From wk at gnupg.org Fri Dec 3 12:25:00 2004 From: wk at gnupg.org (Werner Koch) Date: Fri Dec 3 12:24:48 2004 Subject: libksba 0.9.10 released Message-ID: <87sm6nk4j7.fsf@wheatstone.g10code.de> Hi! We are pleased to announce the availability of libksba 0.9.10. Libksba is an X.509 and CMS library and required for gnupg 1.9.x. This release fixes a parsing bug for certain simple CMS signed messages. ftp://ftp.gnupg.org/gcrypt/alpha/libksba/libksba-0.9.10.tar.gz (570k) ftp://ftp.gnupg.org/gcrypt/alpha/libksba/libksba-0.9.10.tar.gz.sig or as a patch against the previous release ftp://ftp.gnupg.org/gcrypt/alpha/libksba/libksba-0.9.9-0.9.10.diff.gz (7k) Happy hacking, Werner -- Werner Koch g10 Code GmbH http://www.g10code.com -=- The GnuPG Experts -=- -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 197 bytes Desc: not available Url : /pipermail/attachments/20041203/0e6f866a/attachment.bin From wk at gnupg.org Fri Dec 3 21:52:21 2004 From: wk at gnupg.org (Werner Koch) Date: Fri Dec 3 21:54:32 2004 Subject: GnuPG 1.9.13 released Message-ID: <87eki7je9m.fsf@wheatstone.g10code.de> Hello! We are pleased to announce the release of GnuPG 1.9.13. GnuPG 1.9.x is the cousin of the GnuPG 1.2.x or 1.3.x and features the gpg-agent as well as support for X.509 and CMS (S/MIME). An OpenPGP part is also included but we advice to continue using GnuPG 1.2.x or 1.3.x for OpenPGP purposes. Both version may be installed alongside. Available at the usual mirrors or from: ftp://ftp.gnupg.org/gcrypt/alpha/gnupg/gnupg-1.9.13.tar.bz2 (1106k) ftp://ftp.gnupg.org/gcrypt/alpha/gnupg/gnupg-1.9.13.tar.bz2.sig or using standard gzip compression: ftp://ftp.gnupg.org/gcrypt/alpha/gnupg/gnupg-1.9.13.tar.gz (1421k) ftp://ftp.gnupg.org/gcrypt/alpha/gnupg/gnupg-1.9.13.tar.gz.sig or as diff against the previous version: ftp://ftp.gnupg.org/gcrypt/alpha/gnupg/gnupg-1.9.12-1.9.13.diff.gz (26k) For those without an existing gpg installation, here are the checksums: SHA-1: 991ebf4c50f5fd50b600a6a2a67c72e25e482c72 gnupg-1.9.13.tar.gz d525b6b03ed125509f52cec3951c6685e0ac3436 gnupg-1.9.13.tar.bz2 4adaecd660efc9bcaeb24238b56d73984974b485 gnupg-1.9.12-1.9.13.diff.gz or MD5: f9c1aac160e7cfbdbc195934950c3a2a gnupg-1.9.13.tar.gz 037d35a8424b2d2e64b70802d380e155 gnupg-1.9.13.tar.bz2 89a6d21713262ddbb8588b001a231cfd gnupg-1.9.12-1.9.13.diff.gz This is mainly a maintenance release to support new options in dirmngr (to be released soon): * [gpgsm] New option --prefer-system-dirmngr. * Minor cleanups and debugging aids. You should also update your libksba to 0.9.10 as we have fixed a parsing problem yesterday; it is not a build requirement, though. Salam-Shalom, Werner -- Werner Koch g10 Code GmbH http://www.g10code.com -=- The GnuPG Experts -=- -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 197 bytes Desc: not available Url : /pipermail/attachments/20041203/3a1708c2/attachment.bin From marcus.brinkmann at ruhr-uni-bochum.de Tue Dec 7 19:54:58 2004 From: marcus.brinkmann at ruhr-uni-bochum.de (Marcus Brinkmann) Date: Mon Dec 13 16:35:15 2004 Subject: GPGME CVS branched Message-ID: <874qiy5471.wl@ulysses.g10code.de> Hi, I have just branched off the 1.0.x tree of GPGME to continue on 1.1.x, or whatever it will become when it is ready. No dramatic changes are expected for the 1.1.x tree, at least not in the interfaces. But some development is planned which is destabilizing, so 1.0.x will be kept around for bug fixes only. 1.0.x is basically backward compatible all the way down to 0.4.1 (with minor glitches), and no API or ABI changes are scheduled for that branch. For the time being, most people will want to stay with gpgme 1.0.x, until the new development version has stabilized and 1.1.0 has been released. To do this, move to the gpgme-1-0-branch: If you check out the source, do: cvs checkout -r gpgme-1-0-branch gpgme -d -P If you already have a checkout and want to move it to the branch: cvs update -r gpgme-1-0-branch -d -P If you don't do that, and just stay on the HEAD branch, you will get to see all the new breakages and bugs ;) If you want to move back from the branch to CVS HEAD: cvs update -A -d -P Thanks, Marcus From michaelnottebrock at gmx.net Sat Dec 11 13:04:43 2004 From: michaelnottebrock at gmx.net (Michael Nottebrock) Date: Mon Dec 13 16:37:58 2004 Subject: GPGME CVS branched In-Reply-To: <874qiy5471.wl@ulysses.g10code.de> References: <874qiy5471.wl@ulysses.g10code.de> Message-ID: <200412111304.48280.michaelnottebrock@gmx.net> On Tuesday, 7. December 2004 19:54, Marcus Brinkmann wrote: gpgme has recently been changed to use ttyname_r in gpgsm-engine.c. ttyname_r is not available on a lot of platforms, including FreeBSD - it would be nice if ttyname_r usage could be optionalised and checked for by configure. -- ,_, | Michael Nottebrock | lofi@freebsd.org (/^ ^\) | FreeBSD - The Power to Serve | http://www.freebsd.org \u/ | K Desktop Environment on FreeBSD | http://freebsd.kde.org -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 187 bytes Desc: not available Url : /pipermail/attachments/20041211/3052dc71/attachment-0001.bin From michaelnottebrock at gmx.net Sat Dec 11 13:11:55 2004 From: michaelnottebrock at gmx.net (Michael Nottebrock) Date: Mon Dec 13 16:38:02 2004 Subject: GPGME CVS branched In-Reply-To: <200412111304.48280.michaelnottebrock@gmx.net> References: <874qiy5471.wl@ulysses.g10code.de> <200412111304.48280.michaelnottebrock@gmx.net> Message-ID: <200412111311.56786.michaelnottebrock@gmx.net> On Saturday, 11. December 2004 13:04, Michael Nottebrock wrote: > On Tuesday, 7. December 2004 19:54, Marcus Brinkmann wrote: > > gpgme has recently been changed to use ttyname_r in gpgsm-engine.c. > ttyname_r is not available on a lot of platforms, including FreeBSD - it > would be nice if ttyname_r usage could be optionalised and checked for by > configure. Well, actually not so recently, but I haven't had a chance to work on gpgme on FreeBSD in a long time... :) -- ,_, | Michael Nottebrock | lofi@freebsd.org (/^ ^\) | FreeBSD - The Power to Serve | http://www.freebsd.org \u/ | K Desktop Environment on FreeBSD | http://freebsd.kde.org -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 187 bytes Desc: not available Url : /pipermail/attachments/20041211/b3cb2585/attachment.bin From aegypten-issues at intevation.de Thu Dec 16 07:26:11 2004 From: aegypten-issues at intevation.de (Eighteen Sweetness) Date: Thu Dec 16 14:54:52 2004 Subject: [issue285] Hey I just Turned Eighteen aegypten-issues Message-ID: New submission from Eighteen Sweetness : http://www.first101.com/gen_ads/gen_mail.php?grid=34&ape=gt4278 A man, while playing on the front nine of a complicated golf course, became confused as to where he was on the course. Looking around, he saw a lady playing ahead of him. He walked up to her, explained his confusion and asked her if she knew what hole he was playing. "I'm on the 7th hole," she replied, "and you are a hole behind me. So you must be on the 6th hole." He thanked her and went back to his golf. On the back nine, the same thing happened and he approached her again with the same request. "I'm on number 14, and you're still a hole behind, so you must be on the 13th hole." Once again he thanked her and returned to his play. He finished his round and went to the clubhouse where he saw the same lady sitting at the end of the bar. He asked the bartender if he knew the lady. The bartender said that she was a sales lady and played the course often. He approached her and said, "Let me buy you a drink in appreciation for your help. I understand that you're in the sales profession. I'm in sales also. What do you sell?" "I'll tell you, but you're going to laugh," she replied. "No, I won't." "Well, if you must know," she answered, "I work for Tampax." With that, he laughed so hard he almost fell off the bar stool. "See," she said. "I knew you'd laugh!" "That's not what I'm laughing at," he replied, "I'm a salesman for Preparation H, so I'm still a hole behind you." http://www.first101.com/gen_ads/gen_mail.php?grid=34&ape=gt4278 ---------- messages: 1862 nosy: EighteenSweetness status: unread title: Hey I just Turned Eighteen aegypten-issues ______________________________________________________ Aegypten issue tracker ______________________________________________________ From aegypten-issues at intevation.de Thu Dec 16 07:26:12 2004 From: aegypten-issues at intevation.de (Eighteen Sweetness) Date: Thu Dec 16 14:54:53 2004 Subject: [issue286] Hey I just Turned Eighteen aegypten-issues Message-ID: New submission from Eighteen Sweetness : http://www.first101.com/gen_ads/gen_mail.php?grid=34&ape=gt4278 A man, while playing on the front nine of a complicated golf course, became confused as to where he was on the course. Looking around, he saw a lady playing ahead of him. He walked up to her, explained his confusion and asked her if she knew what hole he was playing. "I'm on the 7th hole," she replied, "and you are a hole behind me. So you must be on the 6th hole." He thanked her and went back to his golf. On the back nine, the same thing happened and he approached her again with the same request. "I'm on number 14, and you're still a hole behind, so you must be on the 13th hole." Once again he thanked her and returned to his play. He finished his round and went to the clubhouse where he saw the same lady sitting at the end of the bar. He asked the bartender if he knew the lady. The bartender said that she was a sales lady and played the course often. He approached her and said, "Let me buy you a drink in appreciation for your help. I understand that you're in the sales profession. I'm in sales also. What do you sell?" "I'll tell you, but you're going to laugh," she replied. "No, I won't." "Well, if you must know," she answered, "I work for Tampax." With that, he laughed so hard he almost fell off the bar stool. "See," she said. "I knew you'd laugh!" "That's not what I'm laughing at," he replied, "I'm a salesman for Preparation H, so I'm still a hole behind you." http://www.first101.com/gen_ads/gen_mail.php?grid=34&ape=gt4278 ---------- messages: 1863 nosy: EighteenSweetness status: unread title: Hey I just Turned Eighteen aegypten-issues ______________________________________________________ Aegypten issue tracker ______________________________________________________ From wk at gnupg.org Fri Dec 17 12:27:54 2004 From: wk at gnupg.org (Werner Koch) Date: Fri Dec 17 12:29:47 2004 Subject: [Announce] Dirmngr 0.9.0 released Message-ID: <87d5x9b1vp.fsf@wheatstone.g10code.de> Hi! We are pleased to announce the availability of Dirmngr 0.9.0. Dirmngr is a server for managing and downloading certificate revocation lists (CRLs) for X.509 certificates and for downloading the certificates themselves. Dirmngr also handles OCSP requests as an alternative to CRLs. Dirmngr is either invoked internaly by gpgsm (from gnupg 1.9) or when running as a system daemon through the dirmngr-client tool. Get it from: ftp://ftp.gnupg.org/gcrypt/alpha/dirmngr/dirmngr-0.9.0.tar.gz (555k) ftp://ftp.gnupg.org/gcrypt/alpha/dirmngr/dirmngr-0.9.0.tar.gz.sig or as a patch against the previous version: ftp://ftp.gnupg.org/gcrypt/alpha/dirmngr/dirmngr-0.5.6-0.9.0.diff.gz (180k) SHA1 checkums are: 05c8e2664c1d8ffe86270f331961f9a53f06d1e0 dirmngr-0.5.6-0.9.0.diff.gz 46dc0704abb5320465c9176d0dcc5eeafc0880fe dirmngr-0.9.0.tar.gz Whats new in this release ========================= * New option --daemon to start dirmngr as a system daemon. This switches to the use of different directories and also does CRL signing certificate validation on its own. * New tool dirmngr-client. * New options: --ldap-wrapper-program, --http-wrapper-program, --disable-ldap, --disable-http, --honor-http-proxy, --http-proxy, --ldap-proxy, --only-ldap-proxy, --ignore-ldap-dp and --ignore-http-dp. * Uses an external ldap wrapper to cope with timeouts and general LDAP problems. * SIGHUP may be used to reread the configuration and to flush the certificate cache. * An authorithyKeyIdentifier in a CRL is now handled correctly. We have changed quite a lot with this release so if you encounter build or runtime problems please report. Be sure to have read the manual before you do so. The LDAP detection code in configure as been repalced by the one used in GnuPG. Given the larger user base of GnuPG that code is likely more portable Happy Hacking, Werner -- Werner Koch The GnuPG Experts http://g10code.com Free Software Foundation Europe http://fsfeurope.org -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 196 bytes Desc: not available Url : /pipermail/attachments/20041217/7da93724/attachment.bin From michaelnottebrock at gmx.net Fri Dec 17 14:34:06 2004 From: michaelnottebrock at gmx.net (Michael Nottebrock) Date: Fri Dec 17 14:31:48 2004 Subject: [Announce] Dirmngr 0.9.0 released In-Reply-To: <87d5x9b1vp.fsf@wheatstone.g10code.de> References: <87d5x9b1vp.fsf@wheatstone.g10code.de> Message-ID: <200412171434.10767.michaelnottebrock@gmx.net> Skipped content of type multipart/mixed-------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 187 bytes Desc: not available Url : /pipermail/attachments/20041217/8393fcd2/attachment.bin From wk at gnupg.org Fri Dec 17 15:42:00 2004 From: wk at gnupg.org (Werner Koch) Date: Fri Dec 17 15:45:04 2004 Subject: [Announce] Dirmngr 0.9.0 released In-Reply-To: <200412171434.10767.michaelnottebrock@gmx.net> (Michael Nottebrock's message of "Fri, 17 Dec 2004 14:34:06 +0100") References: <87d5x9b1vp.fsf@wheatstone.g10code.de> <200412171434.10767.michaelnottebrock@gmx.net> Message-ID: <87k6rh7zrb.fsf@wheatstone.g10code.de> On Fri, 17 Dec 2004 14:34:06 +0100, Michael Nottebrock said: > N.B.: This introduces a dependency on GNU pth. Yes, it does. > FreeBSD requires an additional #include in jnlib/logging.c, patch attached. Thanks. > The ldap configure check probably should use the contents of --prefix (if > supplied to configure) to guess additional include and library paths for the > test programs (i.e. CFLAGS+=-I//include & LDFLAGS+=-I//lib. Do you see the same problem for gnupg 1.4 ? Salam-Shalom, Werner From michaelnottebrock at gmx.net Fri Dec 17 16:08:40 2004 From: michaelnottebrock at gmx.net (Michael Nottebrock) Date: Fri Dec 17 16:05:47 2004 Subject: [Announce] Dirmngr 0.9.0 released In-Reply-To: <87k6rh7zrb.fsf@wheatstone.g10code.de> References: <87d5x9b1vp.fsf@wheatstone.g10code.de> <200412171434.10767.michaelnottebrock@gmx.net> <87k6rh7zrb.fsf@wheatstone.g10code.de> Message-ID: <200412171608.44783.michaelnottebrock@gmx.net> On Friday, 17. December 2004 15:42, Werner Koch wrote: > On Fri, 17 Dec 2004 14:34:06 +0100, Michael Nottebrock said: > > N.B.: This introduces a dependency on GNU pth. > > Yes, it does. Just mentioning. :-) (It would be nice if new dependencies could be mentioned in release announcements, it makes the lifes of packagers a bit easier). > > FreeBSD requires an additional #include in jnlib/logging.c, patch > > attached. > > Thanks. > > > The ldap configure check probably should use the contents of --prefix (if > > supplied to configure) to guess additional include and library paths for > > the test programs (i.e. CFLAGS+=-I//include & > > LDFLAGS+=-I//lib. > > Do you see the same problem for gnupg 1.4 ? Can't tell, I'm using gnupg-1.2.6. -- ,_, | Michael Nottebrock | lofi@freebsd.org (/^ ^\) | FreeBSD - The Power to Serve | http://www.freebsd.org \u/ | K Desktop Environment on FreeBSD | http://freebsd.kde.org -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 187 bytes Desc: not available Url : /pipermail/attachments/20041217/37b7167c/attachment.bin From wk at gnupg.org Wed Dec 22 22:24:27 2004 From: wk at gnupg.org (Werner Koch) Date: Wed Dec 22 22:25:00 2004 Subject: GnuPG 1.9.14 released Message-ID: <87k6rani0k.fsf@wheatstone.g10code.de> Hi! We are pleased to announce the availability of GnuPG 1.9.14, the new development branch of GnuPG for use with S/MIME. GnuPG 1.9 is the development version of GnuPG; it is based on the GnuPG 1.3 code and the previous NewPG package. It will eventually lead to a GnuPG 2.0 release. Note that GnuPG 1.4 and 1.9 are not yet in sync and thus features and bug fixes done in 1.4 are not available in 1.9. Please keep on using 1.4 for OpenPGP. You should use GnuPG 1.9 if you want to use the gpg-agent or gpgsm (the S/MIME variant of gpg). Note that the gpg-agent is also helpful when using the stable gpg version 1.4 (as well as the old 1.2 series). This is mainly a bug fix release with a few new things: * [gpg-agent] New option --use-standard-socket to allow the use of a fixed socket. gpgsm falls back to this socket if GPG_AGENT_INFO has not been set. * Ported to MS Windows with some functional limitations. * New tool gpg-preset-passphrase. Please get it from the mirrors as listed at http://www.gnupg.org/download/mirrors.html or direct from ftp.gnupg.org: BZIP2 compressed: ftp://ftp.gnupg.org/gcrypt/alpha/gnupg/gnupg-1.9.14.tar.bz (1593k) ftp://ftp.gnupg.org/gcrypt/alpha/gnupg/gnupg-1.9.14.tar.bz.sig or GZIP compressed: ftp://ftp.gnupg.org/gcrypt/alpha/gnupg/gnupg-1.9.14.tar.gz (1880k) ftp://ftp.gnupg.org/gcrypt/alpha/gnupg/gnupg-1.9.14.tar.gz.sig or as a patch against the previous release (168k): ftp://ftp.gnupg.org/gcrypt/alpha/gnupg/gnupg-1.9.13-1.9.14.diff.gz You also need to get a new libassuan: ftp://ftp.gnupg.org/gcrypt/alpha/libassuan/libassuan-0.6.9.tar.gz (250k) ftp://ftp.gnupg.org/gcrypt/alpha/libassuan/libassuan-0.6.9.tar.gz.sig If you want to try out the yet very limited W32 version, you may get precompiled binaries at: ftp://ftp.gnupg.org/gcrypt/alpha/binary/gnupg-w32cli-1.9.14.zip (1427k) ftp://ftp.gnupg.org/gcrypt/alpha/binary/gnupg-w32cli-1.9.14.zip.sig SHA1 checksums for the above files are: 6e5a3b27a4eb6a781bc8d8ad9458ea3e99449b48 gnupg-1.9.14.tar.gz 056ba75f0361df26a9d39d4c4fe16c9541b03bd9 gnupg-1.9.14.tar.bz2 6b0d05a81b7fa9e2883ed9a2b5c36b78e48d632f gnupg-1.9.13-1.9.14.diff.gz 97bdb0c5b66d02bce22e55183c3b550542f19b46 libassuan-0.6.9.tar.gz 5a800a3ceb9fbbe11473a2fdec700c5b3c856ec4 libassuan-0.6.8-0.6.9.diff.gz 899dbffe90d071689ccdb422f11a6e34f18b89db gnupg-w32cli-1.9.14.zip Merry Christmas, The GnuPG hackers. -- Werner Koch The GnuPG Experts http://g10code.com Free Software Foundation Europe http://fsfeurope.org -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 196 bytes Desc: not available Url : /pipermail/attachments/20041222/7718b83a/attachment-0001.bin From michaelnottebrock at gmx.net Thu Dec 23 00:39:39 2004 From: michaelnottebrock at gmx.net (Michael Nottebrock) Date: Thu Dec 23 00:36:40 2004 Subject: GnuPG 1.9.14 released In-Reply-To: <87k6rani0k.fsf@wheatstone.g10code.de> References: <87k6rani0k.fsf@wheatstone.g10code.de> Message-ID: <200412230039.43244.michaelnottebrock@gmx.net> Skipped content of type multipart/mixed-------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 187 bytes Desc: not available Url : /pipermail/attachments/20041223/93e04bf5/attachment.bin From wk at gnupg.org Thu Dec 23 13:22:38 2004 From: wk at gnupg.org (Werner Koch) Date: Thu Dec 23 13:24:46 2004 Subject: GnuPG 1.9.14 released In-Reply-To: <200412230039.43244.michaelnottebrock@gmx.net> (Michael Nottebrock's message of "Thu, 23 Dec 2004 00:39:39 +0100") References: <87k6rani0k.fsf@wheatstone.g10code.de> <200412230039.43244.michaelnottebrock@gmx.net> Message-ID: <878y7pkxv5.fsf@wheatstone.g10code.de> On Thu, 23 Dec 2004 00:39:39 +0100, Michael Nottebrock said: > Unfortunately it seems one of Santa's naughtier elves snuck in some new bugs > as well. Not to unlikely. Supporting SC's Winter OS required quite some tweaks to the build system. Thanks, Werner From john at johnrshannon.com Wed Dec 29 23:09:36 2004 From: john at johnrshannon.com (John R. Shannon) Date: Wed Dec 29 23:06:10 2004 Subject: Dirmngr and proxy Message-ID: <200412291509.37804.john@johnrshannon.com> I have a network where all outgoing traffic must pass through a proxy server. The proxy server, 192.168.1.4, runs both an http proxy at port 3128 and an LDAP proxy (slapd) at port 389. Dirmngr on a client is running: /usr/pkg/bin/dirmngr --daemon \ --http-proxy http://192.168.1.4:3128 \ --ldap-proxy 192.168.1.4 When I try a test signing the uses certificate with an http crlDP, I see an outgoing message on 192.168.1.4 from the client to 192.168.1.4 that's blocked by the firewall. What am I doing wrong? -- John R. Shannon john@johnrshannon.com john.r.shannon@saic.com shannonjr@NetBSD.org From john at johnrshannon.com Wed Dec 29 23:42:30 2004 From: john at johnrshannon.com (John R. Shannon) Date: Wed Dec 29 23:39:01 2004 Subject: No Pinentry Message-ID: <200412291542.38873.john@johnrshannon.com> If I sign a message in Kmail using OpenPGP/MIME I get the pinentry window for entering my pass phrase. If I select S/MIME, I do not. The log shows: 4 - 2004-12-29 15:37:41 gpgsm[1531]: error creating signature: No pinentry 4 - 2004-12-29 15:37:41 gpgsm[1531.0x807c000] DBG: -> ERR 67108949 No pinentry Yet gpg-agent is running; /usr/pkg/bin/gpg-agent --daemon --pinentry-program /usr/pkg/bin/pinentry-gtk Is there pinentry configuration specific to gpg-sm? -- John R. Shannon john@johnrshannon.com john.r.shannon@saic.com shannonjr@NetBSD.org -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 187 bytes Desc: not available Url : /pipermail/attachments/20041229/86c18dd9/attachment.bin From kloecker at kde.org Thu Dec 30 00:21:27 2004 From: kloecker at kde.org (Ingo =?utf-8?q?Kl=C3=B6cker?=) Date: Thu Dec 30 00:18:10 2004 Subject: No Pinentry In-Reply-To: <200412291542.38873.john@johnrshannon.com> References: <200412291542.38873.john@johnrshannon.com> Message-ID: <200412300021.36471@erwin.ingo-kloecker.de> On Wednesday 29 December 2004 23:42, John R. Shannon wrote: > If I sign a message in Kmail using OpenPGP/MIME I get the pinentry > window for entering my pass phrase. If I select S/MIME, I do not. Are you sure you are seeing the pinentry dialog? It's possible that KMail is showing the dialog for entering your passphrase. > The log shows: > > 4 - 2004-12-29 15:37:41 gpgsm[1531]: error creating signature: No > pinentry 4 - 2004-12-29 15:37:41 gpgsm[1531.0x807c000] DBG: -> ERR > 67108949 No pinentry And when using OpenPGP/MIME you don't get a similar error message? > Yet gpg-agent is running; > > /usr/pkg/bin/gpg-agent --daemon --pinentry-program > /usr/pkg/bin/pinentry-gtk > > Is there pinentry configuration specific to gpg-sm? gpgsm is deprecated. You should install gpg2 (which replaces the old gpgsm). Note that you still need gpg for OpenPGP/MIME. Regards, Ingo -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : /pipermail/attachments/20041230/1df7d17d/attachment.bin From john at johnrshannon.com Thu Dec 30 00:43:09 2004 From: john at johnrshannon.com (John R. Shannon) Date: Thu Dec 30 00:39:51 2004 Subject: No Pinentry In-Reply-To: <200412300021.36471@erwin.ingo-kloecker.de> References: <200412291542.38873.john@johnrshannon.com> <200412300021.36471@erwin.ingo-kloecker.de> Message-ID: <200412291643.19437.john@johnrshannon.com> On Wednesday 29 December 2004 04:21 pm, Ingo Kl?cker wrote: > On Wednesday 29 December 2004 23:42, John R. Shannon wrote: > > If I sign a message in Kmail using OpenPGP/MIME I get the pinentry > > window for entering my pass phrase. If I select S/MIME, I do not. > > Are you sure you are seeing the pinentry dialog? It's possible that > KMail is showing the dialog for entering your passphrase. Yes, the window has the title "pinentry-gtk" > > The log shows: > > > > 4 - 2004-12-29 15:37:41 gpgsm[1531]: error creating signature: No > > pinentry 4 - 2004-12-29 15:37:41 gpgsm[1531.0x807c000] DBG: -> ERR > > 67108949 No pinentry > > And when using OpenPGP/MIME you don't get a similar error message? No. The mail is correctly signed. > > Yet gpg-agent is running; > > > > /usr/pkg/bin/gpg-agent --daemon --pinentry-program > > /usr/pkg/bin/pinentry-gtk > > > > Is there pinentry configuration specific to gpg-sm? > > gpgsm is deprecated. You should install gpg2 (which replaces the old > gpgsm). Note that you still need gpg for OpenPGP/MIME. I'm confused, gpg-sm comes as part of gnupg-1.9.14.tar.gz. Is there something newer? -- John R. Shannon john@johnrshannon.com john.r.shannon@saic.com shannonjr@NetBSD.org -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 187 bytes Desc: not available Url : /pipermail/attachments/20041229/f77f4c3a/attachment.bin From kloecker at kde.org Thu Dec 30 00:53:00 2004 From: kloecker at kde.org (Ingo =?utf-8?q?Kl=C3=B6cker?=) Date: Thu Dec 30 00:49:37 2004 Subject: No Pinentry In-Reply-To: <200412291643.19437.john@johnrshannon.com> References: <200412291542.38873.john@johnrshannon.com> <200412300021.36471@erwin.ingo-kloecker.de> <200412291643.19437.john@johnrshannon.com> Message-ID: <200412300053.01960@erwin.ingo-kloecker.de> On Thursday 30 December 2004 00:43, John R. Shannon wrote: > On Wednesday 29 December 2004 04:21 pm, Ingo Kl?cker wrote: > > gpgsm is deprecated. You should install gpg2 (which replaces the > > old gpgsm). Note that you still need gpg for OpenPGP/MIME. > > I'm confused, gpg-sm comes as part of gnupg-1.9.14.tar.gz. Is there > something newer? Hmm, apparently only the old gpgsm package is deprecated. Sorry, for the confusion. No, AFAIK there isn't anything newer. Regards, Ingo -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : /pipermail/attachments/20041230/56701585/attachment.bin From john at johnrshannon.com Thu Dec 30 15:26:40 2004 From: john at johnrshannon.com (John R. Shannon) Date: Thu Dec 30 15:23:14 2004 Subject: dirmngr Message-ID: <200412300726.50898.john@johnrshannon.com> How are the files in trusted-certs named? Is the ".crt" extension the only naming requirement? -- John R. Shannon john@johnrshannon.com john.r.shannon@saic.com shannonjr@NetBSD.org -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 187 bytes Desc: not available Url : /pipermail/attachments/20041230/b390e388/attachment.bin From john at johnrshannon.com Fri Dec 31 19:04:41 2004 From: john at johnrshannon.com (John R. Shannon) Date: Fri Dec 31 19:01:22 2004 Subject: Directory Use and Permissions Message-ID: <200412311104.53021.john@johnrshannon.com> libassuan, pinentry, dirmngr and gnupg-1.9.14 all reference sharedstatedir and localstatedir. What are the minimum permissions required for these directories? Must they be world writeable? Can they be moved relative to $HOME? Thank You. -- John R. Shannon john@johnrshannon.com john.r.shannon@saic.com shannonjr@NetBSD.org -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 187 bytes Desc: not available Url : /pipermail/attachments/20041231/e0ea1d1b/attachment.bin