Some questions regarding generating RSA keys

But I got some questions regarding the implementation of my GnuPG test. An explanation of how my implementation will come after the questions. My questions are: * Does this settings do what I want to do? * Can I someway disable the automatic creation of revoke certificates? * Why does it take much

Re: Some questions about working with different versions of GnuPG and the fsfe's card on subkeys doc [UPDATED]]

UPDATE (see below) st...@mailbox.org: > > > st...@mailbox.org: >> >> >> st...@mailbox.org: > [...] >> > [...] >> >> I have problems getting GnuPG v.2.0.19 to work with the Nitrokey Pro USB >> Smart Card (reader is integrated into device). After importing the >> pubkey and connecting the Smart Ca

Re: Some questions about working with different versions of GnuPG and the fsfe's card on subkeys doc [UPDATED]]

st...@mailbox.org: > > > st...@mailbox.org: [...] > [...] > > I have problems getting GnuPG v.2.0.19 to work with the Nitrokey Pro USB > Smart Card (reader is integrated into device). After importing the > pubkey and connecting the Smart Card I performed these steps: > > #Gnome Keyring alrea

Re: Some questions about working with different versions of GnuPG and the fsfe's card on subkeys doc [UPDATED]]

st...@mailbox.org: Hi, I (re)post this message as the Nitrokey support website informs that users can ask on this list for getting support. If I am wrong and/or this is not the appropriate list, please let me know. Weitergeleitete Nachricht Betreff: Re: Some questions about

Re: Some questions about working with different versions of GnuPG and the fsfe's card on subkeys doc [UPDATED]]

(UPDATED] > st...@mailbox.org hat am 12. Februar 2016 um 11:43 geschrieben: > > > Hi, > > > just a few more questions on key generation and the fsfe doc (1) > > Following the indications in the referred document I have used a LIVE OS > for all the steps indicated in it (up to now), and GnuPG

Some questions about working with different versions of GnuPG and the fsfe's card on subkeys doc

Hi, just a few more questions on key generation and the fsfe doc (1) Following the indications in the referred document I have used a LIVE OS for all the steps indicated in it (up to now), and GnuPG version 2.1.9. I understand that the sections starting with "Removing the master key from the k

Some questions from a new opengpg card v. 2 user

Hi, I just bought a few OpenPGP cards V2.0 0005 xxx. I was hoping that I could use them within minutes. That is not the case. I'm running Windows 7 - 64Bit combined with Thunderbird/Enigmail (latest versions) combined with gpg4win 2.0.4. (GnuPG 2.0.14). Info about proper usage of card with

Re: Testing with card, some questions

On 16 Nov 2010 at 14:44, Werner Koch wrote: > On Tue, 16 Nov 2010 11:15, m...@klomp.eu said: > > > This seems to be a bug of scdaemon. Kill the daemon and gpg > > -card-status will > > Meanwhile the problem has been pointed out to me: We are using the > wrong constants for PC/SC: pcsclite (Un

Re: Testing with card, some questions

On Tue, 16 Nov 2010 11:15, m...@klomp.eu said: > This seems to be a bug of scdaemon. Kill the daemon and gpg > -card-status will Meanwhile the problem has been pointed out to me: We are using the wrong constants for PC/SC: pcsclite (Unix) and PC/SC (Windows) are not API compatible. We don't u

Re: Testing with card, some questions

Thanks for your answer. On 16 Nov 2010 at 11:42, Marco Steinacher wrote: > Hi J, > > Gnupg creates secret key stubs in your keyring. These are just meta > data, i.e. references to the keys on your card. They can be deleted and > are created automatically again if you do a 'gpg --card-status'. P

Re: Testing with card, some questions

Hi J, Gnupg creates secret key stubs in your keyring. These are just meta data, i.e. references to the keys on your card. They can be deleted and are created automatically again if you do a 'gpg --card-status'. Probably the backup you mentioned just contains these stubs. Check if in the 'gpg --li

Re: Testing with card, some questions

TIA, /J On 16 Nov 2010 at 12:29, Sven Klomp wrote: > I foward this message to the list. It seems that reply-to of the > mailing-list configuration is not correctly set... > > > -- Forwarded Message -- > > Subject: Re: Testing with card, some questions &

Re: Testing with card, some questions

On 16 Nov 2010 at 11:15, Sven Klomp wrote: > On Tuesday 16 November 2010 11:05:05 J. Ottosson wrote: > > Even more puzzling (which lead me to believe that the backup just > > mentioned above was not made from card?) is that after having removed > > the card I could still see the card details(!). >

Fwd: Re: Testing with card, some questions

I foward this message to the list. It seems that reply-to of the mailing-list configuration is not correctly set... -- Forwarded Message -- Subject: Re: Testing with card, some questions Date: Tuesday 16 November 2010, 11:40:49 From: "J. Ottosson" To: Sven Klomp

Re: Testing with card, some questions

On Tuesday 16 November 2010 11:05:05 J. Ottosson wrote: > Even more puzzling (which lead me to believe that the backup just mentioned > above was not made from card?) is that after having removed the card I could > still see the card details(!). This seems to be a bug of scdaemon. Kill the daemo

Testing with card, some questions

Hi, I have tested a little with the openpgp card v2 and have some thoughts. First, I'm quite impressed, lightning fast delivery of the stuff and the hw seem to work perfectly. It took like 10s to get the reader to work, no drivers installed on this 64 bit 2003 R2 server I was sitting on, impr

Re: Some questions regarding libgcrypt-config

On Nov 29, 2009, at 5:13 AM, Werner Dittmann wrote: All, to set-up configuration script I use the libgcrypt-config command to determine parameters about libgcrypt. During tests I get a confusing result :-) when checking available algorithms: To check the availabe algorithms I do: libgcrypt-co

Re: Some questions regarding libgcrypt-config

Hi! On Sun, 29 Nov 2009 11:13:01 +0100, Werner Dittmann wrote: > Message digest algorithms: crc md4 md5 rmd160 sha1 sha256 sha512 tiger > whirlpool The names are actually those of the source files. > Thus is it save to assume if SHA512 is avaliable then SHA384 is also > available? Right, SHA3

Some questions regarding libgcrypt-config

All, to set-up configuration script I use the libgcrypt-config command to determine parameters about libgcrypt. During tests I get a confusing result :-) when checking available algorithms: To check the availabe algorithms I do: libgcrypt-config --algorithms Symmetric cipher algorithms: arcfour

Re: Paperkey (some questions about its usage)

Hi! Am Sonntag, den 05.10.2008, 17:50 -0400 schrieb Faramir: > 2.- Well... I am really newbie with ubuntu (I am starting to think I am > a noob in ubuntu, since time is passing, and I am not improving at all), > so I have some doubts about how to install the tool in ubuntu... It's in the reposito

Re: Paperkey (some questions about its usage)

On Oct 5, 2008, at 9:04 PM, Faramir wrote: John Clizbe escribió: Grab the archive and extract it. Move to the top level directory and configure && make && make install. I just built it on Windows under MSYS with the MinGW compiler. Windows version? Maybe, if David Shaw is not opposed, yo

Re: Paperkey (some questions about its usage)

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 John Clizbe escribió: > Grab the archive and extract it. Move to the top level directory and > configure && make && make install. I just built it on Windows under MSYS with > the MinGW compiler. Windows version? Maybe, if David Shaw is not oppose

Re: Paperkey (some questions about its usage)

Faramir wrote: > 1.- If I use the tool in ubuntu, and then I open the output text file in > windows (to print it), will I have problems with charsets? Maybe the > solution would be to convert the txt to a pdf file, before moving it to > windows... Should only 7bit characters Charset shouldn't be a

Re: Paperkey (some questions about its usage)

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 David Shaw escribió: > On Oct 5, 2008, at 5:50 PM, Faramir wrote: >>> ... >> 1.- If I use the tool in ubuntu, and then I open the output text file in >> windows (to print it), will I have problems wit

Re: Paperkey (some questions about its usage)

opinion. But I have some questions: 1.- If I use the tool in ubuntu, and then I open the output text file in windows (to print it), will I have problems with charsets? Maybe the solution would be to convert the txt to a pdf file, before moving it to windows... No charset problems. Pa

Paperkey (some questions about its usage)

ave changed my opinion. But I have some questions: 1.- If I use the tool in ubuntu, and then I open the output text file in windows (to print it), will I have problems with charsets? Maybe the solution would be to convert the txt to a pdf file, before moving it to windows... 2.- Well... I am rea

Re: Some questions

On Monday 11 August 2008, reynt0 wrote: > On Sun, 10 Aug 2008, Andrew Berg wrote: > . . . > > > I've gotten into the habit of typing my passwords very quickly with > > very little finger movement in order to make it difficult for > > anyone looking over my shoulder to figure them out. > > Or anyo

Re: Some questions

On Sun, 10 Aug 2008, Andrew Berg wrote: . . . I've gotten into the habit of typing my passwords very quickly with very little finger movement in order to make it difficult for anyone looking over my shoulder to figure them out. Or anyone sitting to the side of you two seats away, who is doing

Re: Some questions

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 reynt0 escribió: >> Don't tell me there are actually real attacks by recording the sound of >> the keyboard...?! What does that mean, every key clicks differently? ... > So two-fingered simpleton typing, or carpal tunnel syndrome > typing, may be a

Re: Some questions

-BEGIN PGP SIGNED MESSAGE- Hash: RIPEMD160 reynt0 wrote: | So two-fingered simpleton typing, or carpal tunnel syndrome | typing, may be a protection :-) . And I guess, type at | least your passwords, etc, in a way strange for you and for | your keyboard. I've gotten into the habit of ty

Re: Some questions

On Fri, 8 Aug 2008, Alexander W. Janssen wrote: . . . Werner Koch wrote: Further, entering the passphrase is subject to side channel atatcks like should surfing or recording the sound of the keyboard. Don't tell me there are actually real attacks by recording the sound of the keyboard...?! Wh

Re: Some questions

David SMITH wrote: > On Fri, Aug 08, 2008 at 05:12:49PM +0200, Alexander W. Janssen wrote: >> Don't tell me there are actually real attacks by recording the sound of >> the keyboard...?! What does that mean, every key clicks differently? > > Sounds like an interesting student project... :-) That'

Re: Some questions

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Alexander W. Janssen escribió: > Werner Koch wrote: >> Further, >> entering the passphrase is subject to side channel atatcks like should >> surfing or recording the sound of the keyboard. > > Don't tell me there are actually real attacks by recordi

Re: Some questions

On Fri, Aug 08, 2008 at 05:12:49PM +0200, Alexander W. Janssen wrote: > Don't tell me there are actually real attacks by recording the sound of > the keyboard...?! What does that mean, every key clicks differently? Sounds like an interesting student project... :-) Some keys certainly sound differ

Re: Some questions

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Werner Koch wrote: > Further, > entering the passphrase is subject to side channel atatcks like should > surfing or recording the sound of the keyboard. Don't tell me there are actually real attacks by recording the sound of the keyboard...?! What doe

Re: Some questions

On Fri, Aug 08, 2008 at 03:55:13PM +0200, zulag wrote: > OK, but what exactly are the risks, what to expect to protect from ? > Is it because of the possible password "cracking" and the password > becoming unmodifiable (because people have a copy of the key encrypted > with the password "P" you had

Re: Some questions

On Fri, 8 Aug 2008 12:59, [EMAIL PROTECTED] said: > only by its owner? Or maybe it's just there to discourage people from > transporting secret keys around? Right. Moving the secret key in a public key system around is in general not required and somewhat contradicts the whole point of public

Re: Some questions

Hi, (first, excuse me for the message not appearing as a reply, I had not subscribed to the mailing-list when I sent the first message) > I ran the command, and got a huge ascii block... so I modified it to: > gpg --export-secret-key --armor > test.asc and got a enarmored block of > ascii charac

Re: Some questions

>> I assume that the warning is there, because an exported key is somewhat >> likely to end up in some public-readable place and this is generally a >> bad thing - even if it is protected by a passphrase. You should at least >> take the risk willingly. OK, but what exactly are the risks, what to ex

Re: Some questions

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Sven Radde escribió: > Hi! > > Faramir schrieb: >> I suppose it is clear text, > No, it is still encrypted with your passphrase. >> The idea about export a secret key is to import >> it in other place, so it must be cleartext... > Why? You can ea

Re: Some questions

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 David SMITH escribió: > Maybe it's considered a security risk because it doesn't necessarily > have the usual UNIX (or other OS) permissions set to make it accessible > only by its owner? Or maybe it's just there to discourage people from > transpo

Re: Some questions

On Fri, Aug 08, 2008 at 06:03:25AM -0400, Faramir wrote: > zulag escribió: > > 1. The GnuPG documentation states that "--export-secret-key" is "a > > security risk". Since no passphrase is asked, I imagine the exported > > key is not clear text. So why is it a security risk ? Because it would > > m

Re: Some questions

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 zulag escribió: > 1. The GnuPG documentation states that "--export-secret-key" is "a > security risk". Since no passphrase is asked, I imagine the exported > key is not clear text. So why is it a security risk ? Because it would > make it impossible

Some questions

Hi, I have some questions : 1. The GnuPG documentation states that "--export-secret-key" is "a security risk". Since no passphrase is asked, I imagine the exported key is not clear text. So why is it a security risk ? Because it would make it impossible (useless) to c

Re: some questions..

Am 27 May 2006 um 19:55 hat Jørgen Lysdal geschrieben: > I have a revoker on my key that i would like to remove, but i cant > find a way to do this. Can anyone help? If you sent your key to a keyserver, then you are out of luck. There is no way to take something back you sent to a keyserver. You

some questions..

Hello fellow gpg users.. I have a revoker on my key that i would like to remove, but i cant find a way to do this. Can anyone help? another question. When i sign a key, is there any way i can set an expiration time for the signature? When i use the --list-sig command, is there any way i can see