From wk at gnupg.org Fri Jan 5 10:53:08 2001 From: wk at gnupg.org (Werner Koch) Date: Wed Feb 23 12:43:32 2005 Subject: GnuPG servers are down Message-ID: <20010105105308.N32030@alberti.gnupg.de> Hi! The primary GnuPG FTP and Web server is down for maintenance until about 16:00 UTC. The CVS server is also not reachable. Sorry for this inconvenience. Werner Here is a list of mirrors: Here is a list of sites mirroring ftp://ftp.gnupg.org/pub/gcrypt/ Please use them if you can; new releases should show up on these servers within a day. Australia ftp://orcus.progsoc.uts.edu.au/pub/gnupg/ http://orcus.progsoc.uts.edu.au/pub/gnupg/ rsync://orcus.progsoc.uts.edu.au/pub/gnupg/ ftp://mirror.aarnet.edu.au/pub/gnupg/ http://mirror.aarnet.edu.au/pub/gnupg/ Austria ftp://gd.tuwien.ac.at/privacy/gnupg/ Belgium ftp://openbsd.rug.ac.be/pub/gcrypt/ Canada ftp://crypto.yashy.com/pub/cryptography/gnupg/ Denmark ftp://sunsite.auc.dk/pub/security/gcrypt/ Finland ftp://ftp.jyu.fi/pub/crypt/gcrypt/ France ftp://ftp.strasbourg.linuxfr.org/pub/gnupg/ Germany ftp://ftp.franken.de/pub/crypt/mirror/ftp.guug.de/gcrypt/ ftp://ftp.freenet.de/pub/ftp.gnupg.org/pub/gcrypt/ ftp://ftp.gigabell.net/pub/gnupg Greece ftp://ftp.linux.gr/pub/crypto/gnupg/ Hungary ftp://ftp.kfki.hu/pub/packages/security/gnupg/ Iceland ftp://ftp.hi.is/pub/mirrors/gnupg/ Ireland ftp://ftp.compsoc.com/pub/gnupg/ Italy ftp://ftp.linux.it/pub/mirrors/gnupg/ ftp://ftp3.linux.it/pub/mirrors/gnupg/ Japan ftp://pgp.iijlab.net/pub/gnupg/ ftp://ftp.ring.gr.jp/pub/net/gnupg/ http://www.ring.gr.jp/pub/net/gnupg/ Poland ftp://sunsite.icm.edu.pl/pub/security/gnupg/ Spain ftp://dimonieta.udg.es/mirror/gnupg Sweden ftp://ftp.stacken.kth.se/pub/crypto/gnupg/ ftp://ftp.sunet.se:/pub/security/gnupg/ Switzerland ftp://sunsite.cnlab-switch.ch/mirror/gcrypt/ Taiwan ftp://coda.nctu.edu.tw/Security/gcrypt United Kingdom ftp://ftp.net.lut.ac.uk/gcrypt/ ftp://ftp.mirror.ac.uk/sites/ftp.gnupg.org/pub/gcrypt/ http://www.mirror.ac.uk/sites/ftp.gnupg.org/pub/gcrypt/ Here is a list of sites mirroring http://www.gnupg.org Denmark http://sunsite.auc.dk/gnupg">Denmark Poland http://sunsite.icm.edu.pl/gnupg/ United States http://www.tdyc.com/archive/gnupg/ The pages are also available via anonymous rsync at: ftp.gnupg.org::gnupg-www From wk at gnupg.org Fri Jan 5 10:53:08 2001 From: wk at gnupg.org (Werner Koch) Date: Wed Feb 23 12:43:32 2005 Subject: GnuPG servers are down Message-ID: <20010105105308.N32030@alberti.gnupg.de> Hi! The primary GnuPG FTP and Web server is down for maintenance until about 16:00 UTC. The CVS server is also not reachable. Sorry for this inconvenience. Werner Here is a list of mirrors: Here is a list of sites mirroring ftp://ftp.gnupg.org/pub/gcrypt/ Please use them if you can; new releases should show up on these servers within a day. Australia ftp://orcus.progsoc.uts.edu.au/pub/gnupg/ http://orcus.progsoc.uts.edu.au/pub/gnupg/ rsync://orcus.progsoc.uts.edu.au/pub/gnupg/ ftp://mirror.aarnet.edu.au/pub/gnupg/ http://mirror.aarnet.edu.au/pub/gnupg/ Austria ftp://gd.tuwien.ac.at/privacy/gnupg/ Belgium ftp://openbsd.rug.ac.be/pub/gcrypt/ Canada ftp://crypto.yashy.com/pub/cryptography/gnupg/ Denmark ftp://sunsite.auc.dk/pub/security/gcrypt/ Finland ftp://ftp.jyu.fi/pub/crypt/gcrypt/ France ftp://ftp.strasbourg.linuxfr.org/pub/gnupg/ Germany ftp://ftp.franken.de/pub/crypt/mirror/ftp.guug.de/gcrypt/ ftp://ftp.freenet.de/pub/ftp.gnupg.org/pub/gcrypt/ ftp://ftp.gigabell.net/pub/gnupg Greece ftp://ftp.linux.gr/pub/crypto/gnupg/ Hungary ftp://ftp.kfki.hu/pub/packages/security/gnupg/ Iceland ftp://ftp.hi.is/pub/mirrors/gnupg/ Ireland ftp://ftp.compsoc.com/pub/gnupg/ Italy ftp://ftp.linux.it/pub/mirrors/gnupg/ ftp://ftp3.linux.it/pub/mirrors/gnupg/ Japan ftp://pgp.iijlab.net/pub/gnupg/ ftp://ftp.ring.gr.jp/pub/net/gnupg/ http://www.ring.gr.jp/pub/net/gnupg/ Poland ftp://sunsite.icm.edu.pl/pub/security/gnupg/ Spain ftp://dimonieta.udg.es/mirror/gnupg Sweden ftp://ftp.stacken.kth.se/pub/crypto/gnupg/ ftp://ftp.sunet.se:/pub/security/gnupg/ Switzerland ftp://sunsite.cnlab-switch.ch/mirror/gcrypt/ Taiwan ftp://coda.nctu.edu.tw/Security/gcrypt United Kingdom ftp://ftp.net.lut.ac.uk/gcrypt/ ftp://ftp.mirror.ac.uk/sites/ftp.gnupg.org/pub/gcrypt/ http://www.mirror.ac.uk/sites/ftp.gnupg.org/pub/gcrypt/ Here is a list of sites mirroring http://www.gnupg.org Denmark http://sunsite.auc.dk/gnupg">Denmark Poland http://sunsite.icm.edu.pl/gnupg/ United States http://www.tdyc.com/archive/gnupg/ The pages are also available via anonymous rsync at: ftp.gnupg.org::gnupg-www From wk at gnupg.org Fri Jan 5 10:53:08 2001 From: wk at gnupg.org (Werner Koch) Date: Wed Feb 23 12:43:32 2005 Subject: GnuPG servers are down Message-ID: <20010105105308.N32030@alberti.gnupg.de> Hi! The primary GnuPG FTP and Web server is down for maintenance until about 16:00 UTC. The CVS server is also not reachable. Sorry for this inconvenience. Werner Here is a list of mirrors: Here is a list of sites mirroring ftp://ftp.gnupg.org/pub/gcrypt/ Please use them if you can; new releases should show up on these servers within a day. Australia ftp://orcus.progsoc.uts.edu.au/pub/gnupg/ http://orcus.progsoc.uts.edu.au/pub/gnupg/ rsync://orcus.progsoc.uts.edu.au/pub/gnupg/ ftp://mirror.aarnet.edu.au/pub/gnupg/ http://mirror.aarnet.edu.au/pub/gnupg/ Austria ftp://gd.tuwien.ac.at/privacy/gnupg/ Belgium ftp://openbsd.rug.ac.be/pub/gcrypt/ Canada ftp://crypto.yashy.com/pub/cryptography/gnupg/ Denmark ftp://sunsite.auc.dk/pub/security/gcrypt/ Finland ftp://ftp.jyu.fi/pub/crypt/gcrypt/ France ftp://ftp.strasbourg.linuxfr.org/pub/gnupg/ Germany ftp://ftp.franken.de/pub/crypt/mirror/ftp.guug.de/gcrypt/ ftp://ftp.freenet.de/pub/ftp.gnupg.org/pub/gcrypt/ ftp://ftp.gigabell.net/pub/gnupg Greece ftp://ftp.linux.gr/pub/crypto/gnupg/ Hungary ftp://ftp.kfki.hu/pub/packages/security/gnupg/ Iceland ftp://ftp.hi.is/pub/mirrors/gnupg/ Ireland ftp://ftp.compsoc.com/pub/gnupg/ Italy ftp://ftp.linux.it/pub/mirrors/gnupg/ ftp://ftp3.linux.it/pub/mirrors/gnupg/ Japan ftp://pgp.iijlab.net/pub/gnupg/ ftp://ftp.ring.gr.jp/pub/net/gnupg/ http://www.ring.gr.jp/pub/net/gnupg/ Poland ftp://sunsite.icm.edu.pl/pub/security/gnupg/ Spain ftp://dimonieta.udg.es/mirror/gnupg Sweden ftp://ftp.stacken.kth.se/pub/crypto/gnupg/ ftp://ftp.sunet.se:/pub/security/gnupg/ Switzerland ftp://sunsite.cnlab-switch.ch/mirror/gcrypt/ Taiwan ftp://coda.nctu.edu.tw/Security/gcrypt United Kingdom ftp://ftp.net.lut.ac.uk/gcrypt/ ftp://ftp.mirror.ac.uk/sites/ftp.gnupg.org/pub/gcrypt/ http://www.mirror.ac.uk/sites/ftp.gnupg.org/pub/gcrypt/ Here is a list of sites mirroring http://www.gnupg.org Denmark http://sunsite.auc.dk/gnupg">Denmark Poland http://sunsite.icm.edu.pl/gnupg/ United States http://www.tdyc.com/archive/gnupg/ The pages are also available via anonymous rsync at: ftp.gnupg.org::gnupg-www -- Archive is at http://lists.gnupg.org - Unsubscribe by sending mail with a subject of "unsubscribe" to gnupg-users-request@gnupg.org From wk at gnupg.org Wed Jan 24 16:06:16 2001 From: wk at gnupg.org (Werner Koch) Date: Wed Feb 23 12:43:32 2005 Subject: [Announce] GnuPG lists moved Message-ID: <20010124160852.Q13002@alberti.gnupg.de> Hello! The mailing lists hosted under gnupg.org have been moved to a new server and the ML software has changed too. The MLs are now run by Mailman and can be controlled with a nice Web interface. The move was necessary because I have now only limited access to the old server which is located in the company I used to work for. There is not much which changes for you except that you need a password to unsubscribe. Currently you don't know this password, so you have to visit the webpage http://lists.gnupg.org/mailman/listinfo select the desired list, enter your email address and then you will be given an option to mail the password back to you. Using the same webinterface you can control several options of your subscription. You may need new filter rules; e.g. for Procmail: :0 * ^List-Id:.* gnupg-users/ A few very silent lists have been dropped and the search facility is not yet back. The old anti-spam filter has not yet been migrated but because I can now use my own mail setup, it should be somewhat better anyway. ciao, Werner p.s. You might have to wait some time until the DNS catches up on the changed address of lists.gnupg.org. -- Werner Koch GNU Privacy Guard (http://www.gnupg.org) Free Software Foundation Europe (http://www.fsfeurope.org) [Please see X-* mail header for OpenPGP key info] From wk at gnupg.org Wed Jan 24 16:18:03 2001 From: wk at gnupg.org (Werner Koch) Date: Wed Feb 23 12:43:32 2005 Subject: [Announce] GnuPG lists moved Message-ID: <20010124160852.Q13002@alberti.gnupg.de> Hello! The mailing lists hosted under gnupg.org have been moved to a new server and the ML software has changed too. The MLs are now run by Mailman and can be controlled with a nice Web interface. The move was necessary because I have now only limited access to the old server which is located in the company I used to work for. There is not much which changes for you except that you need a password to unsubscribe. Currently you don't know this password, so you have to visit the webpage http://lists.gnupg.org/mailman/listinfo select the desired list, enter your email address and then you will be given an option to mail the password back to you. Using the same webinterface you can control several options of your subscription. You may need new filter rules; e.g. for Procmail: :0 * ^List-Id:.* gnupg-users/ A few very silent lists have been dropped and the search facility is not yet back. The old anti-spam filter has not yet been migrated but because I can now use my own mail setup, it should be somewhat better anyway. ciao, Werner p.s. You might have to wait some time until the DNS catches up on the changed address of lists.gnupg.org. -- Werner Koch GNU Privacy Guard (http://www.gnupg.org) Free Software Foundation Europe (http://www.fsfeurope.org) [Please see X-* mail header for OpenPGP key info] From wk at gnupg.org Thu Jan 25 09:40:01 2001 From: wk at gnupg.org (Werner Koch) Date: Wed Feb 23 12:43:32 2005 Subject: [Announce] Mailing lists moved, part 2 Message-ID: <20010125094236.E15272@alberti.gnupg.de> Hello again! Some folks asked me to sign important announcements like a move of a mailing list. To stop any complaints, here is it again: The GnuPG mailing lists have moved to a new server and are now handeld by Mailman. You will find instructions on how to access the Web based interface at the bottom of each mail and the DNS should have catched up by today. The new server is the same as the one which runs www.gnupg.org; so if you are interesed you can compare the IP addresses. By looking at the 'Received:' lines you will notice that you are posting to a box called porta.u64.de (named after Giovanni Battista Porta (1535-1615) and a typedef used in gpg) which does some spam checking and then forwarding it to the ML server. So, when I don't forget to hit the sign key, we can check whether Mailman handles rfc2015 signatures correct. Werner -- Werner Koch GNU Privacy Guard (http://www.gnupg.org) Free Software Foundation Europe (http://www.fsfeurope.org) [Please see X-* mail header for OpenPGP key info] -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 233 bytes Desc: not available Url : /pipermail/attachments/20010125/0a5fa47c/attachment.pgp From wk at gnupg.org Thu Feb 1 09:23:13 2001 From: wk at gnupg.org (Werner Koch) Date: Wed Feb 23 12:43:32 2005 Subject: [Announce] Mailman passwords Message-ID: <20010201092616.O31696@alberti.gnupg.de> Good Morning! I got a lot of mail with the tenor "It is funny that a mailing list dedicated to email security sends out passwords in the clear". The new mailing list software Mailman choosed to name there access cookies "passwords". However, the primary use of those passwords is to be able to unsubscribe from the list and manage options, like "send password reminder". The goal of the password is to make an unsubscribe attack somehat harder to mount; about all mailing list software uses a similar technique to do that and those cookies are also send in the clear. IIRC, there used to be a long discussion on the Mailman developers list about that issue a long time ago. You should be able to use Mailman driven list without the need for special software (e.g. gpg), so that very simple password thingie is something every user can understand. If it really turns out to be a problem, I can see how I can allocate some time to setup a https server for your ML management tasks and disable the password reminders. That would be an advantage for me too, because currently I have to use Lynx on the shell of the server for the admin tasks. Werner -- Werner Koch GNU Privacy Guard (http://www.gnupg.org) Free Software Foundation Europe (http://www.fsfeurope.org) [Please see X-* mail header for OpenPGP key info] -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 233 bytes Desc: not available Url : /pipermail/attachments/20010201/751e311a/attachment.pgp From wk at gnupg.org Wed Feb 21 08:15:11 2001 From: wk at gnupg.org (Werner Koch) Date: Wed Feb 23 12:43:32 2005 Subject: [Announce] pgp4pine-1.75-6 - expired public keys (from: vab@CRYPTNET.NET) Message-ID: <20010221081749.P32349@alberti.gnupg.de> Hi, Pine user should read the following advisory. I have not checked it because I don't use Pine. Werner -- Omnis enim res, quae dando non deficit, dum habetur et non datur, nondum habetur, quomodo habenda est. -- Augustinus -------------- next part -------------- An embedded message was scrubbed... From: "V. Alex Brennen" Subject: [CryptNET Advisory] pgp4pine-1.75-6 - expired public keys Date: Tue, 20 Feb 2001 16:15:57 -0500 Size: 15075 Url: /pipermail/attachments/20010221/53b9bc68/attachment.mht From wk at gnupg.org Wed Feb 21 11:27:00 2001 From: wk at gnupg.org (Werner Koch) Date: Wed Feb 23 12:43:32 2005 Subject: [fwd] Re: [Announce] pgp4pine-1.75-6 - expired public keys (from: vab@CRYPTNET.NET) (from: ftobin@uiuc.edu) Message-ID: <20010221112926.W32349@alberti.gnupg.de> ----- Forwarded message from Frank Tobin ----- Date: Wed, 21 Feb 2001 03:09:16 -0600 (CST) From: Frank Tobin To: Subject: Re: [Announce] pgp4pine-1.75-6 - expired public keys (from: vab@CRYPTNET.NET) Werner Koch, at 08:17 +0100 on Wed, 21 Feb 2001, wrote: Pine user should read the following advisory. I have not checked it because I don't use Pine. Just a note: pgpenvelope, a "competitor" to pgp4pine :) is not succeptible to this bug, because pgpenvelope runs GnuPG in interactive mode. Because of this, GnuPG will prompt the user concerning the expiredness/uncertainty, and the user can make an informed decision whether or not to continue. Additionally, pgpenvelope will always abort sending mail if GnuPG exits with a non-zero value (which indicates error). -- Frank Tobin http://www.uiuc.edu/~ftobin/ _______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users ----- End forwarded message ----- -- Omnis enim res, quae dando non deficit, dum habetur et non datur, nondum habetur, quomodo habenda est. -- Augustinus