Mastodon 1k followers reached (Fediverse, aka "Social Media")

followers compared to an elder social media platform. After two years: https://social.heise.de/@mho/113452797498902317 Regards, Bernhard -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer: Frank Koormann, Bernh

Re: External Debian apt repository

Frank, Am Freitag 10 Januar 2025 13:00:34 schrieb Frank Guthausen: > Updated to GnuPG 2.5.3 (released yesterday 2025-01-09) > from the ``GnuPG (devel with libs)'' sources. thanks for offering that build. https://blog.shimps.org/blogpost296-GnuPG-Upstream-packaged-in-Debian

Gpg4win usage in US institutions asking for ACR ('VPAT') and "terms".

one for Gpg4win and this packaging with support can be useful. All: how would it help Gpg4win if we had an ACR like Mozilla? Or can we somehow address the legal hurdles differently? Best Regards, Bernhard [1] https://en.wikipedia.org/wiki/Voluntary_Product_Accessibility_Template -- https://inte

Re: GNU Privacy Handbook typo

label it outdated or old or so, to warn more users that some information could be outdated. Regards, Bernhard -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer: Frank Koormann, Bernhard Reiter signature.asc D

Re: S/MIME which certificate format

Am Donnerstag 20 Juni 2024 11:20:14 schrieb Marco Moock: > My cert itself creates the problem, the separate CA intermediate > cert can be imported properly. I've figured and included the lines for additional context only. :) -- https://intevation.de/~bernhard   +49 541 33 508 3-3

Re: S/MIME which certificate format

Hi Marco, hi Werner, Am Dienstag 18 Juni 2024 08:44:00 schrieb Bernhard Reiter via Gnupg-users: > > I can send you mine if you would like to test. > > At least I can try to import it and see what my version says. did a test with Gpg4win, which print a different error message: gpg (

Re: S/MIME which certificate format

Am Montag 17 Juni 2024 19:27:35 schrieb Marco Moock: > Am 17.06.2024 um 17:14:07 Uhr schrieb Bernhard Reiter via Gnupg-users: > > does Sectigo offer a public certificate somewhere which could > > possibly be imported for a test? > I can send you mine if you would like to test.

Re: S/MIME which certificate format

digest algorithm '?' used certificate from 2.2.43 let me assume that the algorithm is unknown to GnuPG. However this could be wrong. Regards Bernhard -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer

Re: Hints on how to check for a WKD key (was: Trying to get PKA working)

ion you just get an returns status for > scripting. I've added the second test method as well. -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer: Frank Koormann, Bernhard Reiter s

Re: How to get a pubkey with WKD

Am Donnerstag 15 Februar 2024 15:35:11 schrieb Werner Koch via Gnupg-users: > On Thu, 15 Feb 2024 11:48, Bernhard Reiter said: > > But it does not get the current version of the pubkey in some > > circumstances. > > Example?  I am not zware of it. Testing with 2.4.4 an

How to get a pubkey with WKD (Re: Incompatible secret key format between 2.4.4 and 2.2.27?)

much easier that the abvove long list of options. FWIW But it does not get the current version of the pubkey in some circumstances. And the long version works in a few more elder GnuPG versions. ;) Bernhard -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE;

Re: Incompatible secret key format between 2.4.4 and 2.2.27?

y-locate clear,nodefault,wkd w...@gnupg.org > I'm willing to send you a copy to examine but not publicly as that's > (now I remember) a result of a dumb experiment. -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 1899

Re: Regarding the expiration of the signed data in npth-1.6.tar.bz2

9-12-31] That should be good enough. > Is it possible to have it signed again? At least if a new release is done, that release would be freshly signed. So far I haven't seen renewed signatures from GnuPG devs, which makes it unlikely they sign the nPth release from 2018 again. Regards, B

Re: NO_SECKEY difference between 2.2 and 2.3

ial decryption keys that you both do not have. Try an additional -v to see more about the message structure. Maybe v2.3 is just more informative here. -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer: Fra

webmail and OpenPGP/MIME -> Mailvelope (Re: Signature)

if the webmail service is offering the necessary support, you can do OpenPGP/MIME as well. Mailvelope supports using GnuPG as crypto backend, though it could be easier to set up. Bernhard -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB

Re: Failed to export secret key

nentries issues with terminal size in the past https://dev.gnupg.org/T5322 https://dev.gnupg.org/T4924 Maybe that helps with debugging. You could try a large terminal window. Bernhard -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnab

very large RSA key (Re: Sirs:)

dea. Bernhard -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer: Frank Koormann, Bernhard Reiter signature.asc Description: This is a digitally signed message part. ___ Gn

Re: Strange message seen on FreeBSD 14.0 amd64

given you issues: https://lists.gnupg.org/pipermail/gnupg-devel/2023-July/035390.html Bernhard -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer Frank Koormann, Bernhard Reiter signature.asc Description: Thi

Re: "gpg --card-edit" with multiple card readers (Yubikey)

has already given on https://wiki.gnupg.org Regards, Bernhard -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer Frank Koormann, Bernhard Reiter signature.asc Description: This is a digitally s

Re: Question - GPG - No Secret Keys

fter much review, and "by chance" we re-imported the Public.key and the > TrustDb.Key and the Armor was repopulated with the old Key information and > the decryption started to work again Good to know that you had a working backup (that is recommended practice). :) Best Regards Bernhar

Re: expiration date for the keys pgp (automatism)

Am Freitag 09 Juni 2023 14:25:01 schrieb Werner Koch via Gnupg-users: > A really proper solution would use a function to decode field 7 And potentially filter for otherwise valid pubkeys. >;) Best, Bernhard -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrü

Re: expiration date for the keys pgp (automatism)

two more hints: * See in the documentation for option -with-colons if you really do want to parse the output yourself. * Faking the time may help you, e.g. put it four weeks in the future. See for the "esoteric" option --faked-system-time Again, personally a python script wou

get OpenPGP pubkeys authenticated using German personal ID

once I have a common name, we get collisions? Bernhard -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer Frank Koormann, Bernhard Reiter signature.asc Description: This is a

Re: Mastodon account: running a server?

(Though I don't know how GnuPG devs think about using the official name.) If this is considered, why not run a Pleroma backend or one of this line. Best Regards Bernhard -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 1

Mastodon account(s), server search

Hello, Am Donnerstag 01 Dezember 2022 17:42:47 schrieb Bernhard Reiter: > seems to be a good time to start an official Mastodon account > for GnuPG and related topics like Gpg4win and OpenPGP. this plan was frozen first by the future OpenPGP standards (see gnupg-devel@ from the 2

files are there now (Re: [Announce] GnuPG 2.4.1 released)

er yet: They are now. (Though not visible on https://gnupg.org/ftp/gcrypt/gnupg/ yet ) curl --silent https://gnupg.org/ftp/gcrypt/gnupg/ | grep '2\.4\.1' | wc -l 0 ) Best Regards Bernhard -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; A

Re: [Announce] GnuPG 2.4.1 released

ouncement is about the latest release of > this series; the previous release was 2.3.8. This reads like "2.3.8" was a typo, maybe something to check for the next announcement. Best Regards Bernhard signature.asc Description: This is a digi

Re: using gpg-agent from web server mod_wsgi script

than your gpg-agent. So the mod_wsgi process may not be able to access the agent's socket > I'm using gpg2 2.2.27 and python gpgme_version 1.16.0 Other solution approach: Use a private key without passphrase. Best, Bernhard [Answering an elder question where I haven't seen

Debian Packages for 2.4 (was: Application deadlock when using GnuPG, gpgsm, and Scute)

here is helpful input someone in this list has and is a Debian user, you can and should send it to the issue tracker. Regards Bernhard -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer Frank Koormann, Bernhard

WKD: another company supports it: univention

may mean that we get more WKD services in the future. Regards, Bernhard -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer Frank Koormann, Bernhard Reiter signature.asc Description: This is a digi

Re: Technical Terms/Website TheBat!: OpenPGP, GnuPG

Am Freitag 03 Februar 2023 09:27:04 schrieb Bernhard Reiter: > Just noticed that some of your technical terms on the web-site can be > improved: Got a friendly response: -- Weitergeleitete Nachricht -- [..] Thank you very much for the detailed explanation. We have updat

Technical Terms/Website TheBat!: OpenPGP, GnuPG

ons about GnuPG or Gpg4win, you can either mail the mailinglist (gnupg-users@) or the Gpg4win forum. Best Regards Bernhard -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer Frank Koormann,

switching off compression (was: En-/Decryption speed for large files (GnuPG and Gpg4win))

use that. Would not be enough to disable bip2 encryption (according to the documentation). Looking at https://gnupg.org/documentation/manuals/gnupg/GPG-Esoteric-Options.html#index-compress_002dalgo what shall work with just one option is `compress-algo uncompressed` Best, Bernhard -- https://in

Re: [Announce] GnuPG for OS X 2.4.0 released

e I ran into build problems. I also > spent several weeks in hospitals over the last couple of months, and I > am still not well today, so I hope you can forgive the delay. ;-) All the best wishes for your health in the new year! Bernhard -- https://intevation.de/~bernhard   +49 541 33 508 3

Reminder: use plaintext mails only on ML

how their email client is displaying the contents, for instance the font size and color. * it saves energy because of less bytes transmitted and backuped (and indexed, archived and searched). Best Regards, Bernhard ps. On a general remark, I believe there is a productivity gap between people t

Re: Only GnuPG 2.2.x in Debian Bookworm?

Which IETF OpenPGP working group members are you referring to? What of their actions will be a problem for OpenPG from our point of view? Who are the "Sequoia venture capitalists" and what are their interests? Regards Bernhard -- https://intevation.de/~bernhard   +49 541 33 5

Re: Only GnuPG 2.2.x in Debian Bookworm?

about 14 months, maybe this break of him is reponsible for a slight delay in current versions for bookworm, you possibly can see more if you look at the archives of the maintainer's mailing list or other public information of Debian.) Regards Bernhard -- https://intevation.de/~bernhard  

Re: Unable to make GPG4Win 4.x portable

> What am I making wrong? Possibly not having installed "everything" (see instructions at): https://www.gpg4win.org/download.html Regards Bernhard -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer

Mastodon account: hosting a server

t privacy. Regards Bernhard -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer Frank Koormann, Bernhard Reiter signature.asc Description: This is a digitally

Mastodon account: offer to operate it for the GnuPG Verein

am. I volunteer to operate the account on behalf of the GnuPG e.V. https://gnupg.org/verein/ (which is where I am currently the vice-chair) My suggestion to them is that the verein also volunteeringly pays for the account (that is a yearly donation of 50-100€ I in my view). Regards Bernhard --

Thunderbird is missing WKS (Re: Questions regarding WKD/WKS)

credentials and the TLS implementation of the email client, which you cannot get. And even accessing the TLS properties on windows makes this less portable. And I do not think GnuPG wants to grow a real smtp-client library. Regards, Bernhard -- https://intevation.de/~bernhard   +49 541 33 508 3-3 In

Mastodon account, good server?

, but is liberal in that commercial Free Software topics (and broad other topics) are allowed as well. * (optional) Free Software and privacy friendly organisation Any suggestions matching these? Best Regards Bernhard -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation

Re: GPA conversion to GTK3

d efforts. Best Regards, Bernhard -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer Frank Koormann, Bernhard Reiter signature.asc Description: This is a digitally signed message part. _

Re: Problems with Gnus (Emacs) + GnuPG for signing a mail with S/MIME

OpenPGP and S/MIME might reveal the difference. I darkly remember Gnus using GPGME, if this is the case, maybe a GPGME_DEBUG log can help you. Otherwise you need to look into how Emacs can produce more details about what it is going (I am not an Emacs user, so I cannot really help you there.)

Re: Difference between versions--Question

his is the first time I've built from source. It is cool that you have tried it! :) Bernhard -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer Frank Koormann, Bernhard Reiter signature.asc Description: This

Re: Problems with Gnus (Emacs) + GnuPG for signing a mail with S/MIME

lem somewhere. Bernhard -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer Frank Koormann, Bernhard Reiter signature.asc Description: This is a digitally signed message p

Re: Troubleshooting help

see more. Bernhard -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer Frank Koormann, Bernhard Reiter signature.asc Description: This is a digitally signed message p

Re: mutt locking

inentry is a configuration of gpg-agent. In theory you could start a new gpg-agent with a different configuration option, but pinentry-curses really so bad? :) Bernhard -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer Fr

Understanding KDF for symmetric encryption (was: Seeking Assurance on Security and Memory Leaks in SuSE GnuPG)

point where the value is used or or. It should be possible for a software-engineer without deep knowlede of C. Regards Bernhard -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer Frank Koormann, Bernhard Reiter

How to clarity a deep technical issue (Re: Seeking Assurance on Security and Memory Leaks in SuSE GnuPG)

that everyone can inspect it. So I do not mind questions, even if they point out to unlikely defects. Yes, maybe not Werner should answer them, but someone else can help to outline what the next steps are to understand what the software is doing for someone who really wants to know. Best Regards B

email culture (Re: WKD: conveying intent of encrypt-by-default?)

bit of setup once every few years). How could be get there for more people? Regards Bernhard -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer Frank Koormann, Bernhard Reiter signature.asc Description

Re: gpg-agent refuse to start

s refuses to start. have you had a look at the questions I've asked you in reponse to your question in https://wald.intevation.org/forum/forum.php?thread_id=2474&forum_id=21&group_id=11 ? (It is fine to have this discussion here on the mailinglist.) Regards Bernhard -- https://i

Re: Subkeys renewing/expiring strategy

just a factor of five to crack, but much more. The effort was doable, but then again, I'm a regular crypto user and can use the exercise. ;) Regards Bernhard -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführe

Debian Packages for [CVE-2022-3515] GnuPG / Libksba Security Advisory

tures. Thanks to the maintainers (Andres Metzler and Markus Koschany did the uploads). *wave* See https://security-tracker.debian.org/tracker/CVE-2022-3515 It seems Debian was quite fast to react. :) Regards, Bernhard -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnab

Re: GPG problem

t from “gpg –export-secret-key”. Probably the same problem. Regards, Bernhard -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer Frank Koormann, Bernhard Reiter signature.asc Description: This is a digitally

Re: Seeking Assurance on Security and Memory Leaks in SuSE GnuPG

virtual computing environment where the memory can be frozen into storage at any time. Same with safe deleting of files. Putting the effort into following general secure computing practive will help your GnuPG security more, usually. Regards, Bernhard -- https://intevation.de/~bernhard   +49 541 3

Redhat/Fedora still disabling brainpool curves (was: GnuPG 2.2.36 released

fter a quarter of a year is okay. (If you are a Fedora user and want brainpool algorithms included. ;) ) Regards Bernhard -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer Frank Koormann, Bernhard Reiter signa

Re: GnuPG 2.2.36 released

the project to me, thanks for maintaining the package! (And many thanks to Patrick for having done so before!) Best Regards, Bernhard -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer Frank Koormann,

Re: GnuPG 2.2.36 released

uilding gnupg from scratch (without verifying it first). Maybe it helps to report the problem of missing crypto algorithms to your GNU/Linux distribution. -- https://intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer Frank Koorma

Re: TB weirdness

at we should have more specific information because we can "warn" about the behaviour. Do you know which version was tested by chance? Best Regards, Bernhard -- www.intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Ge

Re: Who protects the private key (was: Changing the encryption algorithm used for PGP/GPG private key)

private OpenPGP keys is a rare process. Best Regards, Bernhard -- www.intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner signature.asc Description: This is a digitally

PGP is a proprietary Broadcom product (Was: Can't synchronize keys using Seahorse)

nce a few years https://techdocs.broadcom.com/us/en/symantec-security-software/information-security/pgp-solutions/1-0.html A reminder again to use "OpenPGP" when refering to the open crypto standard. Regards, Bernhard -- www.intevation.de/~bernhard   +49 541 33 508 3-3 Intevation

Re: TB weirdness

ere). Thanks for your warning, what about if we put it on our wiki page? Regards, Bernhard -- www.intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner signature.asc

Re: one ecc key-pair for both encryption and signature?

te key (thus being a side channel) c) or just the additional time needed for them ? (Andrew and Robert, thanks for your answers, you have already helped me to understand that detail better.) Regards, Bernhard -- www.intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE

Re: Gpg4win LetsEncrypt issue

d and restart dirmngr and do a request. (reload could be done by gpgconf --reload dirmngr ) Regards Bernhard -- www.intevation.de/~bernhard +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver

Re: one ecc key-pair for both encryption and signature?

Am Freitag 07 Januar 2022 15:21:45 schrieb Andrew Gallagher via Gnupg-users: > On 07/01/2022 14:06, Bernhard Reiter wrote: > > With 2.2.33 is is not possible to create a single ecc key-pair > > that can do "sign" and "encrypt". > > it is best practice to ke

one ecc key-pair for both encryption and signature?

ning in theory? Can someone point me to an explanation why it isn't done so here? Thanks Bernhard == Details GNUPGHOME=~/dot-gnupg-test3/ gpg --expert --full-generate-keygpg: WARNING: gpg (GnuPG) 2.2.33; Copyright (C) 2021 Free Software Foundation, Inc. This is free software: you are fr

Re: GnuPG / Mailvelope on Windows 11

nted in Javascript. There is the possibility to use GnuPG as backend to Mailvelope, but you need to activate it, see https://github.com/mailvelope/mailvelope/wiki/Mailvelope-GnuPG-integration (Both backend "OpenPGP.js" and "GnuPG" implement "OpenPGP". :) ) Best Regard

Re: Why are 64-bit libraries not included in GnuPG but Gpg4win?

nse in my opinion to directly > include the 64-bit variants of them in the basic GnuPG installation. Maybe. The current aim is to get Gpg4win 4 out of the door, so right now the question to change the roles of the small engine installer and the full installer for Windows (Gpg4win) is taking the ba

Re: Thunderbird's hints and history for OpenPGP/MIME (new wiki page)

Am Freitag 03 Dezember 2021 13:52:19 schrieb Rainer Fiebig via Gnupg-users: > Am 03.12.21 um 12:04 schrieb Bernhard Reiter: > > of incompatible header encryption: > > | Transport information in a decentral network - just like the writing on > > | the outside of a postal m

Re: Why are 64-bit libraries not included in GnuPG but Gpg4win?

Hi Sven, Am Donnerstag 02 Dezember 2021 10:06:11 schrieb Bernhard Reiter: > > It's not like they don't > > exist at all but they are part of Gpg4win only. was in contact with Werner (for other reasons) yesterday, he may still write something about this, but what I thi

Re: Thunderbird's hints and history for OpenPGP/MIME (new wiki page)

l potential unwanted observers. | (Your thinking is right: The more sensitive this is, the more you have | to build up a plausible context for your unavoidable traces first.) (Also I've just improved the phrasing and spelling.) Best Regards, Bernhard -- www.intevation.de/~bernhard   +49 541 33

Re: Why are 64-bit libraries not included in GnuPG but Gpg4win?

t; wanting it to work with 64-bit software. Most people use Gpg4win, only recently we had to recommed to install the crypto engine installers over it. So thanks for reporting the issue! Best Regards, Bernhard -- www.intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE;

Thunderbird's hints and history for OpenPGP/MIME (new wiki page)

w you like it. Regards, Bernhard -- www.intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner signature.asc Description: This is a digitally signed message

Translations Popups and Cookiekalypse

y to a technical session cookie only is not strictely speaking necessary, it is the web site provider that want you to agree to more, so they can use your personal data to sell your attention to advertisment services. Best, Bernhard -- www.intevation.de/~bernhard   +49 541 33 508 3-3 Intevation

Re: User id's without person's name, only email

ces to carry this information, do not fully trust them (just like you do not trust pubkeys by default) and be prepared to take responsibility for the contents you are transmitting. Best Regards, Bernhard -- www.intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE

Re: Key Management - BSI had send private key instead of public key

mail exchange. Overall a good case for using more WKD in the client and the server, where the pubkey would have been transfered automatically with some basic trust and no need for a manual email attachment. Best Regards, Bernhard -- www.intevation.de/~bernhard   +49 541 33 508 3-3 Intev

WKD, wildcard DNS resolution (Re: Error when trying to locate key via WKD)

Am Donnerstag 28 Oktober 2021 12:07:52 schrieb Andrew Gallagher via Gnupg-users: > On 28/10/2021 10:44, Bernhard Reiter wrote: > > can you provide me a pointer to the gnupg-devel thread? > > (Did a few minutes of searching, I probably missed something.) > > The megathread

Re: Error when trying to locate key via WKD

ildcard sub-domains and WKD has been discussed here or on > gnupg-devel recently. Ingo, can you provide me a pointer to the gnupg-devel thread? (Did a few minutes of searching, I probably missed something.) Best Regards, Bernhard -- www.intevation.de/~bernhard   +49 541 33 508 3-3 Intevation G

Re: GnuPG 2.2.32 with libgcrypt 1.8.8

use they have facilities to translate $PATH to $MANPATH # accordingly. #export MANPATH=$base/share/man:$MANPATH export PATH=$base/bin:$PATH export INFOPATH=$base/share/info:$INFOPATH :: . setgnupg gets me the new version as preferred binary. Bernhard -- www.intevation.de/~bernhard   +49

Re: Why does one machine allow me to use two yubikeys simultaneously connected, while another only allows one?

ith the --debug* options. HTH Regards Bernhard -- www.intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner signature.asc Description: This is a digitally signed message p

Re: trust-model and federated lookups

i.gnupg.org/AutomatedEncryption which is a vision how email clients can deal with pubkeys that they have different levels of confidence in. Best Regards, Bernhard -- www.intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführ

Re: WKD Research: Measuring use. An mailinglist maintainers that would help?

t's more valuable to have a look > at available software and their features: How many people use mail client > X, and does X have WKD enabled by default or can it use WKD at all / as a > fallback / ... This is a good suggestion, Christoph is already doing this since a while. Thanks for

WKD Research: Measuring use. An mailinglist maintainers that would help?

, Bernhard [1] https://wiki.gnupg.org/WKD/Misc -- www.intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner signature.asc Description: This is a digitally signed

Re: Importing a signed key

ry gpg --verbose --verify somekey.pub.key.gpg see if the result helps you. Usually it is considered safe to import public keys, because they are not automatically trusted by GnuPG. (Usually means, unless you or some GnuPG using application is makeing other assumptions.) Regards, Bernhard -- www.intevati

Re: GNU Privacy Assistant - false negatives on detached signature verification (GPA)

ner has some GKT3 patches but no time to get this is shape. And unless someone steps up to maintain the windows port, it will probably be dropped from Gpg4win for example. (See gpg4win-devel@ discussion). Best Regards, Bernhard -- www.intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, O

Re: WKD docs on the wiki, restructuring. Feedback on forUsers page

Am Mittwoch 29 September 2021 20:26:02 schrieb Alessandro Vesely via Gnupg-users: > On Tue 28/Sep/2021 17:39:29 +0200 Bernhard Reiter wrote: > > Feedback (and help) is always appreciated.:) > > I'm not sure if WKD/forHosts would be a better location than WKDHosting. Not s

WKD docs on the wiki, restructuring. Feedback on forUsers page

dress WKD from the users perspective. It has a principle list of what to look for with email clients and email providers now. It will later link an annotated list of clients and providers (once they get properly put in a good place). Feedback (and help) is always appreciated. :) Best Regards, Ber

Re: Error messages reconfiguring an OpenPGP smartcard

e what they actually do. (And be careful when posting those verbose information, it my contain sensible parts if higher debug levels are used.) Regards, Bernhard -- www.intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer F

Re: Unable to load dll

f the server response and the network. Both should be fast. GnuPG then may need to compute the trust relations and this can take a bit, if there are many. Before you can make this faster, I'd try to find out where the time is spend. Best Regards, Bernhard -- www.intevation.de/~bernhar

Re: --search-keys: "gpg: error searching keyserver: No inquire callback in IPC"

t more diagnostic output in its logfile. (See dirmngr's documentation.) Regards, Bernhard -- www.intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner signat

Re: contact list issues

oviders in a test.de survey and they are add-free and with a reasonable fee.) Note that both also offer WKD services. Regards, Bernhard -- www.intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer Frank Koormann, Bern

Re: Run Kleopatra on MS Windows 10

User) > > Are there other recommended solutions or workarounds for this type of > issue? Thanks! Best Regards, Bernhard ps.: Let us move this discussion to https://lists.wald.intevation.org/mailman/listinfo/gpg4win-users-en/ which is more focussed on Gpg4win topics. :) -- www.intevati

Re: GPG4Win 3.1.16: mkportable.exe missing?

pg4win-users...@wald.intevation.org is even more appropriate. If possible, followup there. (You need to subscribe to the list.) Best Regards, Bernhard -- www.intevation.de/~bernhard +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer Frank Koorma

Re: BSI - Why PQC for Thunderbird and not gpg4win in the first place?

administrations have legal rights and obligations, they need technical support and this is typical within the ministry of the interior. On the other hand the protecting part should be more independent maybe in the consumer and economy protection with the ministry of justice or the ministr

Debian using ed25519 APT repo meta data (Re: Ditching OpenPGP, a new approach to signing APT repositories)

others use it to push their agenda of antagonising OpenPGP and Debian without understanding the technical matter. So having giving more context and a better fitting headline would clarify this. Bernhard -- www.intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amts

Re: Ditching OpenPGP, a new approach to signing APT repositories

obably because of the draft or work in progress status, maybe someone with write access to the wiki could clarify the headline.) Thanks for the infos, Bernhard -- www.intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer

Re: Ditching OpenPGP, a new approach to signing APT repositories

e used and what part it will play in the security. Also there is no mention of how the trust relation of the public keys will be established. So not yet possible to evaluate the page, it looke like a 0.2 draft in a wiki and probably gets to the point of being an interesting proposal later. Be

Re: Translate Thai Language

eed a google account to allow access. Best, Bernhard -- www.intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner signature.asc Description: This is a digitally sig

Re: GPG NEVER asks for a passphrase

le gpg -vv --decrypt x.gpg Newer GnuPG version on windows would cache a passphrase for a while, I cannot say what GPG Shell does (as far as I remember it isn't Free Software). Best Regards, Bernhard -- www.intevation.de/~bernhard   +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgeri

  1   2   3   >