Tor Support for SKSkeyservers in 2.1

Werner Koch wk at gnupg.org
Tue Dec 15 19:43:32 CET 2015


On Mon, 14 Dec 2015 06:20, bober_182 at riseup.net said:

> keyserver-options http-proxy=socks5-hostname://127.0.0.1:9050

A http proxy is not a socks proxy.  These are different concepts.  Tor
is implemented as a socks proxy and GnuPG before version 2.1.10 has no
support for this.  See Malte's mails on how to work around this.

Note that the Tor support in 2.1.10 depends on how GnuPG was build.
Unless you are using the Windows installer you need to build against a
patched version of the ADNS library.

However, for all platforms you can use keyservers behind a onion address
- this works even if you do not put "use-tor" into dirmngr.conf.
Instead put 

 keyserver hkp://dyh2j3qyrirn43iw.onion

into dirmngr.conf and do _not_ put a keyserver option into gpg.conf.


Shalom-Salam,

   Werner

-- 
Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 180 bytes
Desc: not available
URL: </pipermail/attachments/20151215/179b886d/attachment.sig>


More information about the Gnupg-users mailing list