Bug: Unusable key

Thomas Spuhler ThomasSpuhler at tusonix.com
Wed Feb 4 10:50:47 CET 2004

On Wed, 2004-02-04 at 10:07, gabriel rosenkoetter wrote:
> On Wed, Feb 04, 2004 at 09:51:25AM -0700, Thomas Spuhler wrote:
> > But in this case, the whole signature part was at the end of the e-mail
> > message, where I normally have the signature icon.
> I don't believe that was the case. I don't have the original message
> locally any more, but I'm pretty sure it had:
>   /^-----BEGIN PGP SIGNED MESSAGE-----$/
> before any message text. The message text is followed by:
>   /^-----BEGIN PGP SIGNATURE-----$/
> which is actually the beginning of the signature.

I think you are right:

From: Per Tunedal Casual <pt at radvis.nu>
To: gnupg-users at gnupg.org
Subject: Bug: Unusable key
Date: Wed, 04 Feb 2004 15:57:45 +0100

Hash: SHA1

I cannot encrypt to my personal key 0xAF351431 today! Maybe it's
because it expires today in the year 2012? The key expires: 2012-02-04

It works OK with my old PGP.
Per Tunedal
S:t Mickelsgatan 148
SE-129 44 Hägersten
+46(0)8-88 08 00
Version: GnuPG v1.2.4 (MingW32)


> Clear-signed messages never have the signature before the text
> (mostly because that would mean you just had to store the signature
> till you'd raead the message and computed a checksum of it against
> which to compare the signature's version).
> > The second questions Thomas, you list in plain text GPG KeyID: 114AA85C
> > which can be found on a public key server, but then your actual
> > signature on your e-mail has ID BBA8F8F5 and that one cannot be found on
> > a public keyserver.
> If you actually can't find BBA8F8F5, you're using one of the (many)
> broken keyservers. Use subkeys.pgp.net.
> > After downloading your signature with ID 114AA85C,
> > GnuPG is able to read your signature that contains ID BBA8F8F5
> > Why is that?
> Because BBA8F8F5 is a subkey:
> pub  1024D/114AA85C 2003-04-14 Thomas Sjogren <thomas at northernsecurity.net>
> uid                            Thomas Sjogren <thomas at se.linux.org>
> sub  2048R/BBA8F8F5 2003-09-12 [expires: 2004-09-11]
> sub  2048R/D14F1B25 2003-09-12 [expires: 2004-09-11]
> sub  2048g/474D6F70 2003-04-14
> > If you would not have listed it in plain text, I would never have found
> > it.
> keyserver-options auto-key-retrieve include-subkeys would have,
> though.

Hmmm, does this mean I have to do it all in command line mode?

I am using GPA, (Gnu Privacy Assistant v. 0.6.1)

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : /pipermail/attachments/20040204/f48c8be5/attachment.bin

More information about the Gnupg-users mailing list