Decrypt Issue

Diaz, John, A JDiaz at azdes.gov
Wed Sep 25 18:36:13 CEST 2013 

Good morning Paul.  Some progress, but there is still an issue that I can’t identify:

C:\Program Files\GNU\GnuPG\pub>gpg.exe --batch --passphrase ‘the passphrase’ -o D:\divisions\DTS\FMCS\Test\Upload\VJCFC20E\VJCFC20E_ETETime.txt -v –decrypt D:\Divisions\DTS\FMCS\Test\Download\HRIS_SIE_Files\DE-ETE-.pgp

gpg: armor header: Version: GnuPG v1.4.9 (AIX)
gpg: public key is 07F7097A
gpg: using subkey 07F7097A instead of primary key AB96877A
gpg: using subkey 07F7097A instead of primary key AB96877A
gpg: encrypted with 2048-bit ELG key, ID 07F7097A, created 2007-05-25       "FMCSFTPKey <email-address>"
gpg: AES256 encrypted data
gpg: original file name='DE-ETE-.'
gpg: handle plaintext failed: General error

BTW, I can manually decrypt the file

From: Diaz, John, A
Sent: Tuesday, September 10, 2013 6:42 AM
To: 'Paul R. Ramer'
Cc: gnupg-users at gnupg.org
Subject: RE: Decrypt Issue

Spoke too soon.  The wrong path was part of the problem, but I’m still having the issue:


Mainframe calls .bat file that calls C# application that calls second .bat file to call GnuPG to decrypt a file. Once decrypted, other stuff happens, e-mails are sent, blah, blah, blah.

Here's the issue: When the mainframe calls the .bat file to start the process, the decryption returns:
Decrypt error :gpg: armor header: Version: GnuPG v1.4.9 (AIX)
gpg: public key is 07F7097A
gpg: encrypted with ELG-E key, ID 07F7097A
gpg: decryption failed: secret key not available



If I RDP into the server with the credentials specified in the mainframe JCL, I see this from the decrypt:

gpg: armor header: Version: GnuPG v1.4.9 (AIX)



gpg: public key is 07F7097A

gpg: using subkey 07F7097A instead of primary key AB96877A

gpg: using subkey 07F7097A instead of primary key AB96877A

gpg: encrypted with 2048-bit ELG key, ID 07F7097A, created 2007-05-25

      "FMCSFTPKey <e-mail address>"

gpg: AES256 encrypted data

gpg: original file name='DE-ETE-090313'



What do I need to do, or have the owners of the encrypted data do, to resolve this?



From: Paul R. Ramer [mailto:free10pro at gmail.com]
Sent: Tuesday, September 10, 2013 12:46 AM
To: Diaz, John, A
Cc: gnupg-users at gnupg.org<mailto:gnupg-users at gnupg.org>
Subject: RE: Decrypt Issue

"Diaz, John, A" <JDiaz at azdes.gov<mailto:JDiaz at azdes.gov>> wrote:

Paul, got it figured out.  Programmer too stupid.  The path to gpg.exe had changed, and I didn't catch it.

-----Original Message-----
From: Paul R. Ramer [mailto:free10pro at gmail.com]
Sent: Saturday, September 07, 2013 2:22 PM
To: Diaz, John, A
Cc: gnupg-users at gnupg.org<mailto:gnupg-users at gnupg.org>
Subject: Re: Decrypt Issue

On 09/04/2013 01:54 PM, Diaz, John, A wrote:

Mainframe calls .bat file that calls C# application that calls second .bat file to call GnuPG to decrypt a file. Once decrypted, other stuff happens, e-mails are sent, blah, blah, blah.

Here's the issue: When the mainframe calls the .bat file to start the process, the decryption returns:
Decrypt error :gpg: armor header: Version: GnuPG v1.4.9 (AIX)
gpg: public key is 07F7097A
gpg: encrypted with ELG-E key, ID 07F7097A
gpg:

decryption failed: secret key not available

if I list the keys on the server that this is running I see the key listed.

Here's the goofy part: If I login to the server with the credentials that the mainframe uses to call the first .bat file, and manually run the .bat file that starts the whole process, it runs correctly.

Hello John,

When you say that you log in to the server,  are you logging into a user account on the server?  And do you get a command prompt (i.e. you are ssh-ing into your server)?

Cheers,

--Paul

--
PGP: 0x3DB6D884
PGP Fingerprint: EBA7 88B3 6D98 2D4A E045  A9F7 C7C6 6ADF 3DB6 D884

________________________________


NOTICE: This e-mail (and any attachments) may contain PRIVILEGED OR CONFIDENTIAL information and is intended only for the use of the specific individual(s) to whom it is addressed. It may contain information that is privileged and confidential under state and

federal law. This information may be used or disclosed only in accordance with law, and you may be subject to penalties under law for improper use or further disclosure of the information in this e-mail and its attachments. If you have received this e-mail in error, please immediately notify the person named above by reply e-mail, and then delete the original e-mail. Thank you.

Well, I am glad you figured it out. :-)

Cheers,

--Paul
--
Sent from my Android device with K-9 Mail. Please excuse my brevity.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: </pipermail/attachments/20130925/b3270fa6/attachment-0001.html>

More information about the Gnupg-users mailing list