Re: Key Discovery Made Simple

On Wednesday 07 September 2016 22:20:42 Christopher Beck wrote: > Hi, > > just a (maybe) stupid question: the matching key to my recipient can be > fetched by keyservers and i determine the korrect key of all of the > (sometimes "wrong" keys") by vaidating the signatures according to the WoT. > So

Re: Key Discovery Made Simple

Hi Christopher, Christopher Beck: > Hi, > > just a (maybe) stupid question: the matching key to my recipient can be > fetched by keyservers and i determine the korrect key of all of the > (sometimes > "wrong" keys") by vaidating the signatures according to the WoT. So, what's > the benefit of th

Re: Key Discovery Made Simple

e.html > > A plain text copy is below. If you have comments, please send them as > reply. > > > Salam-Shalom, > >Werner > > ======== > Table of Contents > _ > > 1 Key Discovery Made Simple >

Re: keybase.io (was: Key Discovery Made Simple)

Werner, On Wed, Aug 31, 2016 at 5:45 PM, Werner Koch wrote: > I am not sure, but I heard that keybase.io is moving towards a > centralized system for encrypted message exchange. keybase.io ulterior motive is for the end user to use their PGP/GPG Javascript implementation but it is not mandatory

Re: Key Discovery Made Simple

Peter Lebbing wrote: > On 31/08/16 01:47, gn...@raf.org wrote: > > In the cronjob, "*/4" is invalid on > > systemd systems (or at least Debian8) > > In Debian 8, the default cron daemon seems to come from the package 'cron'. I > don't think you get the 'systemd-cron' package by default: you need

RE: Key Discovery Made Simple

> In Germany they are proud of their Email Made in Germany label which is > merely the use of TLS between MTAs. So things are moving a bit... I hope they accelerate their movement. :) I've never learned how to politely say, "all right, then I think this wraps up the conversation" without soundi

Re: Key Discovery Made Simple

On Wed, 31 Aug 2016 15:32, r...@sixdemonbag.org said: > I'm having a hard time imagining why a mail provider would adopt WKD when > probably less than 1% of their userbase uses OpenPGP in the first place. In Germany they are proud of their Email Made in Germany label which is merely the use of TL

RE: Key Discovery Made Simple

> "Most of our users" are not the target audience for the description on how > to setup the Web Key Service. Obviously this is for sysadmins and geeks > running their own mail servers. I want to be careful about my criticism here, because it's really easy to sound like I'm telling someone else wh

Re: Key Discovery Made Simple

On Wed, 31 Aug 2016 12:58, pe...@digitalbrains.com said: > Specifically, the -f argument to make. It's clear you need to invoke this > command and others in the home directory of the user (and not a Oh yeah I copied it from my command line history ;-) Will fix it. Shalom-Salam, Werner --

Re: Key Discovery Made Simple

On Wed, 31 Aug 2016 10:31, tehpeh-gn...@tty1.net said: > The option --with-wkd-hash is not implemented in gnupg 2.1.11 (on > Debian testing). Maybe change this to "Install GnuPG 2.1.15 or later". Yeah, that was a typo. Gniibe already remarked that on Jabber and it has been fixed now. Thanks for

Re: Key Discovery Made Simple

On 31/08/16 01:47, gn...@raf.org wrote: > In the cronjob, "*/4" is invalid on > systemd systems (or at least Debian8) In Debian 8, the default cron daemon seems to come from the package 'cron'. I don't think you get the 'systemd-cron' package by default: you need to explicitly install it, and unin

Re: Key Discovery Made Simple

Well, as long as we are submitting minor corrections to the blog post, I wondered about the directory name in this command: > $ make -f ~/b-w32/speedo/gnupg-2.1.15/build-aux/speedo.mk\ > > INSTALL_PREFIX=. speedo_pkg_gnupg_configure='--enable-gpg2-is-gpg \ > > --disable-g13 --ena

Re: Key Discovery Made Simple

On Tue, 30 Aug 2016 21:02, kloec...@kde.org said: > The web key discovery _is_ aimed at regular users. Werner's message suggest > that KMail's development version does already support this new key discovery Actually this has been introduced with GnuPG 2.1.13 and you can make use of it by adding

Re: Key Discovery Made Simple

On Tue, 30 Aug 2016 18:10, melvincarva...@gmail.com said: > Just regarding the web server part, and not the email part. > > Could the semantic web be leveraged to store your key on an HTTPS page? No. The whole point is that there is an authoritativea mapping from mail address to key. You can't

Re: Key Discovery Made Simple

On 2016-08-30 15:39, Werner Koch wrote: .. 1.1 Install GnuPG 2.1 The option --with-wkd-hash is not implemented in gnupg 2.1.11 (on Debian testing). Maybe change this to "Install GnuPG 2.1.15 or later". , | $ tar xjf gnupg-2.1.5.tar.bz2 ` change to "tar xjf gnupg-2.1.15.tar.b

Re: Key Discovery Made Simple

On Tue, 30 Aug 2016 20:12, r...@sixdemonbag.org said: > Most of our users don't run their own domains, don't have full > authority over the mail server, and don't have webservers that can "Most of our users" are not the target audience for the description on how to setup the Web Key Service. Obv

keybase.io (was: Key Discovery Made Simple)

On Wed, 31 Aug 2016 04:27, miri...@riseup.net said: > What are the defects in ? They not even try to minimize the use of meta data but use privacy invading services (Facebook, Twitter, etc) to connect the key into a way larger network than what we have with the Web of Trust.

Re: Key Discovery Made Simple

On Tue, 30 Aug 2016 18:04, 3pfwunb...@snkmail.com said: > Maybe add some _brief_ words about trust. We understand how Well, I should have explained what I mean by Key Discovery: We do key discovery to get a key for a given mail address the first time we want to write to that address. At that p

Re: Key Discovery Made Simple

On Wed, 31 Aug 2016 01:47, gn...@raf.org said: > In the cronjob, "*/4" is invalid on > systemd systems (or at least Debian8) > and will cause the entire crontab to > be ignored. Use "0-56/4" instead. man 5 crontab says: Steps are also permitted after an asterisk, so if you want to say ``ever

Re: Key Discovery Made Simple

Werner Koch wrote: > Hi, > > I just published a writeup on how to setup the Web Key Service at > https://gnupg.org/blog/20160830-web-key-service.html > > A plain text copy is below. If you have comments, please send them as > reply. > > > Salam-Shalom, > >Werner > > [snip] "most only

Re: Key Discovery Made Simple

On 08/30/2016 10:04 AM, John Hein wrote: > Werner Koch wrote at 16:39 +0200 on Aug 30, 2016: > > Hi, > > > > I just published a writeup on how to setup the Web Key Service at > > https://gnupg.org/blog/20160830-web-key-service.html > > > > A plain text copy is below. If you have comments,

Re: Key Discovery Made Simple

alam-Shalom, > >Werner > > ======== > Table of Contents > _ > > 1 Key Discovery Made Simple > .. 1.1 Install GnuPG 2.1 > .. 1.2 Prepare the mail and web servers > .. 1.3 Create submission key > .. 1.4 Install the WKS server tool &

Re: Key Discovery Made Simple

On Tuesday 30 August 2016 14:12:15 Robert J. Hansen wrote: > > A plain text copy is below. If you have comments, please send them as > > reply. > I hate to be the one to rain on this parade, but this seems like a mistake. > > > GnuPG 2.1 provides an simple but efficient solution to store a key

RE: Key Discovery Made Simple

> A plain text copy is below. If you have comments, please send them as reply. I hate to be the one to rain on this parade, but this seems like a mistake. > GnuPG 2.1 provides an simple but efficient solution to store a key > under a well known URL and lookup it up via https. Most of our us

Re: Key Discovery Made Simple

Werner Koch wrote at 16:39 +0200 on Aug 30, 2016: > Hi, > > I just published a writeup on how to setup the Web Key Service at > https://gnupg.org/blog/20160830-web-key-service.html > > A plain text copy is below. If you have comments, please send them as > reply. Nice writeup. Maybe ad

Key Discovery Made Simple

_ 1 Key Discovery Made Simple .. 1.1 Install GnuPG 2.1 .. 1.2 Prepare the mail and web servers .. 1.3 Create submission key .. 1.4 Install the WKS server tool .. 1.5 Test your installation .. 1.6 Future work 1 Key Discovery Made Simple === A major hassle