On 05/12/16 00:09, Andrew Gallagher wrote:
> Mathematically, authentication is just a special case of
> signing, so having both S and A on a subkey does not introduce extra
> vulnerabilities (that we know of).
Mathematically, I think you're wrong, it's very vulnerable :-).
Authentication is signin
On Thursday, 01. Dec 2016, 19:59:15 -0800, Schlacta, Christ wrote:
> On Dec 1, 2016 7:43 PM, "Bertram Scharpf" wrote:
> >
> > we all know that kidnappers do publish a picture of their
> > hostage holding up a todays newpaper. The purpose of this is
> > to proof that the victim was alive _after_ a
On 05/12/16 11:18, Peter Lebbing wrote:
> On 05/12/16 00:09, Andrew Gallagher wrote:
>> Mathematically, authentication is just a special case of
>> signing, so having both S and A on a subkey does not introduce extra
>> vulnerabilities (that we know of).
>
> Mathematically, I think you're wrong, i
On 04/12/16 21:59, Carola Grunwald wrote:
> Three months ago I thought it was time to adapt it to GnuPG 2.1, and
> the problems began.
I would seriously consider the option of just sticking to 1.4. It's not
deprecated for server use. It should still have a lot of life left in it.
> Just at the mo
Hi Peter,
Well, that got me thinking, and, I generated some dummy keys with gpg
from gnupg-1.4.21-1.fc24.x86_64, gpg2 from gnupg2-2.1.13-2.fc24.x86_64,
and neither gpg or gpg2 enabled the authentication capability on the
signing key. However, when generating dummy a key with enigmail from
thunderb
On 04/12/16 20:59, Carola Grunwald wrote:
> It's a small
> tool running as a background task residing in the system tray.
Hold on a sec.
Are you running a pseudonymity service on your personal desktop?
Andrew.
signature.asc
Description: OpenPGP digital signature
On Sun, 4 Dec 2016 22:29, r...@ragged-software.com said:
> a separate authentication subkey for use with an OpenPGP smartcard. Is
> there any way to turn the authenticate capability off on the signing
> key? It doesn't sound like it should be that difficult, but I've
gpg --edit-key YOURKEY
S
Hi Werner,
Well, I feel stupid now, after reading your message, I tried
"change-usage", and it works. It's not in the man page, or listed in the
--edit-key help menu, but, there is a one-line note in the NEWS file,
stating that is for testing, so "change-usage" is actually documented,
and I missed
On 12/5/16 4:11 AM, Bertram Scharpf wrote:
> I might resume it to two possibilities to accomplish the task:
>
> - Post a digest to a site where you cannot withdraw it
> ever and where it can be retrieved by everybody. This
> could be a Github issue, on Reddit or Twitter or maybe
>
