | ++49-541-335083-262 | http://www.intevation.de/
Intevation GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 18998
Geschäft
t want to take a look at GPA's implementation:
https://git.gnupg.org/cgi-bin/gitweb.cgi?p=gpa.git;a=blob;f=src/cm-openpgp.c
Alternatively instead of wrapping gpg (and using the complicated edit
interface) you could also wrap "gpg-connect-agent" and issue commands to
scdaemon t
o specify directly which home directory
(the directory with the keys etc.) should be used.
Best Regards,
Andre Heinecke
--
Andre Heinecke | ++49-541-335083-262 | http://www.intevation.de/
Intevation GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 18998
Geschäftsführer: Frank Koorm
but of course it didn't.
No, the error is that the file is not encrypted to your private key. Changing
the passphrase won't help.
Kleopatra 3.1.0 should show an improved error and show you to which keys it is
actually encrypted.
Alternatively you can open the command line (cmd.e
est Regards,
Andre
--
Andre Heinecke | ++49-541-335083-262 | http://www.intevation.de/
Intevation GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 18998
Geschäftsführer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner
signature.asc
Description: This is a digitally s
gentForwarding ). The GnuPG on the remote machine connects to a local Gpg-
Agent. This allows me to SSH to a remote machine, do crypto there with secret
keys that live on my local machine / security tokens. And I only need to enter
the passphrase on the local machine.
Best Regards,
Andre
--
ly workaround could be to use some kind of fake pinentry (see the tests
in GPGME) and configure that in the gpg-agent.conf. But you are probably better
of bundling a 2.1 / 2.2 Version of GnuPG with your Application.
Best Regards,
Andre
--
Andre Heinecke | ++49-541-335083-262 | http://www.intev
h the message "keyserver send failed: Resource temporarily
> > unavailable".
> >
> > In the event the dirmngr from 2.1.21 is already running, the operation
> > succeeds.
Yes, slipped our testing. We are working on it:
https://dev.gnupg.org/T3318
Regard
ncrypt.
FWIW Kleopatra would have automatically chosen a filename like archive.tar.gpg
so your client must have manually changed that to have some kind of zip
extension.
On the other hand you could extend your process to also accept tarballs ;-)
Regards,
Andre
--
Andre Heinecke | ++49-541-3350
uid [ unknown] testuse...@test.gnupg.org
│ sub cv25519 2016-07-15 [E]
└
[Makefile]
https://hg.intevation.de/gnupg/wkd-tools/raw-file/default/Makefile.example
--
Andre Heinecke | ++49-541-335083-262 | http://www.intevation.de/
Intevation GmbH, Neuer Graben 17, 49074 Osnabrück
ished
> before the channel that runs any shell or other interactive behavior.
>
> I really think this ought to be handled in OpenSSH.
Exactly. I wrote a mail to openssh-unix-dev as you suggested to ask about
that. Let's see :-)
Regards,
Andre
--
Andre Heinecke | ++49-541-335
n connect with ssh
socket forwarding. This is a bit clunky to use.
I've tried placing files in that folder, or to set up permissions to 000 for
the gnupg folder (so that gnupg itself does not use it) but to no avail. It's
still removed when disconnecting and the next connect will
d be Keys, signed data, detached signatures, etc.. so to bind them to an
application the application would have to detect what a file is and handle it
appropiately. This is done now by Kleopatra.
Regards,
Andre
--
Andre Heinecke | ++49-541-335083-262 | http://www.intevation.de/
Intevation GmbH,
achine?
I would happily update the wiki with a solution.
Regards,
Andre
--
Andre Heinecke | ++49-541-335083-262 | http://www.intevation.de/
Intevation GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 18998
Geschäftsführer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner
sig
testhome --expert --full-gen-key
would generate you a key in c:\testhome
Regards,
Andre
--
Andre Heinecke | ++49-541-335083-262 | http://www.intevation.de/
Intevation GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 18998
Geschäftsführer: Frank Koormann, Bernhard Reite
sk me to provide it? (Assuming the person has my public key and without
gpgkey2ssh)
I think this use case is one of the nice features you get by associating an
OpenPGP key with SSH Authentication and I would miss it if gpgkey2ssh is
removed.
Regards,
Andre
--
Andre Heinecke | ++49-541-33508
Hi,
On Tuesday 03 November 2015 16:34:39 you wrote:
> At Tue, 03 Nov 2015 16:10:24 +0100,
>
> Andre Heinecke wrote:
> > Don't we need to lookup the new key anyway to make validity decisions?
> > Until then we assume "Unknown" trust.
>
> In the verif
e...@intevation.de on key
58BD45EC. It has. So you can assume the new Key is also valid for that UID.
Any new UID's on this key will have to be treated as first contact ID's. If the
new key has less UID's I don't see a problem at all.
Regards,
Andre
--
Andre Heinecke | +
I just sign it with the old key and GnuPG
can detect that and not show a warning about it?
This would also solve the problem that some users may have multiple keys with
the same UID's which are both valid.
Regards,
Andre
--
Andre Heinecke | ++49-541-335083-262 | http://www.intevatio
fy the destination directory.
Regards,
Andre
--
Andre Heinecke | ++49-541-335083-262 | http://www.intevation.de/
Intevation GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 18998
Geschäftsführer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner
signature.asc
Description: This is a dig
Hi,
On Monday, August 31, 2015 07:07:03 PM Andre Heinecke wrote:
> If I use the pinentry-basic included in the gnupg-w32 installer I get the
> "No pinentry" error.
> So it looks like pinentry-basic also has a Problem on Windows > 8.1
This was a problem in my test setup.
cause that was my bug ;-) )
2010 I guess is slightly different as it has the "No Pinentry" Problem so I've
left that out.
Regards,
Andre
--
Andre Heinecke | ++49-541-335083-262 | http://www.intevation.de/
Intevation GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück
ry-basic also has a Problem on Windows > 8.1
I've not reported a bug for this but I keep it in mind. (The issues are likely
related)
Works fine on Windows 7 though, curious.
Regards,
Andre
--
Andre Heinecke | ++49-541-335083-262 | http://www.intevation.de/
Intevation GmbH, Neuer Grab
; and get an EOF error after I entered the
> password.
I can confirm your Problem. Even without full-gen-key or any special options.
I've opened an issue for this:
https://bugs.gnupg.org/gnupg/issue2085
Regards,
Andre
--
Andre Heinecke | ++49-541-335083-262 | http://www.intevation.de/
In
ry gpg:
> decrypt_message failed: No such file or directory
I stumbled upon this also once. You need to use forward slashes instead of
backslashes for gnupg to work with UNC paths e.g.:
gpg2 --decrypt //remote.machine/encrypted.gpg
Works.
--
Andre Heinecke | ++49-541-335083-262 | http://www.in
to check if that switch was present or not?
http://git.gnupg.org/cgi-bin/gitweb.cgi?p=gpg4win.git;a=blob;f=src/Makefile.am
Look for gpg4win_pkg__configure (e.g. gpg4win_pkg_libgcrypt_configure)
> Also is there any
> option to turn hardware acceleration on or off at runtime?
No.
Regards,
A
Hi,
On Saturday 20 December 2014 12:21:08 Werner Koch wrote:
> Thus I do not think that Authenticate would harm even given that it is
> possible to buy the private key for an existing Authenticode certificate.
I actually love authenticode. It means that you can do some steps to get to
the "Opera
ipboard is definitely a good stopgap (until we can do a proper outlook >2010
plugin). Both Kleopatra (as of gpg4win-2.2.2) and GPA have Clipboard options
in their menu.
Kleopatra also offers the clipboard option through the system tray. If you
configure it not to be hidden in the tray this shou
ate the effort / work required to
port / compile GnuPG for that platform.
If you have professional interest in this maybe you can contract Werner Koch's
company g10code ( http://www.g10code.com/ ) to look into this for you.
Regards,
Andre
--
Andre Heinecke | ++49-541-335083-262 | http://www
atform and I'm pretty sure
you will run into some problems.
Regards,
Andre
--
Andre Heinecke | ++49-541-335083-262 | http://www.intevation.de/
Intevation GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 18998
Geschäftsführer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner
ce/gpg-snapshots/gpg-ce-dev-190111-src.zip
And a signed sha1sums file in:
http://files.kolab.org/local/windows-ce/gpg-snapshots/
Maybe it works, maybe not.
Have fun
--
Andre Heinecke | ++49-541-335083-262 | http://www.intevation.de/
Intevation GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück
en a .mk file for it and
attached it In my Mail from Wednesday. You should have dropped that
pinentry.mk file into the src directory of mxe.
Godspeed,
Andre
--
Andre Heinecke | ++49-541-335083-262 | http://www.intevation.de/
Intevation GmbH, Neuer Graben 17, 49074 Osnabrück | AG
like a charm for me on a debian wheezy system.
Regards,
Andre
--
Andre Heinecke | ++49-541-335083-262 | http://www.intevation.de/
Intevation GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 18998
Geschäftsführer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner
PKG
45 matches
Mail list logo
