is that a bug?
Here are some gpg outputs:
At the moment, I have it here on my notebook working with the 4096bit keys:
sec> 4096R/9BE45ED0 2012-12-10 [verfällt: 2017-04-13]
Kartenseriennr. = 0005
uid Josef Schneider
uid Josef Schneider
ssb>
ss some way to recover.
>
> On 07/28/2015 04:09 AM, Josef Schneider wrote:
>> I insert the other card and do a card-status:
> [...]
>> General key info..: pub 2048R/988E7DDD 2015-07-07 Josef Schneider
>>
>> sec> 4096R/9BE45ED0 erzeugt: 2012-12-10 verfällt: 201
On Sun, Aug 25, 2013 at 2:33 PM, Jan wrote:
> Can you recommend such an operating system? Your idea seems practicable and
> convenient to me.
> Would users have to refrain from flash videos?
I would suggest OpenBSD for that. If BSD is to exotic, then Debian Stable.
Flas is known to have more sec
I just use 4096 bit because that is the biggest size my OpenPGP Cards can
handle. In my opinion using a smart card instead of online keys increase
security far more than strange large key sizes!
I also see no point using less than 4096 because modern hardware is fast
enough. Maybe my keys last lon
On Tue, Sep 10, 2013 at 3:30 PM, Robert J. Hansen wrote:
> > Assuming it takes effort a to break cipher A and effort b to break
> > cipher b, this should result in effort at least max(a, b) needed to
> > break A+B.
>
> Basically, though, it's "this is a naive and unfounded assumption."
>
Why? As
On Wed, Sep 18, 2013 at 9:06 AM, Werner Koch wrote:
> The standard already allows for all kind of curses. They are specified
> by an OID and I offered DJB to assign OIDs from the GnuPG arc. The
> original reason why I wanted an OID based design is so that it will be
> possible to use Brainpool
On Thu, Sep 19, 2013 at 7:44 PM, Werner Koch wrote:
> If Bobs decides to use NIST curve, why don't you want to send a mail to
> him. It his his decision whether he want to keep stuff confidential.
Yes, but it isn't only HIS stuff!
I want to know if the information I send out is secure enough or
On Mon, Sep 23, 2013 at 7:28 AM, Heinz Diehl wrote:
> Generally, I think you can't have it all. Can't imagine how long it
> will take to encrypt/decrypt a mail on a smartphone using the 4k key
> which I have on my smartcard..
The cheapest phones you can get here have at least 800Mhz ARMv6 CPUs!
Einar Ryeng schrieb:
>
> Hi.
>
> The GPF Crypto Stick has been unavailable for months now, and I
> wondered if
> anyone here has information on its future.
>
> Any news on the crypto stick (or similar initiatives) would be
> appreciated.
I just use a OpenPGP Card in a small gemalto stick reade
Hi,
something strange happened in my mail client so the signature of the
last message was invalid!
Here is the same message correctly signed:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi,
compilation is straightforward, if msys and mingw is installed!
pgpdump.c is missing a "#include ", af
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi,
compilation is straightforward, if msys and mingw is installed!
pgpdump.c is missing a "#include ", after adding that just a
./configure and make to compile it!
I compiled a 64 and a 32 bit version for you! The files are digitally
signed using
key info..: pub rsa4096/9BE45ED0 2012-12-10 Josef
Schneider
sec# rsa4096/9BE45ED0 created: 2012-12-10 expires: 2017-04-13
ssb# rsa4096/B641DD11 created: 2012-12-10 expires: never
ssb rsa4096/CA02F8EA created: 2012-12-10 expires: never
I also tried deleting the key and adding it again with
Hello,
first thing: I am not subscribed to this list, so please CC me in replies.
I recently bought a OpenPGP smart card and want to use 4096bit keys and
Windows.
This doesn't work for decrypting with any released gpg version!
There seems to be a patch to make it work at
http://lists.gnupg.org/pi
On Mon, Jan 7, 2013 at 5:54 PM, Peter Lebbing wrote:
> Flash memory stores its data as an electrical charge, which can leak away.
> It does so very slowly, but it still does[1]. We are talking about years.
> And reading a cell does not "refresh" it, so read-only use will in principle
> not do anyt
On Fri, Feb 8, 2013 at 1:17 AM, Robert J. Hansen wrote:
>
> Sure. That's theoretically possible. I don't believe it to be true,
> though. My machine is trusted not because I'm certain that it's immune
> to being pwn3d, but because I acknowledge that it can break my local
> security policy and I
x27;t support keys longer than 1024bit! "gpg
--card-status" should tell you which version you have.
Best regards,
Josef Schneider
On Tue, Feb 26, 2013 at 7:04 PM, Anonymous Remailer (austria)
wrote:
>
>
>
> Hello,
>
> I am able to use the gpg2 --edit-card to genera
On Thu, Feb 28, 2013 at 10:34 PM, Peter Lebbing wrote:
> On 27/02/13 22:58, Anonymous wrote:
>> So I should be able to import the key...but not use it unless it is
>> 3072 bits or less?
>
> If we're all talking about RSA here, I think so.
Using an 4096 bit RSA key _should_ work if you compile the
On Mon, Mar 4, 2013 at 4:59 AM, Daniel Kahn Gillmor
wrote:
> Take a look at http://www.itconsult.co.uk/stamper.htm
>
> I have no experience with them, but they've been discussed before in
> this list, if you want to review the archives.
>
> You might also be interested in the relevant wikipedia ar
tp://g10code.com/p-card.html but as far
as I know almost every smartcard has a TRNG that can be read from with the
same command) as entropy source.
This is, in fact, possible and there is a small tool that does exactly that
available at https://github.com/infin
On Mon, Jun 24, 2013 at 2:54 PM, NdK wrote:
>
> Il 24/06/2013 10:15, Werner Koch ha scritto:
>
> >> A smartcard could be useful anyway, at least as a "portable keyring"
> >> (if it didn't need initialization on every machine...).
> > A USB memory stick fulfills the same purpose.
> Not really secur
On Mon, Jun 24, 2013 at 10:01 AM, Werner Koch wrote:
> Hi!
>
> I just uploaded a test version of GpgEX (the GnuPG Explorer Plugin) for
> Windows 64 bit. This is just the bare standalone DLL without an
> installer. If you are using a 64 bit Windows system with Gpg4win, you
> may want to test this
ft.com/kb/224816/en-us
Best regards,
Josef Schneider
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users
ot?
>
> Yes, you can. The regsvr32 call is still required.
But if you do this, the extension won't be available in 32bit
processes! (32bit explorer.exe, file selection dialogues in 32bit
programs, 32bit file managers...)
Best regards,
Josef Schneider
___
I have the same problem on my german 64bit Windows 8 with Version 2.2.0-beta31
Mit freundlichen Grüßen,
Josef Schneider
On Mon, Jul 15, 2013 at 3:02 PM, Werner Koch wrote:
> On Fri, 12 Jul 2013 09:46, fisch@gmx.de said:
>
>> good point and thanks for this hint. Will tr
On Thu, Jul 18, 2013 at 10:23 PM, Henry Hertz Hobbit
wrote:
> You probably just want to test whether either of these files
> are there since them or one of the others is what you are using:
>
> %ProgramFiles%\GNU\GnuPG\pub\gpg.exe
> %ProgramFiles%\GNU\GnuPG\pub\gpg2.exe
Protip: you can change the
25 matches
Mail list logo
