Re: Slightly OT - mobile OpenPGP usage

Hi Chris, On 25.08.19 21:22, Chris Narkiewicz via Gnupg-users wrote: > Shortly, I know only one combination that provides reasonable > use experience on mobile. > > Android + K-9 Mail + OpenKeychain + YubiKey with NFC. Do you know a good guide for setting this up? Best wishes Michael signatu

Re: I deleted 80 % of my keyring, but my keybox file isn't shrinking

Hi all, On 18.07.19 12:19, ilf wrote: > Same on a different box with a different keyring. I trimmed it down from > ~1250 keys to ~350 keys, but the size of pubring.kbx remains 19M. > > Does --delete really mean *delete* with keybox? > > ilf: >> This got my keyring down from 4.600 to 1.000 keys:

Re: wrong gpg-agent version running?

Hi Teemu, On 11.07.19 17:34, Teemu Likonen wrote: > Michael Kesper [2019-07-11T17:15:19+02] wrote: > >> I'd consider it a bug if updating a package does not trigger reloading >> all necessary services. > > We have not been discussing about Debian package upgrade. T

Re: wrong gpg-agent version running?

Hi Teemu, On 11.07.19 17:11, Teemu Likonen wrote: > Michael Kesper [2019-07-11T16:45:06+02] wrote: > >> Did anyone open a bug with Debian (best with proposing a fix)? > > What bug? We have not seen a bug in this message thread. I'd consider it a bug if updating a p

Re: wrong gpg-agent version running?

Hi all, On 11.07.19 15:41, Teemu Likonen via Gnupg-users wrote: > Matthias Herrmann [2019-07-11T01:33:43+02] wrote: > >> I've recently upgraded to Debian buster, and then upgraded gpg by >> downloading and installing the new version 2.2.17. >> Now, I get this warning: >> >>> gpg: WARNING: server

Re: New keyserver at keys.openpgp.org - what's your take?

Hi all, On 27.06.19 03:18, Vincent Breitmoser via Gnupg-users wrote: > The definition of personal data, Article 4: > >> (1) ‘personal data’ means any information relating to an identified or >> identifiable natural person (‘data subject’); an identifiable natural person >> is one who can be ident

Re: GnuPG and SSH_AUTH_SOCK value

Hi Daniel, On 28.06.19 10:23, Daniel Kahn Gillmor wrote: > On Fri 2019-06-28 10:04:44 +0200, Michael Kesper wrote: >> On 23.06.19 12:21, Matthias Apitz wrote: >>> I'm used to use 'startx' and ~/.xinitrc to bring up Xorg+KDE: >> >> This makes your set

Re: GnuPG and SSH_AUTH_SOCK value

Hi Matthias, On 23.06.19 12:21, Matthias Apitz wrote: > I'm used to use 'startx' and ~/.xinitrc to bring up Xorg+KDE: This makes your setup depend on a suid binary. There have been some security issues about that, so maybe it's wise to revise that decision? For example: https://www.exploit-db.co

Re: [OT] Where can I find some papers to read on mail (and envelope) security?

Hi Stefan, On 30.01.19 16:33, Stefan Claas wrote: > Interesting topic, which i am interested in as well. I started, as German > citizen, to use also epost Brief and De-Mail a while ago, when > communicating sometimes with friends, because i like those paid > services much more than the classical e

Re: Using gnupg to crypt credentials used by application to access a database server

Hi all, Am Montag, den 16.07.2018, 09:29 +0200 schrieb Matthias Apitz: > Michael, I do use pass too for all my firefox credentials for access > of > webpages and services, i.e. I know how this works. I use for this > GnuPG > together with an OpenPGP card and to unlock the password storage I > have

Re: Using gnupg to crypt credentials used by application to access a database server

Hi all, Am Samstag, den 14.07.2018, 15:15 +0200 schrieb Matthias Apitz: > We are looking for a way to change this situation and one of the > options > or ideas I have, is crypt the credentials with GnuPG in some file. I use pass [0] for this. It uses gnupg under the hood and also has ansible int

Re: Break backwards compatibility

Hi Mark, Am Dienstag, den 22.05.2018, 02:25 +0100 schrieb Mark Rousell: > On 21/05/2018 08:53, Michael Kesper wrote: > > I think it might be best to put that functionality into a separate > > GnuPG version called gpg-legacy. > > Make it clear in all man pages of this to

Re: Break backwards compatibility

aters became louder and louder, "Success" stories of leaving the Python eco system exploded. Would they have integrated a non-GIL switch into that breaking change, the work for normal Python projects would not have been greater but the reason to switch would have been. Just 2 cents of a lon

Re: Help with error please

Hello Jonathan, On 15.11.2017 19:26, Jonathan wrote: > Just installed GPA/Kleopatra.  Whenever I start up GPA I get 3 windows > pop-up: People can only help you if you provide all the necessary details. Most important: - Used Operating System (and version) - GPA/Kleopatra version (from where did

Re: Smart card

Hi all, Am 08.04.2017 um 10:16 schrieb Wouter Verhelst: > Smartcards are useful. They ensure that the private half of your key is > never on any hard disk or other general storage device, and therefore > that it cannot possibly be stolen (because there's only one possible > copy of it). The kerne

Re: Error on gpg encription using perl cgi

Hi, On Mon, Feb 23, 2009 at 11:33:02PM -0800, hxzeng wrote: > But when I deployed first.cgi in apache and run it using: > http://localhost/cgi-bin/test.cgi > The file cannot be successfully encrypted and also in error.log there has > such errors: > > [Tue Feb 24 15:01:40 2009] [error] [client 127

Re: Hibernation and secret keys

Hi, On Thu, Feb 12, 2009 at 06:40:22PM +0100, Christoph Anton Mitterer wrote: > On Thu, 2009-02-12 at 00:09 +0100, Ingo Klöcker wrote: > > USB stick and secure? :-) > > Of course. The idea is that you can encrypt everything but the kernel > +initrd, which is needed in order to decrypt the partit

Re: Fetch smartcard key from disk

Hi, * David Shaw <[EMAIL PROTECTED]> [2008-11-18 09:13:54 -0500]:   > The easiest way to tell if you have libcurl support is to try doing: > > gpg --fetch-keys file://C:\smartkey.asc What about simply using gpg --import ? Best wishes Michael -- Free Software Foundation Europe (FSFE) []

Re: Key ID format: short or long?

Hi, * Jens Peter Secher <[EMAIL PROTECTED]> [2008-10-26 15:05:51 +0100]:   > 2008/10/22 Michael Kesper <[EMAIL PROTECTED]>: > > what: There were collisions with other existing keys if you only would have > > looked at the last 8 chars of the fingerprint. > > >

Re: Key ID format: short or long?

Hi, * Faramir <[EMAIL PROTECTED]> [2008-10-21 22:58:47 -0300]:   >I had thought the long key ID, plus my email address, should be > enough, since 8 characters hexadecimal numbers are unlikely to produce a > collision, and even in case of a malicious attempt to replace my key, if > 2 keys are f

Re: Problems decrypting with multifile

Hi, * Ray Simard <[EMAIL PROTECTED]> [2008-09-16 20:23:06 -0700]:   > I haven't been able to find anything about this in the FAQs or a web search. > > The goal is to decrypt a large number of files using > --multifile --decrypt (or --decrypt-files). When doing so, the first > file in the list is

Re: removing -----BEGIN PGP SIGNED MESSAGE----

Hi, * Kunal Shah <[EMAIL PROTECTED]> [2008-07-25 13:08:52 -0400]:   > On Fri, Jul 25, 2008 at 10:33 AM, Kara <[EMAIL PROTECTED]> wrote: > > Kunal Shah wrote: > >>> > >>> Is there any way to avoid that? > >>> > > > > Robert J. Hansen wrote: > >> > >> Sort of. PGP/MIME. [...] > In that case, I will

Re: Need Help

Hi, On Tue, Apr 15, 2008 at 12:06:44PM +0100, Debabrata Das wrote: > Hi All, > > Currently we are using GnuPG 1.4.7 which is under GPL V2 on HP-UX > ,but we came to know that there is a security vulnerability on GnuPG > 1.4.8 & earlier version.Since Gnupg 1.4.9 is under GPL V3 & we don't > want t

Re: How trust works in gpg...

Hi, On Tue, Apr 15, 2008 at 12:42:43AM +0200, Herbert Furting wrote: > On Mon, 2008-04-14 at 23:20 +0100, Peter Lewis wrote: > > Ah yes, thanks. So I have now set the owner-trust for his key to "full", > > but > > still it says "unknown" for the other UIDs. So, I should manually set the > > tru

Re: Decyrption via scheduled task fails

Hi, On Wed, Mar 19, 2008 at 08:25:54AM -0700, bdorroh wrote: > > I'm using v1.4.8 for Windows. I've have a batch file setup to decrypt a file > and then to move the decrypted file to another location for further > processing. I can successfully decrypt the file by double-clicking my batch > file.

Re: OpenPGP card stopped working

Hi, * Sven Radde <[EMAIL PROTECTED]> [2008-03-09 19:40:32 +0100]: > Same thing here, only that I have an SCM Microsystems SCR335 reader. > Actually, I was somewhat surprised that I had to install PC/SC at all, since > says that

Re: ISO-8859-1 mails getting marked as UTF-8

* Martin Toft <[EMAIL PROTECTED]> [2008-02-27 20:06:57 +0100]: > I use GnuPG together with mutt on Debian Etch. I prefer to use > ISO-8859-1 Short question: Why? ISO-8859-1 is a hack and even so common alphabets like cyrillic break it. So, if you want to stay sane, switch to UTF-8. My 0,02 EUR

Re: Problem with keys imported via DNS CERT

Hi, On Fri, Jan 25, 2008 at 07:02:39AM -0500, Alex wrote: > On Fri, 25 Jan 2008 07:32:44 +0100 > David Picón Álvarez <[EMAIL PROTECTED]> wrote: > > > > No, I am starting out with a clean ~/.gnupg folder. > > > > That's it then, if your key is not marked as trusted, or the keys > > which sign it,

Re: how to use gpg with a smartcard, when there is no smartcard

Hi, On Fri, Nov 09, 2007 at 10:28:19AM +0100, Stephan Hermann wrote: > Hi, > > I have a little problem with gnupg and smartcards. > I added to my key a signing subkey for my smartcard. This works great > when the smartcard reader is attached to my computer, which is my home > workstation. > >

Re: gpg2 for windows?

Hi, Jørgen Christiansen Lysdal schrieb: > What i am trying to say, is that, there are some of the software in the > gpg4win package, that i dont like (Actually all the addons, that i > think is too incomplete) Well, you're not forced to install them. Best wishes Michael -- Nobody can save your

Re: Broken pipe?

Hi, Werner Koch schrieb: > On Fri, 29 Jun 2007 12:07, [EMAIL PROTECTED] said: > >> I apologize for the weight of this message. > > As I alrady said: You have no permission to write to the USB device. This seems to be the result of several half-correct howtos for installing the cardreader. Recent