Next step: now KMail freezes
bsmaillist at skynet.be
bsmaillist at skynet.be
Thu Jul 29 16:42:12 CEST 2004
On Thursday 29 July 2004 08:53, Werner Koch wrote:
> On Wed, 28 Jul 2004 18:39:46 +0200, bsmaillist said:
> > dirmngr[4134]: error opening
> > `/home/user/.gnupg/dirmngr_ldapservers.conf': No such file or directory
>
> What about creating this configuration file? We need to know the
> addresses of the CRL in case tehre is no CRL Distribution Point in the
> certificate.
>
> Werner
Since I don't have a CRL for my test certificates I did the following:
First I did a "touch dirmngr_ldapservers.conf" in ~/.gnupg and added 1 line
with a newline in the config file. Then I tried "gpgsm --list-sig
--with-validation C37003D68A2A592A1E8B147E1C6AD9C6C7E1F459" with both CRL
checking disabled and enabled.
This gave the following results
with CRL checking disabled
-----------------------------
Secure memory is not locked into core
gpgsm: NOTE: THIS IS A DEVELOPMENT VERSION!
gpgsm: It is only intended for test purposes and should NOT be
gpgsm: used in a production environment or with production keys!
/home/user/.gnupg/pubring.kbx
-----------------------------
Serial number: 01
Issuer: /CN=BS Root CA/OU=RD/O=Privaat/L=Donk/ST=Limburg/C=BE
Subject: /CN=Bart Symons/EMail=bart.symons at skynet.be
aka: bart.symons at skynet.be
validity: 2004-07-18 22:05:52 through 2006-07-18 22:05:52
key type: 1024 bit RSA
ext key usage: clientAuth (suggested), emailProtection (suggested)
fingerprint: C3:70:03:D6:8A:2A:59:2A:1E:8B:14:7E:1C:6A:D9:C6:C7:E1:F4:59
gpgsm: no running dirmngr - starting one
gpgsm: DBG: connection to dirmngr established
dirmngr[4125]: no CRL available for issuer
`E03456F86E593E743CAD38F8DCCEC2C08071F46A'
[checking the CRL failed: Unknown system error]
[certificate is bad: Unknown system error]
Certified by
Serial number: 00
Issuer: /CN=BS Root CA/OU=RD/O=Privaat/L=Donk/ST=Limburg/C=BE
Subject: /CN=BS Root CA/OU=RD/O=Privaat/L=Donk/ST=Limburg/C=BE
validity: 2004-07-18 22:04:50 through 2014-07-16 22:04:50
key type: 2048 bit RSA
chain length: unlimited
fingerprint: 4C:8B:25:A5:4F:2D:F6:A5:A4:BC:C4:90:7C:45:A0:81:3F:85:09:F5
gpgsm: DBG: connection to agent established
[checking the CRL failed: Assuan server fault]
[certificate is bad: Assuan server fault]
secmem usage: 1344/16384 bytes in 2 blocks
with CRL checking enabled
----------------------------
Secure memory is not locked into core
gpgsm: NOTE: THIS IS A DEVELOPMENT VERSION!
gpgsm: It is only intended for test purposes and should NOT be
gpgsm: used in a production environment or with production keys!
/home/user/.gnupg/pubring.kbx
-----------------------------
Serial number: 01
Issuer: /CN=BS Root CA/OU=RD/O=Privaat/L=Donk/ST=Limburg/C=BE
Subject: /CN=Bart Symons/EMail=bart.symons at skynet.be
aka: bart.symons at skynet.be
validity: 2004-07-18 22:05:52 through 2006-07-18 22:05:52
key type: 1024 bit RSA
ext key usage: clientAuth (suggested), emailProtection (suggested)
fingerprint: C3:70:03:D6:8A:2A:59:2A:1E:8B:14:7E:1C:6A:D9:C6:C7:E1:F4:59
gpgsm: DBG: connection to agent established
[certificate is good]
Certified by
Serial number: 00
Issuer: /CN=BS Root CA/OU=RD/O=Privaat/L=Donk/ST=Limburg/C=BE
Subject: /CN=BS Root CA/OU=RD/O=Privaat/L=Donk/ST=Limburg/C=BE
validity: 2004-07-18 22:04:50 through 2014-07-16 22:04:50
key type: 2048 bit RSA
chain length: unlimited
fingerprint: 4C:8B:25:A5:4F:2D:F6:A5:A4:BC:C4:90:7C:45:A0:81:3F:85:09:F5
[certificate is good]
secmem usage: 1344/16384 bytes in 2 blocks
More information about the Gpa-dev
mailing list