Bug: Unusable key

Thomas Spuhler ThomasSpuhler at tusonix.com
Wed Feb 4 10:50:47 CET 2004


On Wed, 2004-02-04 at 10:07, gabriel rosenkoetter wrote:
> On Wed, Feb 04, 2004 at 09:51:25AM -0700, Thomas Spuhler wrote:
> > But in this case, the whole signature part was at the end of the e-mail
> > message, where I normally have the signature icon.
> 
> I don't believe that was the case. I don't have the original message
> locally any more, but I'm pretty sure it had:
>   /^-----BEGIN PGP SIGNED MESSAGE-----$/
> before any message text. The message text is followed by:
>   /^-----BEGIN PGP SIGNATURE-----$/
> which is actually the beginning of the signature.

I think you are right:

From: Per Tunedal Casual <pt at radvis.nu>
To: gnupg-users at gnupg.org
Subject: Bug: Unusable key
Date: Wed, 04 Feb 2004 15:57:45 +0100

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hello,
I cannot encrypt to my personal key 0xAF351431 today! Maybe it's
because it expires today in the year 2012? The key expires: 2012-02-04

It works OK with my old PGP.
Yours,
Per Tunedal
S:t Mickelsgatan 148
SE-129 44 Hägersten
Sweden
+46(0)8-88 08 00
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (MingW32)

iD8DBQFAIQhn2Jp9Z++ji2YRAoEhAJ4g6NLsrb9CfKrj0PpqLhEqvXziPACgrsic
QQfx0x9ewZOD8LF4Bz0QsQ4=
=AazI
-----END PGP SIGNATURE-----


> 
> Clear-signed messages never have the signature before the text
> (mostly because that would mean you just had to store the signature
> till you'd raead the message and computed a checksum of it against
> which to compare the signature's version).
> 
> > The second questions Thomas, you list in plain text GPG KeyID: 114AA85C
> > which can be found on a public key server, but then your actual
> > signature on your e-mail has ID BBA8F8F5 and that one cannot be found on
> > a public keyserver.
> 
> If you actually can't find BBA8F8F5, you're using one of the (many)
> broken keyservers. Use subkeys.pgp.net.
> 
> > After downloading your signature with ID 114AA85C,
> > GnuPG is able to read your signature that contains ID BBA8F8F5
> > Why is that?
> 
> Because BBA8F8F5 is a subkey:
> 
> pub  1024D/114AA85C 2003-04-14 Thomas Sjogren <thomas at northernsecurity.net>
> uid                            Thomas Sjogren <thomas at se.linux.org>
> sub  2048R/BBA8F8F5 2003-09-12 [expires: 2004-09-11]
> sub  2048R/D14F1B25 2003-09-12 [expires: 2004-09-11]
> sub  2048g/474D6F70 2003-04-14
> 
> > If you would not have listed it in plain text, I would never have found
> > it.
> 
> keyserver-options auto-key-retrieve include-subkeys would have,
> though.

Hmmm, does this mean I have to do it all in command line mode?

I am using GPA, (Gnu Privacy Assistant v. 0.6.1)

Tom
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : /pipermail/attachments/20040204/f48c8be5/attachment.bin


More information about the Gnupg-users mailing list