Re: making a Debian Live CD for managing GnuPG master key and smartcards

On 26/04/16 09:53, Daniel Pocock wrote: > > There has been some discussion on debian-devel[1] about making a > bootable Debian Live CD specifically for GnuPG > This can now be used, command line only for the moment, as described in my blog[1] about it If anybody wants to help take this furth

Re: making a Debian Live CD for managing GnuPG master key and smartcards

On 04/26/2016 06:37 AM, Robert J. Hansen wrote: I've looked over your egpg code. My bloodless technical evaluation is simple: "it is nowhere near ready for production environments." And I think if you read over the other technical criticisms you've received, you'll see this is pretty much a con

Re: Evangelzation discussion :Was [Re: making a Debian Live CD for managing GnuPG master key and smartcards]

On 04/26/2016 02:40 PM, Bob (Robert) Cavanaugh wrote: New thread for this topic... For what it's worth, you didn't actually do that. What you did was to change the subject line of your reply. For those of us who use mail readers that actually thread, your message still appears under the orig

Re: making a Debian Live CD for managing GnuPG master key and smartcards

On Fri, Apr 29, 2016 at 7:38 AM, Paul R. Ramer wrote: > On 04/26/2016 05:24 AM, Dashamir Hoxha wrote: > > It doesn't seem reasonable to me. > > Honestly, what is with this, "It doesn't seem reasonable to me," line? > This is the second post in the thread where you have said this. If you > want p

Re: making a Debian Live CD for managing GnuPG master key and smartcards

On 01/05/16 10:55, Peter Lebbing wrote: > The correspondents of the key owner will need to refresh their copy of > the key as often as it expires. I expect some people would be worried about the amount of metadata this leaks with short expiry times. If you are in the position to sample refreshes,

Re: making a Debian Live CD for managing GnuPG master key and smartcards

On 27/04/16 22:22, Daniel Pocock wrote: > Can anybody point me to an example of using pinentry with either of > those? Or will it just work on the basic black and white console? There are textmode pinentries that "grab" a console and use that to query the user. The default GUI pinentries have a

Re: making a Debian Live CD for managing GnuPG master key and smartcards

On 04/26/2016 05:24 AM, Dashamir Hoxha wrote: > On Tue, Apr 26, 2016 at 2:20 PM, Daniel Pocock wrote: >> You can use the wiki to link to the Github tasks that are relevant to >> using epgp in the Live CD, you don't have to copy the details of each >> task, just link to them >> > > It doesn't seem

Re: making a Debian Live CD for managing GnuPG master key and smartcards

On 27/04/16 15:39, Peter Lebbing wrote: > On 26/04/16 09:53, Daniel Pocock wrote: >> There has been some discussion on debian-devel[1] about making a >> bootable Debian Live CD specifically for GnuPG > > I think this is interesting, and I would probably use it. But I'm just > doing it out of int

Re: making a Debian Live CD for managing GnuPG master key and smartcards

On 27/04/16 15:39, Peter Lebbing wrote: > could well be too new for a Debian Live CD. You mgi Ouch. After I had accidentally deleted my footnotes along with unused quote, I did a whole bunch of "Undo", then copy the footnotes, then "Redo" again. However, it is clear I didn't "Redo" enough. I sure

Re: making a Debian Live CD for managing GnuPG master key and smartcards

On 26/04/16 09:53, Daniel Pocock wrote: > There has been some discussion on debian-devel[1] about making a > bootable Debian Live CD specifically for GnuPG I think this is interesting, and I would probably use it. But I'm just doing it out of interest, not because I have particular security needs

Re: making a Debian Live CD for managing GnuPG master key and smartcards

On 27/04/16 11:53, Werner Koch wrote: > On Tue, 26 Apr 2016 22:51, r...@sixdemonbag.org said: > >> Well, there's a little bit of a chicken-and-the-egg problem here. If >> new projects are told "don't evangelize here", how will they let users >> who might be interested in their project know it e

Re: making a Debian Live CD for managing GnuPG master key and smartcards

MFPA: > [0] is a How-To for creating an OpenPGP keypair for use with GnuPG on > an airgapped system (using Tails) and exporting the subkeys for > day-to-day use. There is a link [1] to a second guide to export the > subkeys to an OpenPGP smartcard. I was also about suggesting Tails, so thanks for

Re: making a Debian Live CD for managing GnuPG master key and smartcards

Since the thread is already quite lost I chip in with a question. What is the matter with top posting? Is my client that is weird showing the text from the beginnig, where what I want to read is? Top posting sounds even more ad-hoc that bottom posting where you have to scroll down to find what you

Re: making a Debian Live CD for managing GnuPG master key and smartcards

On Tue, 26 Apr 2016 22:51, r...@sixdemonbag.org said: > Well, there's a little bit of a chicken-and-the-egg problem here. If > new projects are told "don't evangelize here", how will they let users > who might be interested in their project know it exists? Evangelization For me it is okay to do

Evangelzation discussion :Was [Re: making a Debian Live CD for managing GnuPG master key and smartcards]

New thread for this topic... Robert, All good points, no argument. I particularly agree regarding the frequency. By all means promote your own product if you believe in it. However, I stand by my opinion that there should be a clear demarcation between GnuPG and its official distribution opposed t

OT: Peer review (was: making a Debian Live CD for managing GnuPG master key and smartcards)

> Well, there's a little bit of a chicken-and-the-egg problem here. If > new projects are told "don't evangelize here", how will they let users > who might be interested in their project know it exists? Evangelization > is important. I don't think we want to adopt a no-evangelization rule, > but

Re: making a Debian Live CD for managing GnuPG master key and smartcards

> My reading of the group > consensus is that this set of scripts is tolerated not endorsed or > recommended. Well, yeah, but let's keep in mind the GnuPG community endorses/recommends very little. Not even something like Enigmail gets an endorsement or recommendation from GnuPG. By and large, G

Re: making a Debian Live CD for managing GnuPG master key and smartcards

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Peter and All, I completely agree. I think that this "project" is now outside the scope of this group and should either split off into its own group or the author should stop self-promoting. My reading of the group consensus is that this set of scrip

Re: making a Debian Live CD for managing GnuPG master key and smartcards

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On Tuesday 26 April 2016 at 8:53:06 AM, in , Daniel Pocock wrote: > There has been some discussion on debian-devel[1] > about making a > bootable Debian Live CD specifically for GnuPG > The benefit is that everything on the CD is > self-contain

Re: making a Debian Live CD for managing GnuPG master key and smartcards

On Tue, Apr 26, 2016 at 5:31 PM, Daniel Pocock wrote: > > > I don't want to do that. It doesn't seem reasonable to me. > > Can you please tell me what you mean when you say "It doesn't seem > reasonable to me"? > > Alternatively, what would be reasonable? > Somebody else reviews it and finds it

Re: making a Debian Live CD for managing GnuPG master key and smartcards

I am kinda lost, what is the topic again? On Tue, Apr 26, 2016 at 5:31 PM, Daniel Pocock wrote: > > > On 26/04/16 17:29, Dashamir Hoxha wrote: >> On Tue, Apr 26, 2016 at 4:57 PM, Daniel Pocock > > wrote: >> >> >> >> On 26/04/16 15:40, Dashamir Hoxha wrote: >> > O

Re: making a Debian Live CD for managing GnuPG master key and smartcards

On 26/04/16 17:29, Dashamir Hoxha wrote: > On Tue, Apr 26, 2016 at 4:57 PM, Daniel Pocock > wrote: > > > > On 26/04/16 15:40, Dashamir Hoxha wrote: > > On Tue, Apr 26, 2016 at 3:11 PM, Robert J. Hansen > >

Re: making a Debian Live CD for managing GnuPG master key and smartcards

On Tue, Apr 26, 2016 at 4:57 PM, Daniel Pocock wrote: > > > On 26/04/16 15:40, Dashamir Hoxha wrote: > > On Tue, Apr 26, 2016 at 3:11 PM, Robert J. Hansen > > wrote: > > > > When asking other people to do things for you, it pays to keep in > mind > > how valu

Re: making a Debian Live CD for managing GnuPG master key and smartcards

On 26/04/16 15:40, Dashamir Hoxha wrote: > On Tue, Apr 26, 2016 at 3:11 PM, Robert J. Hansen > wrote: > > When asking other people to do things for you, it pays to keep in mind > how valuable the community has deemed your contributions. If you > haven't

Re: making a Debian Live CD for managing GnuPG master key and smartcards

On 26/04/16 15:05, Dashamir Hoxha wrote: > Please keep the discussion technical. If you don't agree with me > this is fine. But when you express your opinion about my lack of > modesty, this is getting personal. This is not true: you are taking the word modesty out of the context I used it in. >

Re: making a Debian Live CD for managing GnuPG master key and smartcards

On Tue, Apr 26, 2016 at 3:11 PM, Robert J. Hansen wrote: > > When asking other people to do things for you, it pays to keep in mind > how valuable the community has deemed your contributions. If you > haven't earned much reputation, you might want to do that before you go > about asking people to

Re: making a Debian Live CD for managing GnuPG master key and smartcards

> Please keep the discussion technical. If you don't agree with me > this is fine. But when you express your opinion about my lack of > modesty, this is getting personal. He can't do that, shouldn't do that, shouldn't even want to do that. You're a human being, not a machine. You deserve to be tr

Re: making a Debian Live CD for managing GnuPG master key and smartcards

> Wait, wait, wait... I sincerely hope you're not suggesting that the > first thing Daniel Pocock and others need to do is build a .deb package > for your project, that instead you meant this to read as "the first > thing /I/ should do is build a .deb package for egpg", so that they can > play with

Re: making a Debian Live CD for managing GnuPG master key and smartcards

On Tue, Apr 26, 2016 at 2:52 PM, Peter Lebbing wrote: > > And I do it without bashing your messages, even though you > seem to take it personal. > Please keep the discussion technical. If you don't agree with me this is fine. But when you express your opinion about my lack of modesty, this is get

Re: making a Debian Live CD for managing GnuPG master key and smartcards

On Tue, Apr 26, 2016 at 1:16 PM, Daniel Pocock wrote: > > Could you add a section to the wiki about this, with an itemized list of > the tasks that need to be done, e.g. > > * packaging egpg and uploading to Debian > * anybody can upload it to https://mentors.debian.net for a DD to > sponsor >

Re: making a Debian Live CD for managing GnuPG master key and smartcards

On 26/04/16 14:23, Dashamir Hoxha wrote: > Peter, I already know your opinion on my project and my modesty, > you don't have to bash every message that I write. Quote or it didn't happen. I think I've treated you respectfully, though I already noted my first reply to your first message here could

Re: making a Debian Live CD for managing GnuPG master key and smartcards

On Tue, Apr 26, 2016 at 2:20 PM, Daniel Pocock wrote: > > > I manage the tasks of the project on GitHub: > > https://github.com/dashohoxha/egpg/issues > > > > You can use the wiki to link to the Github tasks that are relevant to > using epgp in the Live CD, you don't have to copy the details of ea

Re: making a Debian Live CD for managing GnuPG master key and smartcards

On Tue, Apr 26, 2016 at 1:32 PM, Peter Lebbing wrote: > > I think you are taking the "plugging my project" approach too far. While > generating exposure is definitely a good component of making your > project succesful, I think a bit more modesty is in order. If I had a > Peter, I already know y

Re: making a Debian Live CD for managing GnuPG master key and smartcards

On 26/04/16 14:16, Dashamir Hoxha wrote: > On Tue, Apr 26, 2016 at 1:16 PM, Daniel Pocock > wrote: > > Could you add a section to the wiki about this, with an itemized list of > the tasks that need to be done, e.g. > > * packaging egpg and uploading to De

Re: making a Debian Live CD for managing GnuPG master key and smartcards

On 26/04/16 12:52, Dashamir Hoxha wrote: > A project similar in goals (simplifying GnuPG by automating tasks and > emphasising best practices) is this one: https://github.com/dashohoxha/egpg > You can find the answer to some of the questions above by looking at its > code. I think you are taking t

Re: making a Debian Live CD for managing GnuPG master key and smartcards

On 26/04/16 12:52, Dashamir Hoxha wrote: > On Tue, Apr 26, 2016 at 9:53 AM, Daniel Pocock > wrote: > > > There has been some discussion on debian-devel[1] about making a > bootable Debian Live CD specifically for GnuPG > > The benefit is that everything o

Re: making a Debian Live CD for managing GnuPG master key and smartcards

On Tue, Apr 26, 2016 at 9:53 AM, Daniel Pocock wrote: > > There has been some discussion on debian-devel[1] about making a > bootable Debian Live CD specifically for GnuPG > > The benefit is that everything on the CD is self-contained, it can't be > tampered with, it can run without network suppo

Re: making a Debian Live CD for managing GnuPG master key and smartcards

>> - would anybody else like to suggest improvements to the workflow? One thing that I forgot to mention is that it would be good to have some way to copy master keys to new media or to rewrite them to existing ones. This could be prompted if some but not all disks have master keys for example.

Re: making a Debian Live CD for managing GnuPG master key and smartcards

> There has been some discussion on debian-devel[1] about making a > bootable Debian Live CD specifically for GnuPG I have thought for a while that something like this would be a good idea, it's been sitting on the list of things to have a go at for a while, so I'm glad to see that someone is actu

making a Debian Live CD for managing GnuPG master key and smartcards

There has been some discussion on debian-devel[1] about making a bootable Debian Live CD specifically for GnuPG The benefit is that everything on the CD is self-contained, it can't be tampered with, it can run without network support in the kernel and the workflow would be controlled by a script.