With the help of the gcrypt manual, I'm able to build programs that can
verify detached signatures. Specifically using the "gcry_pk_verify" API.
However, how to verify and extract the content from a compressed+wrapped
signature created by the gpg utility's "--sign"
* Sebastian Wiesinger [2019-11-05 17:49]:
> Hi,
>
> I'm using gpg-agent with the key stored on a Yubikey for ssh pubkey
> authentication. Since upgrading server systems to Debian 10 I get the
> following
> error when logging in:
>
> agent key RSA SHA256:[keyhash]
* GnuPG Users [2019-11-05 20:56]:
> On Tue, 5 Nov 2019 17:49, Sebastian Wiesinger said:
>
> > debug3: sign_and_send_pubkey: signing using rsa-sha2-512
>
> AFAICS that method is not supported. We support "ssh-rsa" and
> "ssh-rsa-cert-...@openssh.com"
gards
Sebastian
--
GPG Key: 0x58A2D94A93A0B9CE (F4F6 B1A3 866B 26E9 450A 9D82 58A2 D94A 93A0 B9CE)
'Are you Death?' ... IT'S THE SCYTHE, ISN'T IT? PEOPLE ALWAYS NOTICE THE SCYTHE.
-- Terry Pratchett, The Fifth Elephant
__
Am 12.08.19 um 17:47 schrieb Stefan Claas via Gnupg-users:
> Sebastian Schinzel wrote:
>
>> Dear all,
>>
>> Jens Müller just gave a talk at DEFCON about Covert Content Attacks
>> against S/MIME and OpenPGP encryption and digital signatures in the
>> email conte
/Covert-Content-Attacks
This is the paper describing the attacks from April 2019:
https://arxiv.org/abs/1904.07550
Best,
Sebastian
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users
* Sebastian Wiesinger [2018-07-31 18:24]:
> > There is no card reader available, when yubikey is not plugged in. I
> > use the smartcard with a external reader. I also do not see this dialof
> > when the Reader is not connected.
> >
> > I think, there is a depen
e, when yubikey is not plugged in. I
> use the smartcard with a external reader. I also do not see this dialof
> when the Reader is not connected.
>
> I think, there is a dependence to a connected reader to schow this
> dialog.
I don't think this is the reason because the same
nfo showed up in
the logs.
Version:
Xubuntu 17.10
ii pinentry-gtk2 1.0.0-2 amd64
$ gpg --version
gpg (GnuPG) 2.1.15
libgcrypt 1.7.8
Kind Regards
Sebastian
--
GPG Key: 0x93A0B9CE (F4F6 B1A3 866B 26E9 450A 9D82 58A2 D94A 93A0 B9CE)
'Are you Death?' ... IT'S THE
an or cannot be used for plaintext
exfiltration doesn't affect the overall security of S/MIME much. The
central flaw remains malleable encryption.
Best,
Sebastian
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users
amingencryption.html
The central flaws for CBC/CFB gadgets to work are (a) missing
authenticated encryption in S/MIME and (b) not properly enforced
integrity protection in OpenPGP. We won't fix malleable encryption by
tinkering with HTML, x509 and MIME parsers.
Best,
Sebastian
___
r...@sixdemonbag.org (Robert J. Hansen) writes:
>>> We hesitate to require the MDC also for old algorithms (3DES, CAST5>
>>> because a lot of data has been encrypted using them in the first
>>> years of OpenPGP.
>> So if someone sends me a 3DES-encrypted mail it won't check the MDC?
>> Doesn't gp
ure for
my @gnupg.net UID didn't arrive at all.
Regards
Sebastian
--
GPG Key: 0x93A0B9CE (F4F6 B1A3 866B 26E9 450A 9D82 58A2 D94A 93A0 B9CE)
'Are you Death?' ... IT'S THE SCYTHE, ISN'T IT? PEOPLE ALWAYS NOTICE THE SCYTHE.
em?
Hello,
my key is not bad, the signature by 0x5E5CCCB4A4BF43D7 is bad. The
question is why.
Regards
Sebastian
--
GPG Key: 0x93A0B9CE (F4F6 B1A3 866B 26E9 450A 9D82 58A2 D94A 93A0 B9CE)
'Are you Death?' ... IT'S THE SCYTHE, ISN'T IT? PEOPLE ALWAYS NOTICE THE SCYTHE.
ong.
My key is 0x58A2D94A93A0B9CE and their signature comes from
0x5E5CCCB4A4BF43D7:
pub 2048R/0x58A2D94A93A0B9CE 2009-08-11
uid [ultimate] Sebastian Wiesinger
sig!3 P0x58A2D94A93A0B9CE 2015-03-27 never Sebastian Wiesinger
sig-3 1 0x5E5CCCB4A4BF43D7 2015-11-14 never
Hello,
are there some commands for installing the
gnupg-w32-2.1.x_.exe (like -silent or -no_registry)?
Sebastian
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users
-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
Hello,
WinPT works also with GnuPG 1.4.18 very well. But occasionally WinPT reacts to
a faulty configuration of GnuPG with a cold, however.
Regards
Sebastian
> -Ursprüngliche Nachricht-
> Von: Gnupg-users [mailto:gnupg-user
hello,
i use Gpg4win with Thunderbird and Enigmail on a windows 7. In
Thunderbird if i want to decrypt a mail i put the pass-phrase in the
opening window and i can decrypt the mail. Than i have the option that
the program forget the pass-phrase. But it's says that this makes a
external gpg-agent.
* Sebastian Wiesinger [2009-09-10 18:01]:
> Hi,
>
> regarding this, the Simtec Entropy Key http://www.entropykey.co.uk/ is
> available for sale online since a few days ago. This is an USB
> hardware entropy generator. Perhaps this would be something to
> consider in your tests
generator. Perhaps this would be something to
consider in your tests regarding quality and speed of entropy
generation.
Kind Regards,
Sebastian
--
New GPG Key: 0x93A0B9CE (F4F6 B1A3 866B 26E9 450A 9D82 58A2 D94A 93A0 B9CE)
Old GPG Key-ID: 0x76B79F20 (0x1B6034F476B79F20)
'Are you Death?&
thing else? The Documentation Wiki for sks seems to be offline...
Any pointers in the right direction would be appreciated.
Kind Regards,
Sebastian
--
GPG Key-ID: 0x76B79F20 (0x1B6034F476B79F20)
'Are you Death?' ... IT'S THE SCYTHE, ISN'T IT? PEOPLE ALWAYS NOTICE THE SCYTHE.
Unfortunately it does not help (Thank you however Werner). I inserted
the option in "additional options for GnuPG in the Enigmail GUI. The
command line now reads:
gpg.exe --charset utf8 --allow-multiple-messages --batch --no-tty
--status-fd 2 --verify
Still there is the same message:
gpg: Signat
Hello,
unfortunately I have problems verifying some signed Mails using GPG for
Windows and Enigmail with Thunderbird. The problem only affects the
"Reverify Your Email Address"-mails from the PGP Global Directory. The
error message reads:
C:\\Programme\\GNU\\GnuPG\\gpg.exe --charset utf8 --status-
ther users) can do.
On the gpg-website I've searched for a paypal-donation button or
something else... Nothing.
I think, the gpg-team should install a possibility for this on the website.
Bye,
Sebastian
___
Gnupg-users mailing list
Gnupg-users
uld be published on any smartcard-howto.
Thanks from Germany
Bye,
Sebastian
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users
Hello,
I am using GnuPG with Apple Mail and the GPGMail plugin.
When I sign a message, the mail is sent with the attached file
pgp.sig. However, I would prefer to have the signature inside the
message and not in an attachment.
How would I do this?
Thanks
Sebastian
A, 3DES, CAST5, BLOWFISH, AES, AES192, AES256, TWOFISH
Hash: MD5, SHA1, RIPEMD160, SHA256, SHA384, SHA512
Compression: Uncompressed, ZIP, ZLIB, BZIP2
Regards,
Sebastian
--
GPG Key-ID: 0x76B79F20 (0x1B6034F476B79F20)
Wehret den Anfaengen: http://odem.org/informationsfreiheit/
'Are you Dea
t too slow? Any
ideas how to speed up the trustdb check would be appreciated.
Regards,
Sebastian
--
GPG Key-ID: 0x76B79F20 (0x1B6034F476B79F20)
Wehret den Anfaengen: http://odem.org/informationsfreiheit/
'Are you Death?' ... IT'S THE SCYTHE, ISN'T IT? PEOPLE ALWAYS NOTI
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users
anks and best regards,
Sebastian Murawski
-BEGIN PGP SIGNATURE-
Version: PGP SDK 3.5.2
Comment: ""
iQCVAwUBQ6Mgs/UyV2U0pGyNAQLFGQP/fhIj4H6ar6j0F43QbxxDTQq/TZ11j67r
7qtEHosa4q5ck4QeF11r2v5wy545573adRvnP86iWpowHE6GsdNcLjGmuMVAd3XX
B1net/kO92WpxglgEn4aLV6QnYwqeMGXTGtz6fMPY
troubles.
Cheers.
Seb
Am Samstag 03 Dezember 2005 18:56 schrieb Sebastian Hofer:
> Dear Listers,
>
> I am a plain user of gnupg and new to this list. SO I would like to greet
> you first.
>
> Now the problem: I found some discussions about the "invalid packet
> (ctb=2d)"
Dear Listers,
I am a plain user of gnupg and new to this list. SO I would like to greet you
first.
Now the problem: I found some discussions about the "invalid packet (ctb=2d)"
thing but none of it helped me.
I have been running gpg with the same keys since 2003. I started to use them
on SuS
32 matches
Mail list logo
