question about hkp protocol

kurt c kurtc1972 at gmail.com
Fri Jul 18 09:35:54 CEST 2008 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

John Clizbe wrote:
> kurt c wrote:
>> "sending of keys failed
>> gpgkeys: this keyserver type only supports key retrieval
>> gpg: sending key -------- to hkp server keyserver.pramberger.at
> 
> There is ABSOLUTELY NO security benefit to hiding the key ID. It only makes
> those trying to help you have a more difficult task. You signed an earlier
> message, anyone can get the key ID from that, 0x8E758D5F.
> 
>> gpg: keyserver communications error: file read error
>> gpg: keyserver send failed: file read error"
>>
>> This happened with every keyserver I chose, so I don't think it is a
>> problem with keyserver, but with me. What exactly am I missing here? Do
>> you know?
> 
> I know from the message you signed that you're running GnuPG 1.4.7.
> Are you by chance running Windows Vista?
> 
> I so, you need to upgrade GnuPG to version 1.4.9. There's a bug in keyserver
> access for which the fix was committed a couple weeks after 1.4.7's release.
> 1.4.8 has a security issue fixed in 1.4.9. You may get the installer at
> 
>   ftp://ftp.gnupg.org/gcrypt/binary/gnupg-w32cli-1.4.9.exe
> 
>> And when I opened up my command prompt and typed in the command you
>> suggested, I got the reply that "pgp is not a valid internal or external
>                                    ^^^
> You typed pgp. The command is gpg. I even edited it for your keyID.
> Copy and paste the exact command
> 
>   gpg --keyserver keyserver.gingerbear.net --send-key 0x8E758D5F
> 
> If gpg is not found on your path, it will be necessary to change to the
> directory where you installed GnuPG, usually C:\Program Files\Gnu\GnuPG
> 
>> command". Is there some configuration of environment variable or
>> something like that which I need to do beforehand?
> 
Hi John, I really want to thank you for all your thorough explanations.

Yes, I did upgrade, and I have successfully sent in my public key to
keyservers using OpenPGP key management in my Enigmail, although I still
couldn't export the key to keyservers using my gpg4win GPA (getting the
same message: "no plugin available for this protocol") -- but you don't
care about the GPA -- nor using the command line. I really don't know
why. If someone else can explain why the latter two mechanisms don't
work, please do. Thanks.

Thank you John for your patience with my beginner frustration. (And I
wasn't trying to hide my keyID, but just too lazy to type it.)

Lawrence
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAkiAR9oACgkQE7PX/Y51jV9GaQCgmw3oEonPDC3htZg2USCNGttB
LpEAoJHwgNS3qKW3ZrO24RT81sOyloBa
=C/nw
-----END PGP SIGNATURE-----

More information about the Gnupg-users mailing list