GPG Key Grabbing through a Proxy
AthlonRob
athlonrobnf@cs.com
Thu Apr 18 07:29:02 2002
------=_NextPart_000_0014_01C1E65F.463D5230
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Hi guys-
I'm going nuts here. I can't get GPG to grab a key through my proxy and *re=
ally* want this feature. If I can't get it working, I have to grab the keys=
through PGP and FTP them over :-\
I'm running through a SOCKS4/5 proxy using tsocks. tsocks provides a seamle=
ss connection through the proxy, in theory. In practice, it works for every=
thing except GPG and my CS2K IMAP/SMTP servers.
I've also tried running it through an HTTP proxy.
When I export LD_PRELOAD=3D/lib/libtsocks.so before running it, I get the fo=
llowing output:
~$ gpg --verify test.txt
gpg: Warning: using insecure memory!
gpg: Signature made Wed Apr 17 21:39:22 2002 PDT using DSA key ID XXXXXXXX
gpg: requesting key XXXXXXXX from http://search.keyserver.net:11371 ...
gpg: can't get key from keyserver: No such file or directory
gpg: Can't check signature: public key not found
If, instead of LD_PRELOAD, I use export http_proxy=3Drobxp:4480 (my HTTP pro=
xy is at robxp, port 4480) I get this output:
~$ gpg --verify test.txt
gpg: Warning: using insecure memory!
gpg: Signature made Wed Apr 17 21:39:22 2002 PDT using DSA key ID XXXXXXXX
gpg: requesting key XXXXXXXX from http://search.keyserver.net:11371 ...
gpg: invalid $http_proxy: unsupported URI
gpg: can't get key from keyserver: Operation not permitted
gpg: Can't check signature: public key not found
Which could mean I'm not setting my http proxy properly... lynx won't use it=
, either.
I'm really stumped. I could use some help if y'all have some ideas! :-)
I'm running Slackware 8.1, the April 11th Beta (either Beta1 or halfway to B=
eta2). I compiled GnuPG 1.0.6 myself from source and it works just fine so=20=
long as I don't have to import the keys from keyservers! :-)
Rob
------=_NextPart_000_0014_01C1E65F.463D5230
Content-Type: text/html;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=3DContent-Type content=3D"text/html; charset=3Diso-8859-1">
<META content=3D"MSHTML 6.00.2715.400" name=3DGENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=3D#ffffff>
<DIV><FONT face=3DArial size=3D2>Hi guys-</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>I'm going nuts here. I can't get GPG=20=
to grab=20
a key through my proxy and *really* want this feature. If I can't get=20=
it=20
working, I have to grab the keys through PGP and FTP them over =20
:-\</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>I'm running through a SOCKS4/5 proxy using=20
tsocks. tsocks provides a seamless connection through the proxy, in=20
theory. In practice, it works for everything except GPG and my CS2K=20
IMAP/SMTP servers.</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>I've also tried running it through an HTTP=20
proxy.</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>When I export LD_PRELOAD=3D/lib/libtsocks.s=
o before=20
running it, I get the following output:</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>~$ gpg --verify test.txt<BR>gpg: Warning: u=
sing=20
insecure memory!<BR>gpg: Signature made Wed Apr 17 21:39:22 2002 PDT using D=
SA=20
key ID XXXXXXXX<BR>gpg: requesting key XXXXXXXX from <A href=3D"http://sea=
rch.keyserver.net:11371">http://search.keyserver.net:11371</A>=20
...<BR>gpg: can't get key from keyserver: No such file or directory<BR>gpg:=20
Can't check signature: public key not found<BR></FONT></DIV>
<DIV><FONT face=3DArial size=3D2>If, instead of LD_PRELOAD, I use export=20
http_proxy=3Drobxp:4480 (my HTTP proxy is at robxp, port 4480) I get this=20
output:</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>~$ gpg --verify test.txt<BR>gpg: Warning: u=
sing=20
insecure memory!<BR>gpg: Signature made Wed Apr 17 21:39:22 2002 PDT using D=
SA=20
key ID XXXXXXXX<BR>gpg: requesting key XXXXXXXX from <A href=3D"http://sea=
rch.keyserver.net:11371">http://search.keyserver.net:11371</A>=20
...<BR>gpg: invalid $http_proxy: unsupported URI<BR>gpg: can't get key from=20
keyserver: Operation not permitted<BR>gpg: Can't check signature: public key=
not=20
found<BR></FONT></DIV>
<DIV><FONT face=3DArial size=3D2>Which could mean I'm not setting my http pr=
oxy=20
properly... lynx won't use it, either.</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>I'm really stumped. I could use some=20=
help if=20
y'all have some ideas! :-)</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>I'm running Slackware 8.1, the April 11th B=
eta=20
(either Beta1 or halfway to Beta2). I compiled GnuPG 1.0.6 myself from=
=20
source and it works just fine so long as I don't have to import the keys fro=
m=20
keyservers! :-)</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>Rob</DIV></FONT></BODY></HTML>
------=_NextPart_000_0014_01C1E65F.463D5230--