From user at domain.invalid Sun Jun 1 06:57:41 2008 From: user at domain.invalid (user at domain.invalid) Date: Sun, 01 Jun 2008 08:57:41 -0500 Subject: [Enigmail] Signing Messages Message-ID: Enigmail will not verify a signed email. It decrypt okay but gives an error on just a signed messages. Checking the same emails with Winpt shows good sigs so the messages would appear to formated okay (they are signed using the Enigmail add-on). Actually I never had this issue before 0.95.6, I know previous build worked okay but it has been awhile since I had a signed message. ?? Thanks From Cheef-Daniel at freenet.de Sun Jun 1 18:34:45 2008 From: Cheef-Daniel at freenet.de (Daniel) Date: Mon, 02 Jun 2008 03:34:45 +0200 Subject: [Enigmail] my signature does not verify! In-Reply-To: References: <481AD0E4.5080608@upf.edu> <481AD631.2070909@hammernoch.net> <481ADB79.6040805@upf.edu> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 John W. Moore III schrieb: > 1st.... Is this 'Bug' an "Operator Assisted Failure" or an actual > failure of Enigmail? Have You Set the proper Line/Word wrap within > Thunderbird under 'Account Settings' to 70 or 72 so that the Text > presented to gpg.exe is 'suitable'? Sorry for not answering this long time, I didn't relaize that I got answers, got no mail. I think your tip setting the Word wrap back to 70 fixed it. I set it to 300 earlier beacuse I didn't know that gpg depends on 70. Is there any reason why this is fixed to 70, can I increase this setting somewhere? -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEcBAEBAgAGBQJIQ040AAoJEGlVt4JuPoo8ycgIANGmi5qTN5/2aVGUzcnS8f3j /F63lxyrdzpcfA7OGm6NS4Kh2NIdYLUOogm9QJHq3HeWWgsKhB27RzsQc0ikyoe4 4cCzjm7UvdU6hnmyempTBeA2IVw9GD6uPbD+SBzQx7IqV5nsZZdG0+9bgMrx4jg2 CVyVIC3m0zZbNrULdxJWvJFD+waex6SKK8QKudlxQt95CxMPKJYtsE1JIgX6tka8 Ff/7lmwHONYebt4xmRJTQS0NnPN94I4lDHBNJl+DS6E9uMV0oi9fT0okyfz6s+XZ AzbsEWzsp4XdOMKaO81umWDVHkXeYdl5F7UV95ZHo6a+3gCAcbZUb5feKlOAsNg= =Klhq -----END PGP SIGNATURE----- From Cheef-Daniel at freenet.de Sun Jun 1 18:38:41 2008 From: Cheef-Daniel at freenet.de (Daniel) Date: Mon, 02 Jun 2008 03:38:41 +0200 Subject: [Enigmail] my signature does not verify! In-Reply-To: References: <481AD0E4.5080608@upf.edu> <481AD631.2070909@hammernoch.net> <481ADB79.6040805@upf.edu> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 the last mail was send with 300 chars word wrap, this mail with 70. Why are now both has valid signatures? I dont understand it. I still have to do some more tests, to check when it will fail again. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEcBAEBAgAGBQJIQ08hAAoJEGlVt4JuPoo86m8IALWb8i46a42a7vcoT1BfLHEm MfatbdvNslZSkQHxmUA4zg9/7TRev2n09ZkNsAOVjGxLZ85If0oeXVSuxvICpLUi tpS1qYR47kvFNkuZQ4OtMXE18+X/9NH/Bact9yEU8tYa9PpmdQqAED4VPSaEM3BK +zqUPvqTYdAA4M9mkFQbkPH7JzMZ5EwdiNU9VUZdTuQDZMKZbr44hQHd8Nr69ZLq hnAkhTn139SpSHCmLu6VaAVYr0ee38D0X2jF3XLF+QEdriT29EkrlbjFw/nO83WH bHA0EpadW1lu0V5duaqaQEEVq7/fSF672vhR7D9DVJoMdlOOz5GNle/wGXPdvWI= =0wCB -----END PGP SIGNATURE----- From jeandavid8 at verizon.net Sun Jun 1 12:16:42 2008 From: jeandavid8 at verizon.net (Jean-David Beyer) Date: Sun, 01 Jun 2008 15:16:42 -0400 Subject: [Enigmail] Signing Messages In-Reply-To: References: Message-ID: <4842F59A.2000804@verizon.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 user at domain.invalid wrote: > Enigmail will not verify a signed email. It decrypt okay but gives an > error on just a signed messages. Checking the same emails with Winpt > shows good sigs so the messages would appear to formated okay (they are > signed using the Enigmail add-on). > > Actually I never had this issue before 0.95.6, I know previous build > worked okay but it has been awhile since I had a signed message. > I am currently running version 1.5.0.9 Thunderbird and Enigmail version 0.94.4.0 that are, I believe, the latest for my distro RHEL 5.2. So this probably does not matter to you, but I will sign this message it that helps. - -- .~. Jean-David Beyer Registered Linux User 85642. /V\ PGP-Key: 9A2FC99A Registered Machine 241939. /( )\ Shrewsbury, New Jersey http://counter.li.org ^^-^^ 15:10:01 up 10 days, 5:07, 4 users, load average: 4.37, 4.31, 4.22 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (GNU/Linux) Comment: Using GnuPG with CentOS - http://enigmail.mozdev.org iD8DBQFIQvWaPtu2XpovyZoRAuRuAKCdrrdEpwfZSqcS9NcLG1OagxARcwCgojS+ JQ2e1Umy+DmNWFpBt+OALyg= =x07G -----END PGP SIGNATURE----- From olav at mozilla-enigmail.org Sun Jun 1 14:03:42 2008 From: olav at mozilla-enigmail.org (Olav Seyfarth) Date: Sun, 01 Jun 2008 23:03:42 +0200 Subject: [Enigmail] Signing Messages In-Reply-To: References: Message-ID: <48430EAE.9070101@mozilla-enigmail.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Hi user at domain.invalid (!?), > Enigmail will not verify a signed email. It decrypt okay but gives an > error on just a signed messages. Checking the same emails with Winpt > shows good sigs so the messages would appear to formated okay (they are > signed using the Enigmail add-on). What error? > Actually I never had this issue before 0.95.6, I know previous build > worked okay but it has been awhile since I had a signed message. Olav -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Diese ist eine Digitale Signatur nach OpenPGP-Standard Comment: Weitere Informationen: http://privat.seyfarth.de/olav/schluessel.html iEYEAREIAAYFAkhDDqwACgkQL/NBt8fdKe1W6ACfXTWiZ+TO8HgQxQxp5qS+L4vc pD0An2TIC2pMUKIdYArqZFci4DoNPyO7 =FDFy -----END PGP SIGNATURE----- From faramir.cl at gmail.com Sun Jun 1 19:41:36 2008 From: faramir.cl at gmail.com (Faramir) Date: Sun, 01 Jun 2008 22:41:36 -0400 Subject: [Enigmail] my signature does not verify! In-Reply-To: References: <481AD0E4.5080608@upf.edu> <481AD631.2070909@hammernoch.net> <481ADB79.6040805@upf.edu> Message-ID: <48435DE0.6090403@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Daniel escribi?: > John W. Moore III schrieb: >> 1st.... Is this 'Bug' an "Operator Assisted Failure" or an actual >> failure of Enigmail? Have You Set the proper Line/Word wrap within >> Thunderbird under 'Account Settings' to 70 or 72 so that the Text >> presented to gpg.exe is 'suitable'? > > Sorry for not answering this long time, I didn't relaize that I got answers, got no mail. > > I think your tip setting the Word wrap back to 70 fixed it. I set it to 300 earlier beacuse I didn't know that gpg depends on 70. > Is there any reason why this is fixed to 70, can I increase this setting somewhere? I don't know, but since the signature block is 64 characters width, probably there is some relation between both things... And about using 300, I don't know what resolution are you using, but with 1024x768, 300 seems a bit too much... Or maybe I am just misunderstanding the whole thing... -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEcBAEBAgAGBQJIQ13gAAoJEMV4f6PvczxAie0H/1n+PBW9Z/gt/UIo66rKVZkM YViZ7SZbj8IIbVn+QOpHqoIoZVnrM5k/q6U3th9di0esPctIwdboQCZH4/edVi94 G9VmmvhxFAbtH/xN1H6sGi7hwpIPb8wdWx4IYvyU5tx9QV17qq8XNi/ahl8dX93G sVDBpu17cz+LQal9dYMvHVCirUeJFe8XA4JZAya8YhXCA5125CTSE/Aky36sD8KX B5iGlUtLPN6bGrODaDMP8As6Erf8VvkO336Hhwv0rOqlEkT+xBDfVNmqwlUoPb8H RrgV2jZACWnsyNO/engcoZ+u6Ln+n8vHRF75KybdbmrJhIPMIGWKSbc6zDBeZaA= =tQbs -----END PGP SIGNATURE----- From rjh at sixdemonbag.org Sun Jun 1 19:32:44 2008 From: rjh at sixdemonbag.org (Robert J. Hansen) Date: Sun, 01 Jun 2008 21:32:44 -0500 Subject: [Enigmail] my signature does not verify! In-Reply-To: References: <481AD0E4.5080608@upf.edu> <481AD631.2070909@hammernoch.net> <481ADB79.6040805@upf.edu> Message-ID: <48435BCC.1010608@sixdemonbag.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Daniel wrote: > I still have to do some more tests, to check when it will fail again. Also, please upgrade GnuPG to version 1.4.9. A security bug was introduced in the 1.4.8 release. -----BEGIN PGP SIGNATURE----- iQEcBAEBCAAGBQJIQ1vMAAoJELcA9IL+r4EJAcQIAOJD6kkSOcoLyIfC8a+o5Ut4 /AgjU3kdyOwCB4ve7atlFjNKaSq1ODf47vuNb9sqYM348g1O8/3mtT1U6X5KSXkR Mx0V+Tb90JTm4mFhBLGAxw+PUinShzyuJ2QkvvBGXYj3sG1CWvtcalqgs6adjt/w kW8384T6EAFn1ICMnX2ntjjNkj29uxkk1xCOAEjJE6E/WYWo98VPqHhzImMcaMKX sxSzVr7qg1IghNe5oiXQ3JE3usL7iGgXBlpw9LDBDDFqvTn/azqYgVxSbATo5Rw+ jYUPjkbFgz110SFFfFI10wYWZ+SKoEgOK4kn18wWv8YBhAKhYW93AeezwHIiujk= =khSC -----END PGP SIGNATURE----- From jmoore3rd at bellsouth.net Sun Jun 1 20:22:46 2008 From: jmoore3rd at bellsouth.net (John W. Moore III) Date: Sun, 01 Jun 2008 23:22:46 -0400 Subject: [Enigmail] my signature does not verify! In-Reply-To: References: <481AD0E4.5080608@upf.edu> <481AD631.2070909@hammernoch.net> <481ADB79.6040805@upf.edu> Message-ID: <48436786.3010200@bellsouth.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Daniel wrote: > the last mail was send with 300 chars word wrap, this mail with 70. > Why are now both has valid signatures? I dont understand it. > > I still have to do some more tests, to check when it will fail again. One major difference is that without the line wraps 'set' by having the Setting at 70 or 72 then when hitting Reply Your message is reduced to 1 or 2 loooong lines that run off the edge of the screen forever. :-\ The Main Reason is that GPG 'looks' for concise blocks of text when Encrypting Inline. Word Wrap isn't important when sending with PGP/MIME but many Mail Clients cannot handle/Open PGP/MIME. Notably, Outlook, Outlook Express and Windows Mail. [Windows Mail replaced OE in Vista] JOHN ;) Timestamp: Sunday 01 Jun 2008, 23:22 --400 (Eastern Daylight Time) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.5.0-svn4754: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIQ2eFAAoJEBCGy9eAtCsP2EgH/A6e0G3YHfURvIHzDbu7Q4zr HchApcieP6yJulS0EZrQE+0ii03bmEzn8dhiW4+E0mYRiGFzTL2evj0rm/5Rlh44 +lBl77EVgn7bJq/N/oY0sfJf39iOwhI8PtZAlmBA45w86hp443I08F970h+zR8lK tcKTjYRopmMBicaxnfw/w/X6cbKs6xf3nJ0UEvvJjInEyndtSBngprE19fCTLyIE TReepagTw6+Xfrg+t22T2x/hzzLfFHRlw8u72mmyJvNKhH2gtdcwNoeYwN/NEWQI WrC6w1MfOjk+Qm0TqDKke+6XAObeqG1zvdlTVLx/FNzxBBrG68Rml+acXQAqLkQ= =rrwx -----END PGP SIGNATURE----- From rjh at sixdemonbag.org Sun Jun 1 19:31:10 2008 From: rjh at sixdemonbag.org (Robert J. Hansen) Date: Sun, 01 Jun 2008 21:31:10 -0500 Subject: [Enigmail] my signature does not verify! In-Reply-To: References: <481AD0E4.5080608@upf.edu> <481AD631.2070909@hammernoch.net> <481ADB79.6040805@upf.edu> Message-ID: <48435B6E.8000300@sixdemonbag.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Daniel wrote: > I think your tip setting the Word wrap back to 70 fixed it. I set it > to 300 earlier beacuse I didn't know that gpg depends on 70. Is there > any reason why this is fixed to 70, can I increase this setting > somewhere? This is neither a GnuPG, an Enigmail, nor a Thunderbird bug. GnuPG detects when a message has been altered. If you sign a message with 300-character-long lines, GnuPG will correctly tell you whether the message is later altered. If you then have your message pass through an MTA/MUA that silently breaks your message up into 76-character lines, well, GnuPG on the other end will detect that the message has been altered and will tell you so. No part of the system has failed. GnuPG has done exactly what it promised to do and detect modifications. The MUA has done exactly what it promised to do and modified the message. These are called "seam issues" because these are the sorts of problems that arise at the point where one system ends and another begins, and neither system is aware of or especially designed to work with the other. At the seam between the two parts of the system, problems occur. Seam issues are also what cause us to strongly advocate turning off format-flowed messages (often mocked here as "format-flawed", since it causes more trouble than it's worth). Your message was sent using format-flowed. You may want to look into changing that. In Thunderbird's Preferences menu, click "Advanced", select the "General" tab, and hit the "Config Editor..." button. The window that pops up will probably be confusing. Just look at the very top, where it says "filter". Enter "flowed" and tap Enter. Two preferences will come up: mailnews.display.disable_format_flowed_support mailnews.send_plaintext_flowed Each of these will have fields "Status", "Type" and "Value". The former should be set to TRUE, and the latter should be set to FALSE. This will keep you from sending format-flowed messages, and will turn off format-flowed support for messages you receive. The sooner we can end the scourge of format-flowed, the better. :) -----BEGIN PGP SIGNATURE----- iQEcBAEBCAAGBQJIQ1tuAAoJELcA9IL+r4EJHGgH/3/gIJdh9p3/OU8Tf3MLmpbt LEArkIKwtCdFWClCcaS0ZR07e94jfBs0SejOG7yCxjIL12KevkTAc4Tr2AjAlZtC XI5wiCTogq0/WAW6edXW+HaOSTIRS/26O+tPTyjZQ/isJL+654GrMdFaJyNsVwDI 019yqSwu6bE7mUbWXjOZs5MBxdA+YmD+r4i1ezHHbHd51QN9lByfJm2Vp+1F+hrW ouPvkhGGiSNLwB7X5vW3stAQzNNAffwKST/65Cq2Uzzh1WZ5HWmEAa1bidhPyZLw GYXXDG60Vw9dnkk29WxrckPPqjJubXbqoPdXaevXYou7oUqDJCXt5RxHot2MtWQ= =4R+g -----END PGP SIGNATURE----- From faramir.cl at gmail.com Mon Jun 2 02:10:05 2008 From: faramir.cl at gmail.com (Faramir) Date: Mon, 02 Jun 2008 05:10:05 -0400 Subject: [Enigmail] Just another person testing enigmail. In-Reply-To: <484033F8.1090809@chud.net> References: <483F2E43.1060905@cam.ac.uk> <484033F8.1090809@chud.net> Message-ID: <4843B8ED.2000507@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Chris De Young escribi?: > Thomas Wootten wrote: ... >> In particular, how to go about finding out if someone has a key; is >> there any easy way other than just asking them? ... > As far as finding out whether someone has a key, you can search the > popular key servers (I usually use subkeys.pgp.net), or you can ask them > for it. Asking them is probably better, if you have a way to be sure > you know who you're asking, because that way you can make sure that the > "John Smith" whose key you found is the same John Smith you want to talk > to. I was told pool.sks-keyservers.net is a very good option to upload (and to search) public keys, since it is a pool of servers, so it is unlikely it can fail... Regards -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEcBAEBAgAGBQJIQ7jtAAoJEMV4f6PvczxAM3oIAKH8Of05Ku0qW/0oUZok450f zWQqUSAUnry21NnO33Xq84KfsXXTfSIu+iUw2ntkRt0pluSGTM2oyObUPMTfB4MQ aZFS6DELpO9BFIsaexxwVSJSVDBlwTV6KZZCOAL4YgjMxKy3Lo9ZihaGTVajS1Ow hK05IGAc28HCCq/XH1qEb6QIvJCxEm5OvoOo34DVhaUZmreaFXt51ZLRDu3cNPZE 1M6Inxj3CLXJ3FaZnUPMmO6aaInyqrGxtAoIzXD66NubDopt0FGJ4Yjc0Sbz/YZv crxg8eEKYMr2u9Or3IH/9q8yIFWlb+cWd1IO4VrRWgQti0XOlO8Ccs4VTz1U/d4= =an7v -----END PGP SIGNATURE----- From bjtasker at btasker.me.uk Mon Jun 2 03:24:58 2008 From: bjtasker at btasker.me.uk (Bernard Tasker) Date: Mon, 02 Jun 2008 11:24:58 +0100 Subject: [Enigmail] Yet another first test (signing) In-Reply-To: <48401D18.9040001@gmail.com> References: <48401D18.9040001@gmail.com> Message-ID: <4843CA7A.6050604@btasker.me.uk> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 signed ok as per: OpenPGP Security Info UNTRUSTED Good signature from Richard Homme (Key for Northumberland activity) Key ID: 0x6F2EF589 / Signed on: 30/05/2008 16:28 Key fingerprint: 84A3 7716 5D8D 0DF2 2A1A E8A3 C0BA 816C 6F2E F589 Feel free to send me an encrypted mail off list Bernard Tasker Richard Homme wrote: > Hello, > > I'm just testing my Enigmail/OpenPGP installation in Thunderbird, and > dutifully following the suggested procedure. > > So - this is test #1. Signing. If someone can help me test encryption, > I'd really appreciate it! > Thanks! > > Richard Homme > Cobourg, Ontario, Canada _______________________________________________ Enigmail mailing list Enigmail at mozdev.org https://www.mozdev.org/mailman/listinfo/enigmail -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkhDynoACgkQqPQ3uX5O/PcLLQCfUIgF6ZycPM4IWMV84YCFnHLc KHcAoIcpk4EFUcszWUPxDbc92h71Ygww =IAkX -----END PGP SIGNATURE----- From shavital at mac.com Mon Jun 2 04:20:33 2008 From: shavital at mac.com (Charly Avital) Date: Mon, 02 Jun 2008 07:20:33 -0400 Subject: [Enigmail] gpg 2.0.9 for Mac. Message-ID: <4843D781.2060808@mac.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Hi, Following Ben Donnachie's announcement, and tests both on PPC and Intel Macs: Binary install package for gnupg v2.0.9 now available from: mac-gnupg-2.0.9-TEST-2.zip with the accompanying signature: mac-gnupg-2.0.9-TEST-2.zip.sig Contains the following: gnupg-2.0.9.tar.bz2 libassuan-1.0.4.tar.bz2 libgcrypt-1.4.1.tar.bz2 libgpg-error-1.6.tar.bz2 libksba-1.0.3.tar.bz2 pinentry-0.7.4.tar.gz and Ben's own pinentry-mac This build does NOT include any install script magic and is only intended for use by CURRENT mac-gpg2 users only. pinentry-mac.app will be installed at: /usr/local/libexec/ Therefore there is no longer need to include in /gpg-agent.conf the line: 'pinentry-program....' and there is no need to insert pinentry-mac in /Applications as in previous installations. Personally, the only two lines I have left in /gpg-agent.conf are: default-cache-ttl [how many seconds you want gpg-agent to remember a passphrase] max-cache-ttl [ditto] After running the installer, and *before* trying to use gpg 2.0.9, please type in terminal, in *one single line*: sudo chmod a+rx /usr/local/libexec/pinentry-mac.app/Contents/Resources/English.lproj/MainMenu.nib Log out, log back in; this will run Philip Kime's gpg-agent's logout login shell scripts, if you have installed them. Ben is preparing an integrated release for all users, so if you feel like waiting, please do. Charly MacOS 10.5.3 - MacBook Intel C2Duo - GnuPG 1.4.9 - GPG2 2.0.9 - Thunderbird 2.0.0.14 - Enigmail 0.96a GPGMail d53 -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.9 (Darwin) Comment: GnuPG for Privacy Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQEcBAEBCAAGBQJIQ9d+AAoJEM3GMi2FW4PvllsH/i6FK4kd8MSmS7o/W8lwpVkQ YFZJYnv3nM/lKbGXxE9ivMRoX4f6Mk7BIbfymlJYmpS6PEMkFQXbUq0OtIDsYBFS XGQ9rE2MkkgZB6u8wpRNO/KYghJl+tkkNE+Ue4yX4BaNQTbW6jchjsDnO5T7BVWU Z5qYTSYnGQXi2CpFav3wyrxdt6VroozWehUeLo6y92GCH6TaVn2695Ylh+Bg8EaG 0zWD2uAtIWJPTOZOzqhGparv4XsR3GGOB8pq/XwHOKaIrjt4MrQVfOXGA7hOOcdU 5jonqBUUTVwmKcOmdzVpBkiJB1r0nHf+eubFMwJPgzHsL1Re5cZo3+KxbBxihjI= =XJYi -----END PGP SIGNATURE----- From olav at mozilla-enigmail.org Mon Jun 2 04:34:51 2008 From: olav at mozilla-enigmail.org (Olav Seyfarth) Date: Mon, 02 Jun 2008 13:34:51 +0200 Subject: [Enigmail] Hello Secure World In-Reply-To: <4840469A.6090805@gmail.com> References: <4840469A.6090805@gmail.com> Message-ID: <4843DADB.1000507@mozilla-enigmail.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Hi Dan, > I just got my portable version of Thuderbird running with Enigmail and > I'm looking to see if I've got all the configurations set up correctly. I could get your key from my preferred keyserver without problems but your message does not verify. Enigmail / GnuPG yield BAD SIGNATURE. I'm not sure but from the space characters I see in your email source, I suspect this: http://enigmail.mozdev.org/support/troubles.php#flowed > I currently use a Hush Mail account but I don't like that I have to log > on to their site or pay money to use the IMAP feature... So anyways if > I can get this Thunderbird w/ Enigmail setup correctly I'm planning on > telling every single person I know how they can do it for themselves! > Thanks in advance for the help. Sure. But keep in mind that there is need to deal with key handling using GnuPG and Engimail. Hush Mail surely has its good sides for those that don't want to bother about key management at all. Olav -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Diese ist eine Digitale Signatur nach OpenPGP-Standard Comment: Weitere Informationen: http://privat.seyfarth.de/olav/schluessel.html iEYEAREIAAYFAkhD2tkACgkQL/NBt8fdKe1qwQCfWL0jlMf3xuulyKrSq2vBd8j1 oAsAniCw31fRFP7UTE0tL8IX2Qa0sS1n =RGa1 -----END PGP SIGNATURE----- From rjh at sixdemonbag.org Mon Jun 2 04:38:54 2008 From: rjh at sixdemonbag.org (Robert J. Hansen) Date: Mon, 02 Jun 2008 06:38:54 -0500 Subject: [Enigmail] Testing Enigmail - signed only In-Reply-To: <483F5B65.2090904@gmail.com> References: <483F5B65.2090904@gmail.com> Message-ID: <4843DBCE.30906@sixdemonbag.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Richard Homme wrote: > I'm serving as the communications chair for a local political > organization (Northumberland/Quinte West Federal Green Party > Association, Canada) and we want to make sure private internal > communications remain private. We have reason to suspect that this > has not always been the case, but we have been pretty casual about > our communications. We need to tighten things up a bit. The good news is that it appears you have Enigmail up and working properly. The bad news is that it may not be of a great deal of use to you. Enigmail only secures messages when they are in transit. The endpoints of the connection are not secured. If you're concerned about people eavesdropping on your electronic signals, then Enigmail can almost certainly help stomp those eavesdroppers flat. However, it cannot protect you from leaks or people talking about things they shouldn't within earshot of people who shouldn't hear things. I'm fairly certain you know the bad news already. Still, we would hardly be a courteous and helpful community if we didn't make sure you were aware. Welcome to Enigmail, and we hope you find it useful. :) -----BEGIN PGP SIGNATURE----- iQEcBAEBCAAGBQJIQ9vOAAoJELcA9IL+r4EJK+YH/ip1P4o6fsf1KdsvNw+rfy8T A+yYA+pHgsLefELZ6JgeI3sewjm6Dy7Gw+WXRpF7A78Eseh+zv/Pm7g8ie5QrWCp fkCgnHicTwfKH8GSCnXb80ui1929OOrjlDgKnxC/5dZh1phodTPuSzlrHYeqrjeu dKVmD8/sF60TJFbI409Alw9gItNC27X+jiHejOUsceZ8vVG7/Zn9Kjl/IrTNRtOE vErn7dH9+o8h8f7+wvxZfb8jAdFO7+Aea5cIoMJIP3gD0y45eUnEtDVYZVN5oWdX +PLyhh7zE1oHO9rf8Yr6wTDDWf23bkdAXthAmG209xu+DjrH+pPq/nkn99dRzpY= =0jHP -----END PGP SIGNATURE----- From danielclark591 at gmail.com Mon Jun 2 05:48:11 2008 From: danielclark591 at gmail.com (Daniel Clark) Date: Mon, 02 Jun 2008 07:48:11 -0500 Subject: [Enigmail] Hello Secure World In-Reply-To: <4843DADB.1000507@mozilla-enigmail.org> References: <4840469A.6090805@gmail.com> <4843DADB.1000507@mozilla-enigmail.org> Message-ID: <4843EC0B.3010102@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Olav Seyfarth wrote: > Hi Dan, > >> I just got my portable version of Thuderbird running with Enigmail and >> I'm looking to see if I've got all the configurations set up correctly. > > I could get your key from my preferred keyserver without problems but your > message does not verify. Enigmail / GnuPG yield BAD SIGNATURE. I'm not sure > but from the space characters I see in your email source, I suspect this: > > http://enigmail.mozdev.org/support/troubles.php#flowed > >> I currently use a Hush Mail account but I don't like that I have to log >> on to their site or pay money to use the IMAP feature... So anyways if >> I can get this Thunderbird w/ Enigmail setup correctly I'm planning on >> telling every single person I know how they can do it for themselves! >> Thanks in advance for the help. > > Sure. But keep in mind that there is need to deal with key handling using > GnuPG and Engimail. Hush Mail surely has its good sides for those that don't > want to bother about key management at all. > > Olav Olav, Thank you for that. I also think that I composed the message in HTML format (which I've heard might mess things up). I've changed my format to plain text and followed the instructions listed in the above mentioned link; how's the signature now? Thanks for your help. ~Dan _______________________________________________ Enigmail mailing list Enigmail at mozdev.org https://www.mozdev.org/mailman/listinfo/enigmail -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFIQ+wKkfQJ8lFMjbQRAr9uAJ4vNFeWlq/v+i1nXg8Xw0AOKXNURgCdFZKv w1R5xMXqw7y0yL0MhFtjHOU= =vfsN -----END PGP SIGNATURE----- From olav at mozilla-enigmail.org Mon Jun 2 05:56:07 2008 From: olav at mozilla-enigmail.org (Olav Seyfarth) Date: Mon, 02 Jun 2008 14:56:07 +0200 Subject: [Enigmail] Hello Secure World In-Reply-To: <4843EC0B.3010102@gmail.com> References: <4840469A.6090805@gmail.com> <4843DADB.1000507@mozilla-enigmail.org> <4843EC0B.3010102@gmail.com> Message-ID: <4843EDE7.5060307@mozilla-enigmail.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Hi Dan, > I composed the message in HTML format (which I've heard might mess things up). yes, indeed. Plain text is best as default. If you really need to compose or reply in HTML, hold down the SHIFT key while you click the Compose or Reply button (and switch off PGP-Signing before sending it off). > I've changed my format to plain text and followed the instructions listed in > the above mentioned link; how's the signature now? Perfectly fine :-) Have a nice day! Olav -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Diese ist eine Digitale Signatur nach OpenPGP-Standard Comment: Weitere Informationen: http://privat.seyfarth.de/olav/schluessel.html iEYEAREIAAYFAkhD7eUACgkQL/NBt8fdKe1InwCgjblBqWHPIUaIBnwz6AXhiMdW eGUAnR715pfSzz1VHUPdnqIWy8LisWBJ =bGBu -----END PGP SIGNATURE----- From rhomme at gmail.com Mon Jun 2 06:44:11 2008 From: rhomme at gmail.com (Richard Homme) Date: Mon, 02 Jun 2008 09:44:11 -0400 Subject: [Enigmail] Testing Enigmail - signed only In-Reply-To: <4843DBCE.30906@sixdemonbag.org> References: <483F5B65.2090904@gmail.com> <4843DBCE.30906@sixdemonbag.org> Message-ID: <4843F92B.1050907@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Thank-you, Robert. As it happens, I am considering using Enigmail within our group mainly because of a (possibly paranoid) concern with eavesdropping. I'd also like to get our group to use OpenPGP to encrypt certain specific documents for any kind of exchange - documents that we are supposed to make every effort to keep confidential (such as membership lists and financial documents). So that's not bad news. And it makes me feel a little better! Am I correct in understanding that we can exchange public keys in person to avoid using a key server? Thanks again. ...Richard Robert J. Hansen wrote: | Richard Homme wrote: | > I'm serving as the communications chair for a local political | > organization (Northumberland/Quinte West Federal Green Party | > Association, Canada) and we want to make sure private internal | > communications remain private. We have reason to suspect that this | > has not always been the case, but we have been pretty casual about | > our communications. We need to tighten things up a bit. | | The good news is that it appears you have Enigmail up and working properly. | | The bad news is that it may not be of a great deal of use to you. | Enigmail only secures messages when they are in transit. The endpoints | of the connection are not secured. If you're concerned about people | eavesdropping on your electronic signals, then Enigmail can almost | certainly help stomp those eavesdroppers flat. However, it cannot | protect you from leaks or people talking about things they shouldn't | within earshot of people who shouldn't hear things. | | I'm fairly certain you know the bad news already. Still, we would | hardly be a courteous and helpful community if we didn't make sure you | were aware. Welcome to Enigmail, and we hope you find it useful. :) | _______________________________________________ Enigmail mailing list Enigmail at mozdev.org https://www.mozdev.org/mailman/listinfo/enigmail -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (Darwin) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFIQ/krwLqBbG8u9YkRAqUEAKDHiDqNo0JE1ysIhkh+L96tR3BumwCfaeYo GNB2QKRoCRwO3sxlmECDvPs= =1dk9 -----END PGP SIGNATURE----- From cantanova at gmail.com Mon Jun 2 09:26:07 2008 From: cantanova at gmail.com (Henry Garcia) Date: Mon, 02 Jun 2008 12:26:07 -0400 Subject: [Enigmail] Hello Secure World In-Reply-To: References: Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Daniel Clark wrote: > ... So anyways if > I can get this Thunderbird w/ Enigmail setup correctly I'm planning on > telling every single person I know how they can do it for themselves! Good luck with that, Daniel. Trying to get my friends to use email encryption is like pulling teeth. I'll get responses like "ah, it's too complicated" to "ah, who's gonna wanna read my boring emails anyway?" Let me know how it goes for you. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) iEYEARECAAYFAkhEHx8ACgkQbLBBN5rwSlVxvwCfTnhFCk7u6U5z3yFldVpSb7IY 8a0AoLVYjkNiVJoiwMIHRuWgvGuoOdUE =r5yp -----END PGP SIGNATURE----- From jmoore3rd at bellsouth.net Mon Jun 2 09:37:42 2008 From: jmoore3rd at bellsouth.net (John W. Moore III) Date: Mon, 02 Jun 2008 12:37:42 -0400 Subject: [Enigmail] Hello Secure World In-Reply-To: References: Message-ID: <484421D6.5020500@bellsouth.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Henry Garcia wrote: > Good luck with that, Daniel. Trying to get my friends to use email > encryption is like pulling teeth. I'll get responses like "ah, it's too > complicated" to "ah, who's gonna wanna read my boring emails anyway?" > Let me know how it goes for you. Most of the folks I 'counsel' on Encryption are afraid that their sudden conversion to Encrypted Emails will somehow bring them to the attention of 'The Authorities' and be akin to announcing that they "have something to hide" thereby attracting surveillance. :-\ Unfounded fears that defy logic by presuming that NSA has the time, resources and ability to 'monitor' the 300+ million folks in the U.S. in addition to /everyone/ on the remainder of the Globe. :-\ JOHN ;) Timestamp: Monday 02 Jun 2008, 12:37 --400 (Eastern Daylight Time) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.5.0-svn4754: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIRCHVAAoJEBCGy9eAtCsPxe0H/j3BDpg3jRMLjTovQBJ/HDSd bBl+sPpfcRcAYMfAzN+lQd2tv+DgHuftw3yXVgicYS5cQIwzF9CuVQFBXplxEIli 18429zII/URo0cwqRVzwXn5p3MhkjYmI64RoW7GH09aXXQQAXngo4BAAJ85Y5uaT qNsRV6J0TnXIt/B7Pj0CAEr5IHMhmdXjVsdNz+a7LJ3gbgz/pb8DziUgqRs2Xo2i g8aMm7TWpnkQ8lHCm/8tN0dmpM/Q3tKLsvGn9i0xN94TIN1CRypWyW22jeLLUHDz 1yVp2jrBNAw0vMqEMOQI95HzOQrr4Ymc/hlsOke8tff1BhPnpH8BgNio0OWxeHA= =NgFj -----END PGP SIGNATURE----- From shavital at mac.com Mon Jun 2 11:10:34 2008 From: shavital at mac.com (Charly Avital) Date: Mon, 02 Jun 2008 14:10:34 -0400 Subject: [Enigmail] Default encryption key. Message-ID: <4844379A.2060800@mac.com> Hi, I am trying to find out why, in my configuration, Enigmail is not using *also* my default key, when I encrypt to other recipient(s) In Enigmail's on-line documentation: GnuPG user defaults can be set in the plain text configuration file gpg.conf which resides in the GnuPG HomeDir. Based on our experience we suggest the following entries, but you may choose to add or remove entries based on your reading: default-recipient-self [snip] >From man gpg: --default-recipient-self Use the default key as default recipient if option --recipient is not used and don't ask if this is a valid one. The default key is the first one from the secret keyring or the one set with --default-key. In my gpg.conf I have set the following options: --default key [16 last hexadecimal characters of fingerprint] --trusted key [dito] --default-recipient-self (I have no option --recipient enabled) When I encrypt to any recipient, and click send, Enigmail displays a sheet where only the recipient's key ID is indicate (I have enabled in OpenPGP Preferences/Sending 'Always confirm before sending') Is something wrong, and what, with my pgp.conf options, or is this a bug? Thanks. Charly MacOS 10.5.3-MacBook Intel C2Duo-GPG2 2.0.9-TB 2.0.0.14- Enigmail 0.96a From John at Mozilla-Enigmail.org Mon Jun 2 14:49:46 2008 From: John at Mozilla-Enigmail.org (John Clizbe) Date: Mon, 02 Jun 2008 16:49:46 -0500 Subject: [Enigmail] Default encryption key. In-Reply-To: <4844379A.2060800@mac.com> References: <4844379A.2060800@mac.com> Message-ID: <48446AFA.5050607@Mozilla-Enigmail.org> Charly Avital wrote: > Hi, > > I am trying to find out why, in my configuration, Enigmail is not using > *also* my default key, when I encrypt to other recipient(s) > > In Enigmail's on-line documentation: > Yeah, that's the /Windows/ Step-by-step installation Barry Porter and I wrote. > GnuPG user defaults can be set in the plain text configuration file > gpg.conf which resides in the GnuPG HomeDir. Based on our experience we > suggest the following entries, but you may choose to add or remove > entries based on your reading: > > default-recipient-self > [snip] > >>From man gpg: > --default-recipient-self > Use the default key as default recipient if option --recipient > is not used and don't ask if this is a valid one. The default > key is the first one from the secret keyring or the one set with > --default-key. > > In my gpg.conf I have set the following options: > > --default key [16 last hexadecimal characters of fingerprint] > --trusted key [ditto] > --default-recipient-self Obscuring key IDs serves little purpose for security though it does hinder folks from pointing out obvious errors. You do have those lines *without* the leading -- in gpg.conf, right? Since your default key pair should already have ultimate trust, there is no need to specify that it is a trusted-key, unless it's offline in which case it makes no sense to have it specified as the default signing key. When all else fails, read the man page. "Use the default key as default recipient if option --recipient is not used..." ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ > (I have no option --recipient enabled) Enigmail will add each of the To addresses as recipients. Check the Enigmail console when sending an encrypted message to verify what is being done. > > When I encrypt to any recipient, and click send, Enigmail displays a > sheet where only the recipient's key ID is indicate (I have enabled in > OpenPGP Preferences/Sending 'Always confirm before sending') > > > Is something wrong, and what, with my pgp.conf options, or is this a bug? I hope you mean gpg.conf in that last sentence. Anyway... Enigmail knows *nothing* of the options in gpg.conf. So it can hardly know of your default key or to add that key to the recipient list. For the "default" key, Enigmail specifies either the Key ID or email address of the sending account, depending on the selection on the OpenPGP security tab. If specified by email address, GnuPG will use the first matching valid key it finds as the signing key. Not knowing options set in gpg.conf, Engmail can't display your key in the confirmation dialog. *GnuPG* adds your key to the recipient list *after* Enigmail passes it the message for processing when it parses the options file. The real test is whether or not you are able to read the messages in the Sent folder. Enigmail handles this on the Sending tab under Advanced preferences. The 'Add my own key to the recipients list' option will add "--encrypt-to " to Enigmail's command line issued to GnuPG. Handy, except it means the first matching key is the one used, not necessarily the key you mean. A disabled key could be selected You probably want "encrypt-to [UltraSuperSeekritKeyID]" in gpg.conf. At the most, it's a documentation bug on a nearly four year-old page. -- John P. Clizbe Inet: John (a) Mozilla-Enigmail.org You can't spell fiasco without SCO. PGP/GPG KeyID: 0x608D2A10/0x18BB373A "what's the key to success?" / "two words: good decisions." "what's the key to good decisions?" / "one word: experience." "how do i get experience?" / "two words: bad decisions." "Just how do the residents of Haiku, Hawai'i hold conversations?" -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 677 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080602/cbdcb2c0/attachment.bin From rjh at sixdemonbag.org Mon Jun 2 15:10:25 2008 From: rjh at sixdemonbag.org (Robert J. Hansen) Date: Mon, 02 Jun 2008 17:10:25 -0500 Subject: [Enigmail] Default encryption key. In-Reply-To: <48446AFA.5050607@Mozilla-Enigmail.org> References: <4844379A.2060800@mac.com> <48446AFA.5050607@Mozilla-Enigmail.org> Message-ID: <48446FD1.506@sixdemonbag.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 First, let me start off by agreeing with John. This is an error in some documentation. My remarks are additions, not disagreements. | Obscuring key IDs serves little purpose for security though it does | hinder folks from pointing out obvious errors. And, in a larger sense, it's a security diminishment. It seems that most people who throw key IDs do so out of some thought that it makes them more secure, more confidential, more... more /something/, but without a clearly defined security threat and throwing key IDs as a clearly articulated response to that threat. This is a bigger problem than just throwing key IDs. Pretty much everything in GnuPG is the same way. People want to tweak the system for the "best" security profile without first establishing a threat model. It just doesn't work that way. Throwing a bunch of features that "feel right" at the problem is unlikely to do anything except make the user feel good and thus lull them into a false sense of security. For years I've said GnuPG is too large a software package for my liking. I would like it an awful lot if GnuPG supported only 3DES for sending symmetric traffic, only DSA1024/2048 for signature algorithms, only ElG2048 for asymmetric crypto, and only SHA1/SHA256 for digests. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iFYEAREIAAYFAkhEb9EACgkQf2XByo0Cu7NClQDbBUP9ivBQdCqQ2p0YHxHaUCaM BjQQYSyI2CXqyQDfYFFQfl4RD8hv78DB37NA6iyfEJw+ebTK1BOCqIkBHAQBAQgA BgUCSERv0QAKCRC3APSC/q+BCVCHCACc+zVVhu26DTlCXRWrws8DrRxl6Mwa/eq+ aiQBd14tfXexOoZBRzqeH5NXMlR75iyeIgiOTuSUUfFIBMJCq1qDDp3KrMo/Q+Jc saOXFxKL0TY+2b/2g9hfHDc1/pdbJ0U9WxHAEJYZAUi301R0P2b1nCVJiTXMRHRH W9mvCwHOzeV5JvYuGA5c2/u2hu9g0FPIQVCbu4oORcIG/irFETZ+8F9ZkKERI9Pk 5P2V24mMI51Ugw3sFmxsyYxa7v4lKI9ZSP7aTjKUJSxE9Hb7W0nk6d1wP3w/9yhB 0meNtiWuhxA6hOvA81TZ6h1pjNUO5VFdOFR4KkVGJa0RFNA++WMx =QsqB -----END PGP SIGNATURE----- From Cheef-Daniel at freenet.de Mon Jun 2 16:10:46 2008 From: Cheef-Daniel at freenet.de (Daniel) Date: Tue, 03 Jun 2008 01:10:46 +0200 Subject: [Enigmail] my signature does not verify! In-Reply-To: References: <481AD0E4.5080608@upf.edu> <481AD631.2070909@hammernoch.net> <481ADB79.6040805@upf.edu> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Robert J. Hansen schrieb: > If you then have your message pass through an > MTA/MUA that silently breaks your message up into 76-character lines, > well, GnuPG on the other end will detect that the message has been > altered and will tell you so. Right, the MTA could modify my messages after sending them, that explains why some of my mails are ok and some not. That is bad and I think that should never be happen, there is nothing what you can do except changing your mailISP and even then you would'nt know what happens on the MTA of your receiver. Robert J. Hansen schrieb: > Seam issues are also what cause us to strongly advocate turning off > format-flowed messages (often mocked here as "format-flawed", since it > causes more trouble than it's worth). Your message was sent using > format-flowed. You may want to look into changing that. format-flowed was already / is turned off, are you sure my messages still use it? -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEcBAEBAgAGBQJIRH32AAoJEGlVt4JuPoo8DlYIAMll5XY3lNXqMX03Lq9UDDUk 7IdFQFNPvtxTwevjwJt2bGoF1oHf6kgosq9w/5yzReIiJCUE7lkaWrvvaqmLHwn1 QU7a77r7xr/xcQgbb+AyucZzkH6IVoo29WdMCfNT3ZkoeTxuy09lEkVggQl27wU7 HRzPFFQrojXlYp9430aWcxc/NKuERHh/E3GP8GZGd9hYFAQf/UuYCObOeW7mZTDx kb9QBVJdizLgetlK9GQjqUllus5MbAh5yfmYHBYrWQ8UmCr1j/JdAc9PsRHM69oF dVah0oPnPB2hjS9cISxw75SION1BBnwJnzEfEHDtuQcn4g8CMCe29ZhE7cwkwy0= =PQqh -----END PGP SIGNATURE----- From rjh at sixdemonbag.org Mon Jun 2 16:27:21 2008 From: rjh at sixdemonbag.org (Robert J. Hansen) Date: Mon, 02 Jun 2008 18:27:21 -0500 Subject: [Enigmail] my signature does not verify! In-Reply-To: References: <481AD0E4.5080608@upf.edu> <481AD631.2070909@hammernoch.net> <481ADB79.6040805@upf.edu> Message-ID: <484481D9.4050206@sixdemonbag.org> Daniel wrote: > format-flowed was already / is turned off, are you sure my messages > still use it? It would not be impossible for me to be mistaken. From jmoore3rd at bellsouth.net Mon Jun 2 16:31:17 2008 From: jmoore3rd at bellsouth.net (John W. Moore III) Date: Mon, 02 Jun 2008 19:31:17 -0400 Subject: [Enigmail] my signature does not verify! In-Reply-To: References: <481AD0E4.5080608@upf.edu> <481AD631.2070909@hammernoch.net> <481ADB79.6040805@upf.edu> Message-ID: <484482C5.7000302@bellsouth.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Daniel wrote: > there is nothing what you can do > except changing your mailISP and even then you would'nt know what > happens on the MTA of your receiver. Changing ISP's is no Help. The MTA [Mail Transfer Agent] is any port/hub that the Email passes through on its way from Your MUA [Mail Use Agent] to Your Recipient's Inbox. We could live across the street from each other and if I Email You it might travel all the way around the World before arriving in Your Inbox. /Every/ Server the Email passes through has the potential to make 'modifications'. JOHN ;) Timestamp: Monday 02 Jun 2008, 19:31 --400 (Eastern Daylight Time) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.5.0-svn4754: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIRILEAAoJEBCGy9eAtCsPhmcH/1qHq4Uzf34kvgcxOJTMBzuL axgOwfaSsbfpU18qUQJ7wNGaDX0LLJkxJsQLzpK1wftOIQqkzdcaLQ4o64B4McII tlB7kFvc3F7eoJJJYsowkevLu/3u5ENcgvhwfBBcsUgKML/MimV7JOjCRYJIKeKa +kNFsPYl6RGokgTIRPBIY+4F1iHBJwAi/aGxlJ6QsfXVQ1qIwfC9cZBeKROP7+Tx OyYxrBVQc6We9jlkAuOb6HB6XgSaRTvn7hCTxsn/QlhF6nB7YuCzX6ZYGtHT2H4z FRxUXn0gV5lxoBcjYlQquKB+ZeIXdHVoiGrksVhk3ayuThRz9j0DeR9iTAnXlyk= =laKk -----END PGP SIGNATURE----- From jmoore3rd at bellsouth.net Mon Jun 2 16:34:03 2008 From: jmoore3rd at bellsouth.net (John W. Moore III) Date: Mon, 02 Jun 2008 19:34:03 -0400 Subject: [Enigmail] my signature does not verify! In-Reply-To: <484481D9.4050206@sixdemonbag.org> References: <481AD0E4.5080608@upf.edu> <481AD631.2070909@hammernoch.net> <481ADB79.6040805@upf.edu> <484481D9.4050206@sixdemonbag.org> Message-ID: <4844836B.8060401@bellsouth.net> An HTML attachment was scrubbed... URL: http://www.mozdev.org/pipermail/enigmail/attachments/20080602/e5cbb9c0/attachment.html -------------- next part -------------- A non-text attachment was scrubbed... Name: 68195832.gif Type: image/gif Size: 3860 bytes Desc: not available Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080602/e5cbb9c0/attachment.gif -------------- next part -------------- A non-text attachment was scrubbed... Name: Confus_77.gif Type: image/gif Size: 1155 bytes Desc: not available Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080602/e5cbb9c0/attachment-0001.gif From shavital at mac.com Mon Jun 2 20:29:42 2008 From: shavital at mac.com (Charly Avital) Date: Mon, 02 Jun 2008 23:29:42 -0400 Subject: [Enigmail] Default encryption key. In-Reply-To: <48446AFA.5050607@Mozilla-Enigmail.org> References: <4844379A.2060800@mac.com> <48446AFA.5050607@Mozilla-Enigmail.org> Message-ID: <4844BAA6.8010504@mac.com> John Clizbe wrote the following on 6/2/08 5:49 PM: [....] > > Obscuring key IDs serves little purpose for security though it does hinder folks > from pointing out obvious errors. I was not trying to obscure anything, I was just pointing out that I was using the "long" key ID format (16 hexadecimal...). Here's the key ID, 36EDFED0A57A8EFA > > You do have those lines *without* the leading -- in gpg.conf, right? Yes, thanks for pointing out that. [...] > > I hope you mean gpg.conf in that last sentence. Anyway... Yes, gpg.conf. A thousand excuses for that mistype. > > Enigmail knows *nothing* of the options in gpg.conf. [...] This last sentence would have been more than sufficient, but I thank you for your extensive answer. Charly From shavital at mac.com Mon Jun 2 20:37:50 2008 From: shavital at mac.com (Charly Avital) Date: Mon, 02 Jun 2008 23:37:50 -0400 Subject: [Enigmail] Default encryption key. In-Reply-To: <48446FD1.506@sixdemonbag.org> References: <4844379A.2060800@mac.com> <48446AFA.5050607@Mozilla-Enigmail.org> <48446FD1.506@sixdemonbag.org> Message-ID: <4844BC8E.6090000@mac.com> Robert J. Hansen wrote the following on 6/2/08 6:10 PM: > First, let me start off by agreeing with John. This is an error in some > documentation. My remarks are additions, not disagreements. > > | Obscuring key IDs serves little purpose for security though it does > | hinder folks from pointing out obvious errors. > > And, in a larger sense, it's a security diminishment. As I already pointed to John, I was not trying to obscure anything, just to indicate that was using the long key ID format. Sorry to repeat myself. > It seems that > most people who throw key IDs do so out of some thought I don't > that it makes > them more secure, more confidential, more... more /something/, but > without a clearly defined security threat and throwing key IDs as a > clearly articulated response to that threat. > > This is a bigger problem than just throwing key IDs. Pretty much > everything in GnuPG is the same way. People want to tweak the system > for the "best" security profile without first establishing a threat > model. It just doesn't work that way. Throwing a bunch of features > that "feel right" at the problem is unlikely to do anything except make > the user feel good and thus lull them into a false sense of security. Thanks for the overview. > For years I've said GnuPG is too large a software package for my liking. > I would like it an awful lot if GnuPG supported only 3DES for sending > symmetric traffic, only DSA1024/2048 for signature algorithms, only > ElG2048 for asymmetric crypto, and only SHA1/SHA256 for digests. I don't know enough to have an opinion. My query has been answered 'Enigmail knows *nothing* of the options in gpg.conf'. Thanks, Charly From jmoore3rd at bellsouth.net Mon Jun 2 20:50:48 2008 From: jmoore3rd at bellsouth.net (John W. Moore III) Date: Mon, 02 Jun 2008 23:50:48 -0400 Subject: [Enigmail] Default encryption key. In-Reply-To: <4844BC8E.6090000@mac.com> References: <4844379A.2060800@mac.com> <48446AFA.5050607@Mozilla-Enigmail.org> <48446FD1.506@sixdemonbag.org> <4844BC8E.6090000@mac.com> Message-ID: <4844BF98.8010708@bellsouth.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Charly Avital wrote: > My query has been answered 'Enigmail knows *nothing* of the options in > gpg.conf'. It should also be pointed out that since Enigmail passes Commands based upon the selections made under 'Preferences' *before* gpg.conf is accessed; Command selections made in Enigmail 'Preferences' will override similar Commands in gpg.conf. Earlier [I believe on this List] there was discussion of how to 'tell' Enigmail which Key [Secret Key] to use for Encryption. This is 'Set' under 'Account Settings' > 'OpenPGP' in Thunderbird. JOHN ;) Timestamp: Monday 02 Jun 2008, 23:50 --400 (Eastern Daylight Time) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.5.0-svn4754: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIRL+VAAoJEBCGy9eAtCsPNCYIAKDb331fM8vVXrqW0F1Dpl1H Z8ciLNPbZCOtT7i34XJpYpMAWhKnKk9Wvz4JB6qgHTIc1HgykQMW06Wqj1DGEFUp VwAuiiPDWLYb7T2aGqkN9W8vrlTgCd/h41S4u4LYG502VHZrShpH2Z3HlubmHKlP JtXzjXzqd+FoyWMvUc73GI/8sBgakoyGw1C1/hsVdXBUnud/cuy9a/Wkz9/YrkhJ rzcm6kedg3i7DqGEZggQBbo1Q+Z2poOZp+t+MqieUpwR4WdjJbiWkpTisFreSP7j KpOW7hvud37BxfsDzrU77k7qxfo1lt9N72PPGek/oh7LSxo2iZB/EAaoIAPUpS4= =uFtB -----END PGP SIGNATURE----- From John at Mozilla-Enigmail.org Mon Jun 2 21:13:48 2008 From: John at Mozilla-Enigmail.org (John Clizbe) Date: Mon, 02 Jun 2008 23:13:48 -0500 Subject: [Enigmail] Default encryption key. In-Reply-To: <4844BF98.8010708@bellsouth.net> References: <4844379A.2060800@mac.com> <48446AFA.5050607@Mozilla-Enigmail.org> <48446FD1.506@sixdemonbag.org> <4844BC8E.6090000@mac.com> <4844BF98.8010708@bellsouth.net> Message-ID: <4844C4FC.40007@Mozilla-Enigmail.org> John W. Moore III wrote: > Charly Avital wrote: > >> My query has been answered 'Enigmail knows *nothing* of the options in >> gpg.conf'. > > It should also be pointed out that since Enigmail passes Commands based > upon the selections made under 'Preferences' *before* gpg.conf is > accessed; Command selections made in Enigmail 'Preferences' will > override similar Commands in gpg.conf. And can cause unexpected side-effects. > Earlier [I believe on this List] there was discussion of how to 'tell' > Enigmail which Key [Secret Key] to use for Encryption. This is 'Set' > under 'Account Settings' > 'OpenPGP' in Thunderbird. s/Encryption/Signing/ -- John P. Clizbe Inet: John (a) Mozilla-Enigmail.org You can't spell fiasco without SCO. PGP/GPG KeyID: 0x608D2A10/0x18BB373A "what's the key to success?" / "two words: good decisions." "what's the key to good decisions?" / "one word: experience." "how do i get experience?" / "two words: bad decisions." "Just how do the residents of Haiku, Hawai'i hold conversations?" -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 677 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080602/fb9dbe2f/attachment.bin From jmoore3rd at bellsouth.net Mon Jun 2 21:24:29 2008 From: jmoore3rd at bellsouth.net (John W. Moore III) Date: Tue, 03 Jun 2008 00:24:29 -0400 Subject: [Enigmail] Default encryption key. In-Reply-To: <4844C4FC.40007@Mozilla-Enigmail.org> References: <4844379A.2060800@mac.com> <48446AFA.5050607@Mozilla-Enigmail.org> <48446FD1.506@sixdemonbag.org> <4844BC8E.6090000@mac.com> <4844BF98.8010708@bellsouth.net> <4844C4FC.40007@Mozilla-Enigmail.org> Message-ID: <4844C77D.20502@bellsouth.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 John Clizbe wrote: > John W. Moore III wrote: >> It should also be pointed out that since Enigmail passes Commands based >> upon the selections made under 'Preferences' *before* gpg.conf is >> accessed; Command selections made in Enigmail 'Preferences' will >> override similar Commands in gpg.conf. > > And can cause unexpected side-effects. Usually in the form of Error Messages which can be 'cryptic' to the inexperienced User. However, coordination between Enigmail 'Preferences' & the gpg.conf file is important. Keyserver specified for auto-Key retrieval *must* be the same in both. Default Key [if selected] *should* be the same in both places. The major reason to have "alike" entries in both Enigmail Preferences *and* gpg.conf is because use of a Tray Tool Frontend won't have access to the Settings chosen in Enigmail Preferences. JOHN ;) Timestamp: Tuesday 03 Jun 2008, 00:24 --400 (Eastern Daylight Time) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.5.0-svn4754: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIRMd8AAoJEBCGy9eAtCsP+wEH/jQjiUY55PrIwJsM5+NIyJz4 s98eZ4N+eFY3bLOLpmp/UN3/DSqumRK+wdAPKObrXXDrkHclGH4gFjeHz60bGKf5 uEM8xNqbBy5yVqLEtRs1/0dbe0HHeWR9a18MeJUf3ji3VB4MEnCQgjQhLxK5CcXj On2thpkjRFna6X9U1ycQxH26pA3r5NJsnP1WhQZCLZYHn8Xfh2AEDEewpipzdcv4 mrooRTgGrDXlu386piAcfpyiIBKyvCIluglwOZduybzL+WHvZR/p/rWKsSVjTLGl nFvtKIhJTYexHuBAYHBNWy46leYgqxOJrui7oCi5PAtDf9cBDeinmADwHtR0K3M= =8Kus -----END PGP SIGNATURE----- From faramir.cl at gmail.com Mon Jun 2 21:37:46 2008 From: faramir.cl at gmail.com (Faramir) Date: Tue, 03 Jun 2008 00:37:46 -0400 Subject: [Enigmail] Testing Enigmail - signed only In-Reply-To: <4843F92B.1050907@gmail.com> References: <483F5B65.2090904@gmail.com> <4843DBCE.30906@sixdemonbag.org> <4843F92B.1050907@gmail.com> Message-ID: <4844CA9A.6060506@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Richard Homme escribi?: > Thank-you, Robert. > > As it happens, I am considering using Enigmail within our group mainly > because of a (possibly paranoid) concern with eavesdropping. I'd also > like to get our group to use OpenPGP to encrypt certain specific > documents for any kind of exchange - documents that we are supposed to > make every effort to keep confidential (such as membership lists and > financial documents). > > So that's not bad news. And it makes me feel a little better! > > Am I correct in understanding that we can exchange public keys in person > to avoid using a key server? Indeed, you can. Now, about how to do it... I *figure* you can export your public key, and put it on a diskette or USB memory stick, and exchange it with your mates. I am not sure if you should sign the public key too, or if it is already signed. But I don't see why you don't want to use keyservers... anyway, even if you use them, you would like to exchange the public keys "fingerprints" in person, in order to be able to sign them as trusted. Just exchange the fingerprint codes, and once you are back to your office/home, you can download the public keys from keyservers (using the fingerprint code to locate them), and sign them as trusted keys. Finally, remember there are 2 things you must set in the public keys in your keyring: how much you trust the key belongs to the right person, and how much you trust that person to verify somebody's identity before signing the key of that somebody (I can't remember the words for these 2 concepts, one is "trust", but the other... well, surely somebody will explain that part better than me). By the way, if I were going to use gpg in 2 different areas, I would use 2 different keypairs, with different email accounts, to keep them isolated, just in case... Regards -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEcBAEBAgAGBQJIRMqaAAoJEMV4f6PvczxAefAH/2HQt7lD/LUkvA1GdjVvHJtA M6bf/HtgjLJO5FUVTVZ4n5uNyK4fmyisNyZe+zUnucYmQx1HS/PbjJ+nvdzpLcu3 8gyhekc4Pxt3K3qOPuo079AklD99GfwYZcCq0LmQOkeuWbY6pQaanowBX8xvkUcg rf97UCcqrYfnc6M+cgS0rYIRuXcIFZmjyXNEqqMQPM0sWp2fnpqYNJaKo7QUOlI/ RX+gsc6zlrCuKzcc3qId4tcywPWktWtmch9A4a7NzF/W4NFv4ttX+mzL1fMMTCfg U2az6BZdojyMrTZJhthQdrrxIA+XdA0nZfjQIEZqTEQH7gxyaU4Zkn1PAjirR60= =GHnu -----END PGP SIGNATURE----- From powermax_123 at gmx.de Tue Jun 3 02:03:43 2008 From: powermax_123 at gmx.de (powermax_123 at gmx.de) Date: Tue, 03 Jun 2008 11:03:43 +0200 Subject: [Enigmail] "Reply with template" failes with activated OpenPGP-Support for this identity Message-ID: Hello, I would like to use the "Reply with template"-action when filtering mails. When an incoming mail matches the criteria of the filter, Thunderbird shall answer with a predefined template. It fails with the message "Senden der Nachricht fehlgeschlagen. Bitte ?berpr?fen Sie Ihre Konten-Einstellungen und wiederholen Sie den Vorgang." (German Thunderbird) which says in English something like "Sending of message failed. Please check your account settings and retry". After deactivating OpenPGP-Support (Enigmail 0.95.6, gpg (GnuPG) 1.4.6) for this identity it works perfectly and the auto-reply is sent properly. Is there a setting which prevents Thunderbird from auto-replying with activated OpenPGP-Support? Or does anybody has a solution for this problem? Thank you in advance, kind regards, powermax123 From faramir.cl at gmail.com Tue Jun 3 05:10:01 2008 From: faramir.cl at gmail.com (Faramir) Date: Tue, 03 Jun 2008 08:10:01 -0400 Subject: [Enigmail] "Reply with template" failes with activated OpenPGP-Support for this identity In-Reply-To: References: Message-ID: <48453499.50404@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 powermax_123 at gmx.de escribi?: > Hello, > > I would like to use the "Reply with template"-action when filtering mails. When an incoming mail matches the criteria of the filter, Thunderbird shall answer with a predefined template. It fails with the message "Senden der Nachricht fehlgeschlagen. Bitte ?berpr?fen Sie Ihre Konten-Einstellungen und wiederholen Sie den Vorgang." (German Thunderbird) which says in English something like "Sending of message failed. Please check your account settings and retry". After deactivating OpenPGP-Support (Enigmail 0.95.6, gpg (GnuPG) 1.4.6) for this identity it works perfectly and the auto-reply is sent properly. > > Is there a setting which prevents Thunderbird from auto-replying with activated OpenPGP-Support? Or does anybody has a solution for this problem? > > Thank you in advance, > > kind regards, > > powermax123 Did you configure thunderbird to sign messages by default? I am not an expert, but when I fail to enter my passphrase, I get an error message and the message is not sent. Maybe the problem is trying to use gpg to sign the auto-replied message, and not being able to auto-type the passphrase... Or maybe it doesn't have anything to do with that (but don't worry, I am not an expert, but there are a lot of them in this list, soon they will reply to you). -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEcBAEBAgAGBQJIRTSZAAoJEMV4f6PvczxAzq0H/2iWNSuoBjrV333mcqLho5Wc 1vsDZloSa9KcVLK+CMkbcSG7UTEIVXIUZkvgQVP5fwpVyLpNEm0/7du6PauUhcIP jnMoETFJqvJ4Svgvene0IrbDVDucDR2TxTakIcmjisjt2toFRDMjWQGnoCNHOSw9 4tFIE3zlx7O2YXJeN27WxYsIYqFdUHYEvwqL9xSFb4Vo32K9C5iwFZh5mhx3FSfT Q7rPw6RlfZUOGDbMiEXu8w6TedsryDNilz6CU6VYrQRTQ1ySNCCngRzgtTfDJDk+ aYv5g95zEsPAEyXheMmmDlaHP7v0riqnWu1aJ88D2NUEOS4iM/8Aw/T3WWCIhu8= =KKN7 -----END PGP SIGNATURE----- From rhomme at gmail.com Tue Jun 3 06:26:51 2008 From: rhomme at gmail.com (Richard Homme) Date: Tue, 03 Jun 2008 09:26:51 -0400 Subject: [Enigmail] Testing Enigmail - signed only In-Reply-To: <4844CA9A.6060506@gmail.com> References: <483F5B65.2090904@gmail.com> <4843DBCE.30906@sixdemonbag.org> <4843F92B.1050907@gmail.com> <4844CA9A.6060506@gmail.com> Message-ID: <4845469B.2020009@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Thank you for the info and advice. I'm sure I'll catch on to the best ways to use gpg as I become more familiar with it. ...Richard Faramir wrote: | Richard Homme escribi?: | > Thank-you, Robert. | | > As it happens, I am considering using Enigmail within our group mainly | > because of a (possibly paranoid) concern with eavesdropping. I'd also | > like to get our group to use OpenPGP to encrypt certain specific | > documents for any kind of exchange - documents that we are supposed to | > make every effort to keep confidential (such as membership lists and | > financial documents). | | > So that's not bad news. And it makes me feel a little better! | | > Am I correct in understanding that we can exchange public keys in person | > to avoid using a key server? | | Indeed, you can. Now, about how to do it... I *figure* you can export | your public key, and put it on a diskette or USB memory stick, and | exchange it with your mates. I am not sure if you should sign the public | key too, or if it is already signed. | | But I don't see why you don't want to use keyservers... anyway, even | if you use them, you would like to exchange the public keys | "fingerprints" in person, in order to be able to sign them as trusted. | Just exchange the fingerprint codes, and once you are back to your | office/home, you can download the public keys from keyservers (using the | fingerprint code to locate them), and sign them as trusted keys. | | Finally, remember there are 2 things you must set in the public keys | in your keyring: how much you trust the key belongs to the right person, | and how much you trust that person to verify somebody's identity before | signing the key of that somebody (I can't remember the words for these 2 | concepts, one is "trust", but the other... well, surely somebody will | explain that part better than me). | | By the way, if I were going to use gpg in 2 different areas, I would | use 2 different keypairs, with different email accounts, to keep them | isolated, just in case... | | Regards _______________________________________________ Enigmail mailing list Enigmail at mozdev.org https://www.mozdev.org/mailman/listinfo/enigmail -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (Darwin) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFIRUabwLqBbG8u9YkRAlENAJ4kZR/5V44UidKr/Z4q1cPieQIOogCgxHB+ ZLfjlb56mXg/BloBpuvJspE= =/JMN -----END PGP SIGNATURE----- From powermax_123 at gmx.de Wed Jun 4 04:34:41 2008 From: powermax_123 at gmx.de (powermax_123 at gmx.de) Date: Wed, 04 Jun 2008 13:34:41 +0200 Subject: [Enigmail] "Reply with template" failes with activated OpenPGP-Support for this identity In-Reply-To: References: Message-ID: Thank you for your answer... I configured OpenPGP to sign only encrypted messages. Unencrypted messages aren't signed. Any other ideas? Thank you in advance, kind regards, powermax123 Faramir schrieb: > powermax_123 at gmx.de escribi?: >> Hello, > >> I would like to use the "Reply with template"-action when filtering mails. When an incoming mail matches the criteria of the filter, Thunderbird shall answer with a predefined template. It fails with the message "Senden der Nachricht fehlgeschlagen. Bitte ?berpr?fen Sie Ihre Konten-Einstellungen und wiederholen Sie den Vorgang." (German Thunderbird) which says in English something like "Sending of message failed. Please check your account settings and retry". After deactivating OpenPGP-Support (Enigmail 0.95.6, gpg (GnuPG) 1.4.6) for this identity it works perfectly and the auto-reply is sent properly. > >> Is there a setting which prevents Thunderbird from auto-replying with activated OpenPGP-Support? Or does anybody has a solution for this problem? > >> Thank you in advance, > >> kind regards, > >> powermax123 > > Did you configure thunderbird to sign messages by default? I am not an > expert, but when I fail to enter my passphrase, I get an error message > and the message is not sent. Maybe the problem is trying to use gpg to > sign the auto-replied message, and not being able to auto-type the > passphrase... Or maybe it doesn't have anything to do with that (but > don't worry, I am not an expert, but there are a lot of them in this > list, soon they will reply to you). From carloswill at gmail.com Wed Jun 4 08:45:50 2008 From: carloswill at gmail.com (Carlos Williams) Date: Wed, 4 Jun 2008 11:45:50 -0400 Subject: [Enigmail] Unable To Attach My Key Message-ID: I just installed Enigmail 0.95.6 on Thunderbird 2.0.0.14 & wanted to add my key which I generated with GPG on my Linux system. I am able to see my generated key on Linux as shown below: cwilliams at tunafish:~/.gnupg$ gpg --list-keys /home/cwilliams/.gnupg/pubring.gpg ---------------------------------- pub 1024D/C4B187CB 2008-05-29 uid Carlos Williams sub 2048g/1B57B444 2008-05-29 Now when I installed Enigmail, I had no problems. I restarted Mozilla Thunderbird and followed the "new user" guide from the Enigmail site and got error for some reason and I have no idea why... When I open Thunderbird and I click "OpenPGP" on the toolbar > "Key Management, I get the following window: http://img514.imageshack.us/img514/3671/screenshotopenpgpkeymaneh1.png The blue status bar at the bottom just keeps going for ever and never finds anything. I then proceed with the instructions and select "Generate" on the toolbar and then "New Keypair" and I get the following error: http://img398.imageshack.us/img398/6973/errorpp9.png How do I get my existing public key to be recognized my Enigmail on my Linux / Thunderbird system? When I go to "Edit > Account Settings > OpenPGP Security & select "Use specific OpenPGP key ID (0x1234ABCD), it does not find my key I generated as show above. What am I doing wrong? Thanks for any assistance in this matter. I searched archives but could not find anything helpful. - Carlos From shavital at mac.com Wed Jun 4 09:25:30 2008 From: shavital at mac.com (Charly Avital) Date: Wed, 04 Jun 2008 12:25:30 -0400 Subject: [Enigmail] Unable To Attach My Key In-Reply-To: References: Message-ID: <4846C1FA.1080001@mac.com> Carlos Williams wrote the following on 6/4/08 11:45 AM: > I just installed Enigmail 0.95.6 on Thunderbird 2.0.0.14 & wanted to > add my key which I generated with GPG on my Linux system. I am able to > see my generated key on Linux as shown below: > > cwilliams at tunafish:~/.gnupg$ gpg --list-keys > /home/cwilliams/.gnupg/pubring.gpg > ---------------------------------- > pub 1024D/C4B187CB 2008-05-29 > uid Carlos Williams > sub 2048g/1B57B444 2008-05-29 > [...] Carlos, Did you set gpg's path in OpenPGP/Preferences/Basic? Charly From carloswill at gmail.com Wed Jun 4 11:16:26 2008 From: carloswill at gmail.com (Carlos Williams) Date: Wed, 4 Jun 2008 14:16:26 -0400 Subject: [Enigmail] Unable To Attach My Key In-Reply-To: <4846C1FA.1080001@mac.com> References: <4846C1FA.1080001@mac.com> Message-ID: On Wed, Jun 4, 2008 at 12:25 PM, Charly Avital wrote: > Carlos, > > Did you set gpg's path in OpenPGP/Preferences/Basic? > > Charly > Charly - not to sound dumb but where do I set the path in? In Thunderbird or in my OS? I am not sure I understand your suggestion. Also where is the GPG path on my system or how do I determine this? From mlisten at hammernoch.net Wed Jun 4 11:48:29 2008 From: mlisten at hammernoch.net (=?ISO-8859-1?Q?Ludwig_H=FCgelsch=E4fer?=) Date: Wed, 04 Jun 2008 20:48:29 +0200 Subject: [Enigmail] Unable To Attach My Key In-Reply-To: References: <4846C1FA.1080001@mac.com> Message-ID: <4846E37D.6070702@hammernoch.net> Carlos Williams wrote on 04.06.2008 20:16 Uhr: > Charly - not to sound dumb but where do I set the path in? In > Thunderbird or in my OS? I am not sure I understand your suggestion. > Also where is the GPG path on my system or how do I determine this? Within Thunderbird. Go to OpenPGP -> Preferences. On the tab "Basic" in the field "Files and Directories" the path should be entered. The exact location may vary with the Linux distribution or if you have a self compiled version of gpg. Usually gpg resides in /usr/bin or in /usr/local/bin. You can determine it easily by typing "which gpg" on the command line. Be sure to enter the exact output of the which command (it contains gpg at the end) like /usr/local/bin/gpg HTH Ludwig -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 542 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080604/ae7d74fa/attachment.bin From dlverlee at mtu.edu Thu Jun 5 15:40:46 2008 From: dlverlee at mtu.edu (Derek VerLee) Date: Thu, 05 Jun 2008 18:40:46 -0400 Subject: [Enigmail] [test] testing signature Message-ID: <48486B6E.40702@mtu.edu> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello, I'm interested in crypto and feel the need to use openpgp as a part of learning about it. I'm signing this message, hopefully someone can tell me if it works? I uploaded my public key to keys.gnupg.net about an hour ago. 0x8D68E538 Thanks _derek -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkhIa24ACgkQkYZljo1o5TjhUwCgtzQa9jSp08lQJ0/sMaOOAfnz 7ZMAoIVet6K63PPPwDj0lIvq9QUvuRVq =mqTG -----END PGP SIGNATURE----- From jmoore3rd at bellsouth.net Thu Jun 5 15:45:38 2008 From: jmoore3rd at bellsouth.net (John W. Moore III) Date: Thu, 05 Jun 2008 18:45:38 -0400 Subject: [Enigmail] [test] testing signature In-Reply-To: <48486B6E.40702@mtu.edu> References: <48486B6E.40702@mtu.edu> Message-ID: <48486C92.2010605@bellsouth.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Derek VerLee wrote: > I'm interested in crypto and feel the need to use openpgp as a part of > learning about it. I'm signing this message, hopefully someone can tell > me if it works? I uploaded my public key to keys.gnupg.net about an > hour ago. 0x8D68E538 Good News - It Worked! Key is propagating and I retrieved it without any trouble. Good Sig! JOHN ;) Timestamp: Thursday 05 Jun 2008, 18:45 --400 (Eastern Daylight Time) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.5.0-svn4754: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJISGyRAAoJEBCGy9eAtCsPEC0H/2que88pfLy5/3n1r2pzxlVy M7n4ErQO/8gxSCEMrMKV9ABZLmH1xIysyEea9vXtc9BgzvSGJqqbDPiGaK4ABxrC 9mts8l1/gy0AhORjiknuXH9Poa/qqVRrPEKmMPOgOpbI6XvzaM1iVi2WBz+UW64A FIrEEo3OZ98R7o5Zg04dwtwySWs10RZ0rbn1by75VHUS7CngL+JgL4+3CcW4M4Gc dWeNX4d3FDTvbTaIKKdhUmNkP4rdayJZa/FYB4P/fyIK1kcOHoXoFRpZO+M5U2+i cMVRSun3HNP0Q3sKXQIJjVGZi4BCOAejLQsdtjWB5yRIRFUZAkHLs6kWvjqP2ms= =yVq8 -----END PGP SIGNATURE----- From admin at psipro.com Thu Jun 5 18:48:01 2008 From: admin at psipro.com (Brian Malinconico) Date: Thu, 05 Jun 2008 21:48:01 -0400 Subject: [Enigmail] New to PGP Message-ID: <48489751.8020301@psipro.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello all, I've installed OpenPGP before but never got it working, now I'm taking another crack at it. As per the docs, I'm looking for anyone willing to help me test my configurations to make sure its all running OK. Hopefully I managed to sign this properly... Thank you, Brian -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkhIl1AACgkQFw85Hx3sZ6S5WACfZDv2zOmYy4YLJGhJgZK4xReA 0HsAn3Zboy8Zy8iurtTFEsmCXJHPE8jz =hHzs -----END PGP SIGNATURE----- From John at Mozilla-Enigmail.org Thu Jun 5 20:29:06 2008 From: John at Mozilla-Enigmail.org (John Clizbe) Date: Thu, 05 Jun 2008 22:29:06 -0500 Subject: [Enigmail] New to PGP In-Reply-To: <48489751.8020301@psipro.com> References: <48489751.8020301@psipro.com> Message-ID: <4848AF02.1030803@Mozilla-Enigmail.org> Brian Malinconico wrote: > Hello all, > > I've installed OpenPGP before but never got it working, now I'm taking > another crack at it. > > As per the docs, I'm looking for anyone willing to help me test my > configurations to make sure its all running OK. > > Hopefully I managed to sign this properly... It /looks/ like Enigmail is working. Looks is the best anyone can tell at the moment. Had you sent your key to the keyservers, folks could've verified the signature you had on this last message. Until then, ie until it is available: 1) See if the original message in your Sent folder verifies OK 2a) Send yourself a signed message and see if that verifies when you receive it. 2b) You can also send yourself an encrypted message. Until your public key is available, there is nothing others can help you with Within Enigmail, you may open the key management window, right click the key, and select "upload to key server"... pool.sks-keyservers.net is a great choice -- John P. Clizbe Inet: John (a) Mozilla-Enigmail.org You can't spell fiasco without SCO. hkp://keyserver.gingerbear.net "what's the key to success?" / "two words: good decisions." "what's the key to good decisions?" / "one word: experience." "how do i get experience?" / "two words: bad decisions." "Just how do the residents of Haiku, Hawai'i hold conversations?" -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 677 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080605/65d619e6/attachment.bin From newsaccount at XXRemoveXXkfwebs.net Fri Jun 6 03:46:47 2008 From: newsaccount at XXRemoveXXkfwebs.net (Kristian Fiskerstrand) Date: Fri, 06 Jun 2008 12:46:47 +0200 Subject: [Enigmail] New to PGP In-Reply-To: References: <48489751.8020301@psipro.com> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 John Clizbe wrote, On 06/06/2008 05:29 AM: > Brian Malinconico wrote: >> Hello all, >> >> I've installed OpenPGP before but never got it working, now I'm taking >> another crack at it. >> >> As per the docs, I'm looking for anyone willing to help me test my >> configurations to make sure its all running OK. >> >> Hopefully I managed to sign this properly... There are line-wrapping issues and format=flowed is enabled. as such the signature verifies when copy-pasting the email content into gpg directly, but not from enigmail, as it sees the hard breaks in the email source. Make sure thunderbird is set to break the messages at 72 characters. Good signature from: Brian Malinconico (Old USAFA Passworod) Key ID: 0x1DEC67A4 The signature is valid, but the key is untrusted vs OpenPGP Security Info Error - signature verification failed - -- - ---------------------------- Kristian Fiskerstrand http://www.kfwebs.net - ---------------------------- Nunc aut numquam Now or never - ---------------------------- http://www.secure-my-email.com http://www.secure-my-internet.com -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.9 (GNU/Linux) iQIcBAEBCAAGBQJISRWXAAoJEBbgz41rC5UIINkP/30hvBxcXOFdD3S+I5TtE1gR EbJIEVsiJN9zsQ+XszGWROGNW2n+410IMZqud4n5EYzWtjZx0siESERUbxrT8LTO ikaROoXzXtK/jKyHy1MD131+KDsuALAwFrIo5uXNSwMFVotrh1lCyY8afudKUDSs cQFWcok+qC0tKtO/QgH6NdMc3ZhWFsODLQ+ZUIQNKiSdZgywbV2IwGniJRXRtQfY 5jpQMNjyJvNgGb6PZiTi2wNzOvK+KXvibnwx9yeV6utUhOtl3sQff4WVDEZhGS+Y khli311eniu/CzZ9L5B/q6yNjFPAogAY528AEU+Ean3rYDw+3+0AjFgyR5AuznrC /Ci+3jZ5khMTHK7+J0hcpVpwd/NW2x0zNp/yxaTP3RBLFc2f5o5cdjjauPlJdhFQ seBEYu6UxB5DmGZc6DcOzlyvp3CDUphuhvr+C++GAIhW5e40j7GCEcylsrCCnrYI CsJ7yyhWqNoP6a823cWPWomctBEyLkM7SchxgLa/z0tb9krNtK3btY5PN+ZMCOaS 7bUSCI1xb8Lbjxo+KiRzeT8tnCSSY3X8GLX2N647RsglMrYIj5AbI000RrHmvEkr GN7AO7AaHas6vbnZK6+GmBWUvs6CdZq6g3boDWqaX8nQxhuJtVLF+WzNJjxQB5hX Xse4Si6IgNdK0QRn0efX =hLV0 -----END PGP SIGNATURE----- From rozbora at mozilla.sk Fri Jun 6 06:25:34 2008 From: rozbora at mozilla.sk (Branislav Rozbora) Date: Fri, 06 Jun 2008 15:25:34 +0200 Subject: [Enigmail] Slovak locale enigmail Message-ID: Hi, I am author of slovak locale for Enigmail, it's published and up-to-date at http://www.mozilla.sk/rozsirenia/enigmail/ Localization is tested by our community. I want to ask you to add it to official enigmail package. sk-SK xpi is here: http://www.mozilla.sk/wp-content/download/rozsirenia/enigmail/enigmail-sk-SK-0.95.6.xpi thx Brano From steve at ibctech.ca Fri Jun 6 09:38:12 2008 From: steve at ibctech.ca (Steve Bertrand) Date: Fri, 06 Jun 2008 12:38:12 -0400 Subject: [Enigmail] Learning the ropes with PGP Message-ID: <484967F4.3050009@ibctech.ca> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi everyone, I've had Enigmail installed for quite some time now, but really haven't gotten too much use out of it. This is the beginning of my quest to find out about the ins and outs of signing and encryption, and what effects it will have in certain situations. I'm going to test sending signed messages to a separate email account in ~ a different client on my workstation here that does not have PGP associated with it to find out if it is viable to send signed messages to everyone by default or not. Anyway, cheers! Steve -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (MingW32) iD8DBQFISWf0o2xzyRDHJ7URAkM1AJ9pzziGMZsCQzDRyDIh/4hiTtgl/wCdEx6a tfGMxrSEVtnK47gnviRK0nE= =f5AW -----END PGP SIGNATURE----- From faramir.cl at gmail.com Fri Jun 6 10:30:27 2008 From: faramir.cl at gmail.com (Faramir) Date: Fri, 06 Jun 2008 13:30:27 -0400 Subject: [Enigmail] Learning the ropes with PGP In-Reply-To: <484967F4.3050009@ibctech.ca> References: <484967F4.3050009@ibctech.ca> Message-ID: <48497433.9060604@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Steve Bertrand escribi?: > Hi everyone, > > I've had Enigmail installed for quite some time now, but really haven't > gotten too much use out of it. > > This is the beginning of my quest to find out about the ins and outs of > signing and encryption, and what effects it will have in certain situations. > > I'm going to test sending signed messages to a separate email account in > ~ a different client on my workstation here that does not have PGP > associated with it to find out if it is viable to send signed messages > to everyone by default or not. > > Anyway, cheers! > > Steve Yes, it should not be any problem, they will see a "funny" weird characters block, but it wont affect them. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEcBAEBAgAGBQJISXQyAAoJEMV4f6PvczxACtcH/2K0nIwK+XP3euDz0q5whRhD MkVZr3DhYgJ3xaQ2yOjuvoxNgqypY4vSmqfuwqX0uFGCw4GUA+qbo5nedbwCGm43 4Hdj2tv/fdjTzrpTa0J4iP+5jCpFRLSyyB3sYfyjXhW+Y279koA4GjpOa8cOquZJ 9nCXTssp2GgUfeQYxQ8WRokVxRH93QezoSULQ0twHwZSKHyXbJNO1HgZ1FPq1rzX vwSc//RtWv1wv3IXRemswqLqF7UzfF+dT0rwyeZyo/JSyc+cMkrBME7xF10Nw8tE rrRW/64/bkdqEoKCclQyc5quCCLWnRGto15rwSaBAPgiJXBs2rW/+1WnXXd4qJU= =hWfY -----END PGP SIGNATURE----- From rjh at sixdemonbag.org Fri Jun 6 10:33:49 2008 From: rjh at sixdemonbag.org (Robert J. Hansen) Date: Fri, 06 Jun 2008 12:33:49 -0500 Subject: [Enigmail] Learning the ropes with PGP In-Reply-To: <48497433.9060604@gmail.com> References: <484967F4.3050009@ibctech.ca> <48497433.9060604@gmail.com> Message-ID: <484974FD.4020002@sixdemonbag.org> > Yes, it should not be any problem, they will see a "funny" weird > characters block, but it wont affect them. Except psychologically -- some people have an unreasonable (nigh phobic) aversion to seeing OpenPGP signature blocks at the end of a message. It is helpful to consider in advance how to explain your practice to such people. From lesterbush at hotmail.com Fri Jun 6 19:59:41 2008 From: lesterbush at hotmail.com (Lester Bush) Date: Fri, 6 Jun 2008 22:59:41 -0400 Subject: [Enigmail] (no subject) Message-ID: Hi. I just installed Enigmail, and I need to send a signed message then an encrypted message as a test. If anyone can help me with this, I'd be very appreciative. -- Lester _________________________________________________________________ Now you can invite friends from Facebook and other groups to join you on Windows Live? Messenger. Add now. https://www.invite2messenger.net/im/?source=TXT_EML_WLH_AddNow_Now -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.mozdev.org/pipermail/enigmail/attachments/20080606/5fc6d4dc/attachment.html -------------- next part -------------- A non-text attachment was scrubbed... Name: LesterBush.vcf Type: application/octet-stream Size: 61 bytes Desc: not available Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080606/5fc6d4dc/attachment.obj From alaric at metrocast.net Fri Jun 6 20:09:15 2008 From: alaric at metrocast.net (Phil Stracchino) Date: Fri, 06 Jun 2008 23:09:15 -0400 Subject: [Enigmail] (no subject) In-Reply-To: References: Message-ID: <4849FBDB.4090101@metrocast.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Lester Bush wrote: > Hi. I just installed Enigmail, and I need to send a signed message then > an encrypted message as a test. If anyone can help me with this, I'd be > very appreciative. > -- > Lester You can send a signed test message to the list. Please do not send encrypted messages to the list though. - -- Phil Stracchino, CDK#2 DoD#299792458 ICBM: 43.5607, -71.355 alaric at caerllewys.net alaric at metrocast.net phil at co.ordinate.org Renaissance Man, Unix ronin, Perl hacker, Free Stater It's not the years, it's the mileage. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFISfvb0DfOju+hMkkRCGCwAJ90FcyMYCByI9xnZUuaBtT+vXpq9wCg0gNw Uy+dPrulxTpz2GdwCba5NEs= =yQ/E -----END PGP SIGNATURE----- From lesterbush at hotmail.com Fri Jun 6 20:13:04 2008 From: lesterbush at hotmail.com (Lester Bush) Date: Fri, 6 Jun 2008 23:13:04 -0400 Subject: [Enigmail] (no subject) Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 This is a signed message. It's a test. Let me know if it doesn't work. - -- Lester -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkhJ/KQACgkQJWySxjhk6V2krACZAbRER/yIr4avvFdps169XAQK Te4AoIq80nfK8P3UNh9OMUflAuNk8q7B =5ZDO -----END PGP SIGNATURE----- _________________________________________________________________ It?s easy to add contacts from Facebook and other social sites through Windows Live? Messenger. Learn how. https://www.invite2messenger.net/im/?source=TXT_EML_WLH_LearnHow -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.mozdev.org/pipermail/enigmail/attachments/20080606/f063074b/attachment.html From jmoore3rd at bellsouth.net Fri Jun 6 20:13:01 2008 From: jmoore3rd at bellsouth.net (John W. Moore III) Date: Fri, 06 Jun 2008 23:13:01 -0400 Subject: [Enigmail] (no subject) In-Reply-To: References: Message-ID: <4849FCBD.1090902@bellsouth.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Lester Bush wrote: > Hi. I just installed Enigmail, and I need to send a signed message then > an encrypted message as a test. If anyone can help me with this, I'd be > very appreciative. I am very willing to assist. Feel Free to send Me a *Signed* & Encrypted Email. If You haven't already sent Your Key to the Keyservers then be sure to include Your Key Block in the body of the message so I will have it for sending You an Encrypted Reply. :) If Copying Your Key to the Clipboard and Pasting it into the message body isn't feasible for You then please provide Me with a Link or attach the Key. My Suggestion would be to Upload Your Key to the Servers and then Sign Your missive to Me and I'll retrieve it from the Servers. HTH JOHN ;) Timestamp: Friday 06 Jun 2008, 23:12 --400 (Eastern Daylight Time) P.S. Send the Encrypted Message *direct* to Me and _not_ to the Enigmail List. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.5.0-svn4754: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJISfy7AAoJEBCGy9eAtCsPbRsIAJDnq7YJRo3dTVZXV8yNBd+V Jm6RJmLt+K+FUYAQ4+af6QRC9P1aEU5qt2lki5zE3qN3tsoSlBHGtP48psgH4tAI DxlAis/baXw99w+fdIZiZrG8d88PzWF1dchp1q2pKa1ZVN0tcSXq9XfMnDauTj/G rS/NSV9RA2eCUf1PH43RP2/p7G9D+VaPm6/U0I4ZaePts1K0mC7qdp69uEYO6KRY UZP7pkb67b6aV/PGCta6odD8r4AISN5mdvoI6DZ399pbZnPYHU0sVeaMd+u9Y0WM KiUegEzW4DX9lIvjb8vLaGAFYJeZnVCTnt2MhpyuRIaBF8eTeCuZYjMyubssYzY= =opn1 -----END PGP SIGNATURE----- From shavital at mac.com Fri Jun 6 20:46:19 2008 From: shavital at mac.com (Charly Avital) Date: Fri, 06 Jun 2008 23:46:19 -0400 Subject: [Enigmail] (no subject) In-Reply-To: References: Message-ID: <484A048B.2010503@mac.com> Lester Bush wrote the following on 6/6/08 11:13 PM: > This is a signed message. It's a test. Let me know if it doesn't work. It works: OpenPGP Security Info Good signature from Lester Bush Key ID: 0x3864E95D / Signed on: 6/6/08 11:12 PM Key fingerprint: 18CE 8ECC F924 5B4F F207 92E9 256C 92C6 3864 E95D Charly MacOS 10.5.3 - MacBook Intel C2Duo - GnuPG 1.4.9 - GPG2 2.0.9 - Thunderbird 2.0.0.14 - Enigmail 0.96a From alaric at metrocast.net Fri Jun 6 21:33:08 2008 From: alaric at metrocast.net (Phil Stracchino) Date: Sat, 07 Jun 2008 00:33:08 -0400 Subject: [Enigmail] (no subject) In-Reply-To: <484A048B.2010503@mac.com> References: <484A048B.2010503@mac.com> Message-ID: <484A0F84.6080107@metrocast.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Charly Avital wrote: > Lester Bush wrote the following on 6/6/08 11:13 PM: >> This is a signed message. It's a test. Let me know if it doesn't work. > > It works: > > OpenPGP Security Info > Good signature from Lester Bush > Key ID: 0x3864E95D / Signed on: 6/6/08 11:12 PM > Key fingerprint: 18CE 8ECC F924 5B4F F207 92E9 256C 92C6 3864 E95D Interestingly, gpg is consistently throwing me a CRC error on it. - -- Phil Stracchino, CDK#2 DoD#299792458 ICBM: 43.5607, -71.355 alaric at caerllewys.net alaric at metrocast.net phil at co.ordinate.org Renaissance Man, Unix ronin, Perl hacker, Free Stater It's not the years, it's the mileage. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFISg+E0DfOju+hMkkRCNLuAKD5ndtXN/68gDROKGMMvUalWZ22PACfbTo9 MUkXVF+M6pu8R9QP89lgqbE= =cFYO -----END PGP SIGNATURE----- From lesterbush at hotmail.com Fri Jun 6 21:34:53 2008 From: lesterbush at hotmail.com (Lester Bush) Date: Sat, 7 Jun 2008 00:34:53 -0400 Subject: [Enigmail] (no subject) Message-ID: Thanks everyone. I now know that my signature works, and that my encryption works. -- Lester _________________________________________________________________ It?s easy to add contacts from Facebook and other social sites through Windows Live? Messenger. Learn how. https://www.invite2messenger.net/im/?source=TXT_EML_WLH_LearnHow -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.mozdev.org/pipermail/enigmail/attachments/20080607/ab90420e/attachment.html -------------- next part -------------- A non-text attachment was scrubbed... Name: LesterBush.vcf Type: application/octet-stream Size: 61 bytes Desc: not available Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080607/ab90420e/attachment.obj From faramir.cl at gmail.com Sat Jun 7 00:15:41 2008 From: faramir.cl at gmail.com (Faramir) Date: Sat, 07 Jun 2008 03:15:41 -0400 Subject: [Enigmail] (no subject) In-Reply-To: <484A048B.2010503@mac.com> References: <484A048B.2010503@mac.com> Message-ID: <484A359D.8060306@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Charly Avital escribi?: > Lester Bush wrote the following on 6/6/08 11:13 PM: >> This is a signed message. It's a test. Let me know if it doesn't work. > > It works: > > OpenPGP Security Info > Good signature from Lester Bush > Key ID: 0x3864E95D / Signed on: 6/6/08 11:12 PM > Key fingerprint: 18CE 8ECC F924 5B4F F207 92E9 256C 92C6 3864 E95D I got: gpg l?nea de comandos y salida:,C:\\Archivos de programa\\GNU\\GnuPG\\gpg.exe --charset utf8 --batch --no-tty - --status-fd 2 -d,gpg: Error en suma de comprobaci??n: E590CE - DC3E59 (It is a checksum error) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEcBAEBAgAGBQJISjWdAAoJEMV4f6PvczxAow0H/0ybv+VZRQLM3r0qfASaIO6h eq7MoOetk441FyY19C0AfJzXeZXPxnQOItWVF1AkFTBeQOw42U1QVOhRYX6CIlFF iNUMBj2zA+cwX/wlkHdHVq64Fw6H3xtJVzuQyq9Kjg5qHqZMC1101OyCYjG/w5GC hxacEpbyLuMRnaGos6M1F2Tf5DceYLX9dY6Udiu14k9+jdzRqGBvqlqoe4iXL8By Aok3WO7fVngGseu0QdXLhZH3zGiMvkNzjBv8iWmwasWuE0pi9RiZsZ2CV+/7Mtz+ ldF6dDKwty97/QKFnM65A95LwfsOhuNudJ5FQy8ZoqfbA7GjEtf2HYUZoz5/Ja8= =vT7J -----END PGP SIGNATURE----- From shavital at mac.com Sat Jun 7 04:04:33 2008 From: shavital at mac.com (Charly Avital) Date: Sat, 07 Jun 2008 07:04:33 -0400 Subject: [Enigmail] (no subject) In-Reply-To: <484A0F84.6080107@metrocast.net> References: <484A048B.2010503@mac.com> <484A0F84.6080107@metrocast.net> Message-ID: <484A6B41.9050602@mac.com> Phil Stracchino wrote the following on 6/7/08 12:33 AM: [...] > Interestingly, gpg is consistently throwing me a CRC error on it. Faramir wrote the following on 6/7/08 3:15 AM: [...] > I got: > > gpg l??nea de comandos y salida:,C:\\Archivos de > programa\\GNU\\GnuPG\\gpg.exe --charset utf8 --batch --no-tty > --status-fd 2 -d,gpg: Error en suma de comprobaci?n: E590CE - DC3E59 > > (It is a checksum error) I have verified the signature using three different MUAs: 1. Thunderbird version 2.0.0.14 (20080421)+Enigmail 0.96a - gpg 2.0.9 OpenPGP Security Info Good signature from Lester Bush Key ID: 0x3864E95D / Signed on: 6/6/08 11:12 PM Key fingerprint: 18CE 8ECC F924 5B4F F207 92E9 256C 92C6 3864 E95D 2. Apple's Mail Version 3.3 (924) + GPGMailbundle d53 - gpg 2.0.9 Signed by Lester Bush . Signed on Fri Jun 06 23:12:36 America/New_York 2008 Key fingerprint: 18CE 8ECC F924 5B4F F207 92E9 256C 92C6 3864 E95D 3. Eudora 6.2.4 with Chang's Apple Scripts gpg 1.4.9 -----BEGIN GPG OUTPUT----- gpg: Signature made Fri Jun 6 23:12:36 2008 EDT using DSA key ID 3864E95D gpg: Good signature from "Lester Bush " -----END GPG OUTPUT----- Charly MacOS 10.5.3 - MacBook Intel C2Duo From mlisten at hammernoch.net Sat Jun 7 06:43:13 2008 From: mlisten at hammernoch.net (=?windows-1252?Q?Ludwig_H=FCgelsch=E4fer?=) Date: Sat, 07 Jun 2008 15:43:13 +0200 Subject: [Enigmail] (no subject) In-Reply-To: References: Message-ID: <484A9071.3000100@hammernoch.net> Hi Lester, Lester Bush wrote on 07.06.2008 5:13 Uhr: > This is a signed message. It's a test. Let me know if it doesn't work. I'm getting a Checksum error: "gpg command line and output:,/usr/local/bin/gpg,gpg: Pr??fsummenfehler; e590ce - dc3e59 " (CRC error) This is most probably due to the multipart/mixed message, meaning that you send both html and plain text message in one email. Your signature is indicating that you use enigmail from within thunderbird, however your mail headers show that you don't send it via thunderbird, but from within a hotmail account. Did you sign the message within Thunderbird and then copy/paste it in a webmail-account? This won't work reliably with signed messages. You should get an email account/provider who allows sending messages from Thunderbird directly (via SMTP interface). Ludwig -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 542 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080607/8738cde2/attachment.bin From rasmith1959 at yahoo.com Sat Jun 7 06:50:36 2008 From: rasmith1959 at yahoo.com (Roy Smith) Date: Sat, 07 Jun 2008 08:50:36 -0500 Subject: [Enigmail] (no subject) In-Reply-To: <484A9071.3000100@hammernoch.net> References: <484A9071.3000100@hammernoch.net> Message-ID: <484A922C.4090203@yahoo.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Ludwig H?gelsch?fer wrote: | Hi Lester, | | Lester Bush wrote on 07.06.2008 5:13 Uhr: |> This is a signed message. It's a test. Let me know if it doesn't work. | | I'm getting a Checksum error: "gpg command line and | output:,/usr/local/bin/gpg,gpg: Pr??fsummenfehler; e590ce - dc3e59 " | (CRC error) | | This is most probably due to the multipart/mixed message, meaning that | you send both html and plain text message in one email. | | Your signature is indicating that you use enigmail from within | thunderbird, however your mail headers show that you don't send it via | thunderbird, but from within a hotmail account. | | Did you sign the message within Thunderbird and then copy/paste it in a | webmail-account? | | This won't work reliably with signed messages. You should get an email | account/provider who allows sending messages from Thunderbird directly | (via SMTP interface). If you have Thunderbird strip the HTML by going to View - Message Body As - Plain Text, it works perfectly. - -- Roy Smith I use Firefox because I want to use software that complies with Web standards. See . -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQIcBAEBAgAGBQJISpIsAAoJEG7cp55ZD5UOe2YP/16E1DRI4pwceLag7lQEgizU bJj60PdfykXSyD9MiJX3fJe1hSSNShQHTsN3I4MyxRj5LfTl3LU3jOOTihC8gz15 7mXCIz9o2qyF7MR42ea79B2ZyIbbg55AuPMNXWVzmwBXFN8I6UXFdHQplaoxhlC7 FyOFLX7FrTvkkbFUB9IZKpIP1IggB+/a6FIztOxmd9SX/7mGRo6yAoFlodtEKfQB Zmu7EcudUKenbhmV/vnM4s0D2oOPKJJi4v20DRkL3aYJuwzPwybqQfv4XiFirfsD J6SRGl70409DerHGe+DQP9b+WyYWU0eIKauBvcZMe0yi7RnA9ud/6V9s2yar1Ire zvQj+XZ+I44DT0+YzdAb9KJi4r6vmxvZT7+hmXk8jFU/9O9MVXOegSnb7JLn0+Ab EhupIjzTl/Lnus0NGraTT0uPY11LuEEaYa2bhaCTx2JHgqU+ux5XaXd28SkG8DvQ rFPb7y6eXoy2IqmmnIiGUvvx2QKtHl4cYzZh41++vnyLsvrgcSj/mznTpibyuchO n6vJWNCovQM1YKxgTFyeKObnlU8A81kOKp3zCwzqDi3sbb2SqARVinA7DIDHwrVi s0hfjB3u6cKI1N9SHEr3f/I3oHSgo0YmTuYHG/BHHRtKifvMcGkWiTfWF2veX50K LYtKh2JOBkTm4uy9f6Ss =Yu7W -----END PGP SIGNATURE----- From mlisten at hammernoch.net Sat Jun 7 07:01:04 2008 From: mlisten at hammernoch.net (=?ISO-8859-1?Q?Ludwig_H=FCgelsch=E4fer?=) Date: Sat, 07 Jun 2008 16:01:04 +0200 Subject: [Enigmail] (no subject) In-Reply-To: <484A922C.4090203@yahoo.com> References: <484A9071.3000100@hammernoch.net> <484A922C.4090203@yahoo.com> Message-ID: <484A94A0.7010308@hammernoch.net> Roy Smith wrote on 07.06.2008 15:50 Uhr: > If you have Thunderbird strip the HTML by going to View - Message Body > As - Plain Text, it works perfectly. Yes, I know. But that's for experts on the receiver side... Disabling HTML on the sending side - either within TB or by not using a webmail which inherently send a HTML part - is one of the first steps to learn when using the OpenPGP system. It's just polite to make the receiver the least effort. "Be liberal in what you accept and be conservative in what you send" has always been a good guide in the net. Ludwig -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 542 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080607/234e38ff/attachment-0001.bin From allison.william at gmail.com Sat Jun 7 07:45:49 2008 From: allison.william at gmail.com (William Allison) Date: Sat, 07 Jun 2008 10:45:49 -0400 Subject: [Enigmail] Digital Signature Test Message-ID: <484A9F1D.8080706@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello, Just installed GnuPG 1.4.9 and Enigmail v0.95.6, need to test the digital signature and encryption features as stated in the quickstart guide. Thanks, -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (Darwin) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkhKnx0ACgkQ0GZFcKs0BhdfJQCeLKiueAgilJObxVpYVMLnE8h/ hXcAoI68y1ItaXq70c0iEbLstlPGqsUV =633g -----END PGP SIGNATURE----- From mlisten at hammernoch.net Sat Jun 7 08:46:39 2008 From: mlisten at hammernoch.net (=?ISO-8859-1?Q?Ludwig_H=FCgelsch=E4fer?=) Date: Sat, 07 Jun 2008 17:46:39 +0200 Subject: [Enigmail] Digital Signature Test In-Reply-To: <484A9F1D.8080706@gmail.com> References: <484A9F1D.8080706@gmail.com> Message-ID: <484AAD5F.3050100@hammernoch.net> Hi, William Allison wrote on 07.06.2008 16:45 Uhr: > Hello, > Just installed GnuPG 1.4.9 and Enigmail v0.95.6, need > to test the digital signature and encryption features > as stated in the quickstart guide. All seems to work: UNTRUSTED Good signature from William Allison Key ID: 0xAB340617 / Signed on: 07.06.2008 16:45 Uhr > Thanks, You're welcome. If you have more questions, you might be interested in subscribing to the enigmail-mailinglist (this is the address you're writing to) at https://www.mozdev.org/mailman/listinfo/enigmail Greetings Ludwig -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 542 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080607/beb4cb4a/attachment.bin From shavital at mac.com Sat Jun 7 08:47:40 2008 From: shavital at mac.com (Charly Avital) Date: Sat, 07 Jun 2008 11:47:40 -0400 Subject: [Enigmail] Digital Signature Test In-Reply-To: <484A9F1D.8080706@gmail.com> References: <484A9F1D.8080706@gmail.com> Message-ID: <484AAD9C.2030805@mac.com> William Allison wrote the following on 6/7/08 10:45 AM: > Hello, > Just installed GnuPG 1.4.9 and Enigmail v0.95.6, need > to test the digital signature and encryption features > as stated in the quickstart guide. > Thanks, William, Your signature verifies: With Thunderbird 2.0.0.14+Enigmail 0.96a OpenPGP Security Info UNTRUSTED Good signature from William Allison Key ID: 0xAB340617 / Signed on: 6/7/08 10:45 AM Key fingerprint: 9566 21FF 515D 0DF3 38A4 CB9F D066 4570 AB34 0617 With Apple's Mail + GPGMail.bundle d53 Signed by William Allison . Signed on Sat Jun 07 10:45:49 America/New_York 2008 Key fingerprint: 9566 21FF 515D 0DF3 38A4 CB9F D066 4570 AB34 0617 Charly MacOS 10.5.3 - MacBook Intel C2Duo - GnuPG 1.4.9 - GPG2 2.0.9 - Thunderbird 2.0.0.14 - Enigmail 0.96a From alaric at metrocast.net Sat Jun 7 09:09:04 2008 From: alaric at metrocast.net (Phil Stracchino) Date: Sat, 07 Jun 2008 12:09:04 -0400 Subject: [Enigmail] (no subject) In-Reply-To: <484A922C.4090203@yahoo.com> References: <484A9071.3000100@hammernoch.net> <484A922C.4090203@yahoo.com> Message-ID: <484AB2A0.4030309@metrocast.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Roy Smith wrote: > Ludwig H?gelsch?fer wrote: > | Did you sign the message within Thunderbird and then copy/paste it in a > | webmail-account? > | > | This won't work reliably with signed messages. You should get an email > | account/provider who allows sending messages from Thunderbird directly > | (via SMTP interface). > > If you have Thunderbird strip the HTML by going to View - Message Body > As - Plain Text, it works perfectly. Confirmed. Works for me that way too. - -- Phil Stracchino, CDK#2 DoD#299792458 ICBM: 43.5607, -71.355 alaric at caerllewys.net alaric at metrocast.net phil at co.ordinate.org Renaissance Man, Unix ronin, Perl hacker, Free Stater It's not the years, it's the mileage. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFISrKg0DfOju+hMkkRCPg6AJ9x+fU1WPQD0qt693C/dNjszt+4DwCgkZnd Ddk78OVzIxEyH9xG0aneR0A= =8G7X -----END PGP SIGNATURE----- From lesterbush at hotmail.com Sat Jun 7 16:30:27 2008 From: lesterbush at hotmail.com (Lester Bush) Date: Sat, 7 Jun 2008 19:30:27 -0400 Subject: [Enigmail] (no subject) Message-ID: I use Thunderbird with the Webmail extension. It allows you to access your web based email via Thunderbird. Google the extension. It's a really neat tool, they have them for Yahoo, Gmail, and others as well. Ludwig H?gelsch?fer wrote: > Hi Lester, > > Lester Bush wrote on 07.06.2008 5:13 Uhr: >> This is a signed message. It's a test. Let me know if it doesn't work. > > I'm getting a Checksum error: "gpg command line and > output:,/usr/local/bin/gpg,gpg: Pr??fsummenfehler; e590ce - dc3e59 " > (CRC error) > > This is most probably due to the multipart/mixed message, meaning that > you send both html and plain text message in one email. > > Your signature is indicating that you use enigmail from within > thunderbird, however your mail headers show that you don't send it via > thunderbird, but from within a hotmail account. > > Did you sign the message within Thunderbird and then copy/paste it in a > webmail-account? > > This won't work reliably with signed messages. You should get an email > account/provider who allows sending messages from Thunderbird directly > (via SMTP interface). > > Ludwig > > > > ------------------------------------------------------------------------ > > _______________________________________________ > Enigmail mailing list > Enigmail at mozdev.org > https://www.mozdev.org/mailman/listinfo/enigmail -- Lester _________________________________________________________________ Search that pays you back! Introducing Live Search cashback. http://search.live.com/cashback/?&pkw=form=MIJAAF/publ=HMTGL/crea=srchpaysyouback -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.mozdev.org/pipermail/enigmail/attachments/20080607/bc667a42/attachment.html -------------- next part -------------- A non-text attachment was scrubbed... Name: LesterBush.vcf Type: application/octet-stream Size: 61 bytes Desc: not available Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080607/bc667a42/attachment.obj From jmoore3rd at bellsouth.net Sat Jun 7 16:38:24 2008 From: jmoore3rd at bellsouth.net (John W. Moore III) Date: Sat, 07 Jun 2008 19:38:24 -0400 Subject: [Enigmail] (no subject) In-Reply-To: References: Message-ID: <484B1BF0.9090301@bellsouth.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Lester Bush wrote: > I use Thunderbird with the Webmail extension. It allows you to access > your web based email via Thunderbird. Google the extension. It's a > really neat tool, they have them for Yahoo, Gmail, and others as well. Multi-Part/Mixed Email so 'popular' with everything M$ can be handled easily withing Thunderbird by installing the LookOut Extension/Add-On: http://lookout.mozdev.org/ I haven't had any difficulty verifying Sigs from Lester or Decrypting any of the many encrypted messages We have exchanged. JOHN ;) Timestamp: Saturday 07 Jun 2008, 19:37 --400 (Eastern Daylight Time) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.5.0-svn4754: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJISxvuAAoJEBCGy9eAtCsPuXkH/0XCYrNFywhEmJDR7LWXgo2D oKNaOCLVJpqXBHexGNTJiFwXdv5RzztDkj7mwdOrtdozIHq4IX9xGd2VjguGPxZ7 8y6xkR8kdnCP41RnRYJ3LZUzWRBwWCdemVrmd+0/5ourcp1+hEGqNWYkeOVa43G4 lEq423yK7bnDgYI0Hw9CELQP62BzjS6dBSuhLy088Z4dfQRgCu/VRjEV86wc5Fu7 Wp6ziIm3EXWtDuRJwTVHICFCqHchamDOMqQYUUSHjLRLL1HdhtVAWuR83UTGQ4Gp tqZOeC+AqST0UUbrQ25bJ/fxUNu1Pc4pQ4MSgNOc5pTSMlhMOp0qkzjuL99wb/Q= =tXCB -----END PGP SIGNATURE----- From patrick at mozilla-enigmail.org Sun Jun 8 23:20:24 2008 From: patrick at mozilla-enigmail.org (Patrick Brunschwig) Date: Mon, 09 Jun 2008 08:20:24 +0200 Subject: [Enigmail] (no subject) In-Reply-To: <484A94A0.7010308@hammernoch.net> References: <484A9071.3000100@hammernoch.net> <484A922C.4090203@yahoo.com> <484A94A0.7010308@hammernoch.net> Message-ID: <484CCBA8.7000107@mozilla-enigmail.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Ludwig H?gelsch?fer wrote: > Roy Smith wrote on 07.06.2008 15:50 Uhr: > >> If you have Thunderbird strip the HTML by going to View - Message Body >> As - Plain Text, it works perfectly. > > Yes, I know. But that's for experts on the receiver side... Disabling Not really ... it's what you get if you use the OpenPGP wizard. > HTML on the sending side - either within TB or by not using a webmail > which inherently send a HTML part - is one of the first steps to learn > when using the OpenPGP system. It's just polite to make the receiver the > least effort. "Be liberal in what you accept and be conservative in what > you send" has always been a good guide in the net. Unfortunately not everyone can do that, especially if you use web mail. - -Patrick -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQEVAwUBSEzLp3cOpHodsOiwAQIjlgf/SSQftsBxsWYQp9Itkuo0pNOyCSrmD8Wq eIhqxiVf3lFX0WDCIxjRT/G6D6HOT73EGDLZ2iRRuwuVDUKBgPO4sl8hKJcDIJev +VKYAVsMXCqcFAObVkhkTVSYEyIeWnW/X4NW5DD15T0t6Twa6469itlFoImtcAJc UEGbr8jd5auk1/6pWVMscCOvsuVThWWkOL0o4U+wzJ7rlEVBtrFC+5umcwzI6Dof GPyKQxb4GJ3oa+I2bbevLzJDBQ7nYNDEXPvvyzHhX0F/6c/e+dyf0BFQFQ6MXEgE r4fQ5EUbqh3eO/iOvt7Ytjr11X8yHAxhJ68slpfr4uLUo1KNABVMfA== =uqGD -----END PGP SIGNATURE----- From powermax_123 at gmx.de Mon Jun 9 07:02:59 2008 From: powermax_123 at gmx.de (powermax_123 at gmx.de) Date: Mon, 09 Jun 2008 16:02:59 +0200 Subject: [Enigmail] "Reply with template" failes with activated OpenPGP-Support for this identity In-Reply-To: References: Message-ID: Nobody an idea??? Thank you in advance, kind regards, powermax123 powermax_123 at gmx.de schrieb: > Hello, > > I would like to use the "Reply with template"-action when filtering > mails. When an incoming mail matches the criteria of the filter, > Thunderbird shall answer with a predefined template. It fails with the > message "Senden der Nachricht fehlgeschlagen. Bitte ?berpr?fen Sie Ihre > Konten-Einstellungen und wiederholen Sie den Vorgang." (German > Thunderbird) which says in English something like "Sending of message > failed. Please check your account settings and retry". After > deactivating OpenPGP-Support (Enigmail 0.95.6, gpg (GnuPG) 1.4.6) for > this identity it works perfectly and the auto-reply is sent properly. > > Is there a setting which prevents Thunderbird from auto-replying with > activated OpenPGP-Support? Or does anybody has a solution for this problem? > > Thank you in advance, > > kind regards, > > powermax123 From mlisten at hammernoch.net Mon Jun 9 11:26:10 2008 From: mlisten at hammernoch.net (=?UTF-8?B?THVkd2lnIEjDvGdlbHNjaMOkZmVy?=) Date: Mon, 09 Jun 2008 20:26:10 +0200 Subject: [Enigmail] (no subject) In-Reply-To: <484CCBA8.7000107@mozilla-enigmail.org> References: <484A9071.3000100@hammernoch.net> <484A922C.4090203@yahoo.com> <484A94A0.7010308@hammernoch.net> <484CCBA8.7000107@mozilla-enigmail.org> Message-ID: <484D75C2.3050100@hammernoch.net> Hi Patrick, Patrick Brunschwig wrote on 09.06.2008 8:20 Uhr: > Ludwig H?gelsch?fer wrote: >> Roy Smith wrote on 07.06.2008 15:50 Uhr: > >>> If you have Thunderbird strip the HTML by going to View - Message Body >>> As - Plain Text, it works perfectly. >> Yes, I know. But that's for experts on the receiver side... Disabling > > Not really ... it's what you get if you use the OpenPGP wizard. I've missed this part. I really have to test it! >> HTML on the sending side - either within TB or by not using a webmail >> which inherently send a HTML part - is one of the first steps to learn >> when using the OpenPGP system. It's just polite to make the receiver the >> least effort. "Be liberal in what you accept and be conservative in what >> you send" has always been a good guide in the net. > > Unfortunately not everyone can do that, especially if you use web mail. I stand corrected. Didn't know about the webmail extension, thanks for the pointer, Lester! Ludwig -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 542 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080609/60e2deee/attachment.bin From faramir.cl at gmail.com Mon Jun 9 18:47:54 2008 From: faramir.cl at gmail.com (Faramir) Date: Mon, 09 Jun 2008 21:47:54 -0400 Subject: [Enigmail] (no subject) In-Reply-To: <484B1BF0.9090301@bellsouth.net> References: <484B1BF0.9090301@bellsouth.net> Message-ID: <484DDD4A.9050105@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 John W. Moore III escribi?: > Lester Bush wrote: >> I use Thunderbird with the Webmail extension. It allows you to access >> your web based email via Thunderbird. Google the extension. It's a >> really neat tool, they have them for Yahoo, Gmail, and others as well. > > Multi-Part/Mixed Email so 'popular' with everything M$ can be handled > easily withing Thunderbird by installing the LookOut Extension/Add-On: > > http://lookout.mozdev.org/ > Hummm... I saw the Add-On page, but still don't know when would I need it... can you clarify it a bit, please? Best Regards -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEcBAEBAgAGBQJITd1KAAoJEMV4f6PvczxAq2UIAKR2Ebzq0s940M325s2D9DBl lLOBIIqK0N90Q6FC5C2RuU8oFcWBOS0atdWzENW8/mhkrGsCliLwKshhClrO38BT nXlc0TDDCfe8R91/eCFVa01Xv2XHeynO+uIV245ITQe5kjcj7+jvcpGZqM+WXDDq mKc3skTLTpZZblCoovp5au7N3udMVwTAX5FdHjS1hGoo0ZLP5aV2nyTmRjx4/sml OGY0AMXODaBaN3QA75+gjNs3QZhHZmr34Yt+dDcXpQVcwxg2FLxHx2OIX3Qs0y1k d2CMraDtt3oGS1g/em+Y0DqQRQV381H/qbozSIbCaM6UjXZTmAYHOwPYQOj0TIk= =5uF9 -----END PGP SIGNATURE----- From post at lespocky.de Tue Jun 10 00:08:12 2008 From: post at lespocky.de (Alexander Dahl) Date: Tue, 10 Jun 2008 09:08:12 +0200 Subject: [Enigmail] (no subject) In-Reply-To: <484DDD4A.9050105@gmail.com> References: <484B1BF0.9090301@bellsouth.net> <484DDD4A.9050105@gmail.com> Message-ID: <0MKwh2-1K5xxt0Fni-00048A@mrelayeu.kundenserver.de> >> http://lookout.mozdev.org/ > > > Hummm... I saw the Add-On page, but still don't know when would I need > it... can you clarify it a bit, please? I got a mail today and thunderbird just showed an attachment called winmail.dat. The mail came from someone using Outlook 11. Without this extension I was stuck. I installed lookout and thunderbird showed two more attachments which lookout had decoded from winmail.dat. One of them was the Word file I requested. I would not have been able to read this without the hint in this mailing list. Thanks for that. :) Greets Alex -- 'With the first link, the chain is forged. The first speech censured, the first thought forbidden, the first freedom denied, chains us all irrevocably.' (Jean-Luc Picard, quoting Judge Aaron Satie) *** GnuPG-FP: 02C8 A590 7FE5 CA5F 3601 D1D5 8FBA 7744 CC87 10D0 *** -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 250 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080610/ff421ec7/attachment.bin From simon at simonloewen.com Tue Jun 10 00:38:14 2008 From: simon at simonloewen.com (Simon Loewen) Date: Tue, 10 Jun 2008 09:38:14 +0200 Subject: [Enigmail] Configuring default Key Selection Message-ID: <484E2F66.4090906@simonloewen.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi, I have used enigmail for a while now, and would like my siblings to use this feature for all our email. A prerequisite is that it is transparent for them. I tried to configure enigmail to encrypt by default for all addresses that it has a valid public key for. If not, then it would send in clear text by default. In each case, the user would not be prompted for anything (other than the initial passphase for the private key when decrypting). I configured Key Selection to use: By email addresses. However, whenever I sent the email to an address that has public key it did not encrypt by default. I configured Key Selection to use: By pre-set rules. I set-up a rule for two email addresses that have public keys. This encrypted the email by default, but if I entered an address that did not have a key nor had any rule set-up for it, then enigmail returned a prompt asking what to do. I would like Enigmail to : 1) encytpt by default emails that it has a public key for. 2) if there is no public key then by default it won't encrypt the email. 3) all emails ought to be signed by default. At no point ought the user be prompted for anything. Any ideas? Cheers, Simon. - -- "...so we made her confess, then burned her at the stake. Feedback is that people accept that this is the sort of operation that is necessary and reasonable for the welfare of communities." No legitimate reason to know, no legitimate reason to ask. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (MingW32) iD8DBQFITi9mKTaqpMPqlXYRAkYfAJ9vBMJ/Y9GBswx1hQ8xSjcLLZey0ACeL0HK lVrIHIUKjuOrBK55F6Ot/Xw= =2y6E -----END PGP SIGNATURE----- From olav at mozilla-enigmail.org Tue Jun 10 02:14:11 2008 From: olav at mozilla-enigmail.org (Olav Seyfarth) Date: Tue, 10 Jun 2008 11:14:11 +0200 Subject: [Enigmail] Configuring default Key Selection In-Reply-To: <484E2F66.4090906@simonloewen.com> References: <484E2F66.4090906@simonloewen.com> Message-ID: <484E45E3.9030702@mozilla-enigmail.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Hi Simon, > I would like Enigmail to : > 1) encrypt by default emails that it has a public key for > 2) if there is no public key then by default it won't encrypt the email. > 3) all emails ought to be signed by default. > At no point ought the user be prompted for anything. Let me put it in my words: You would like to have a OpenPGP -> Preferences -> Key Selection setting to "encrypt emails automatically if Enigmail has a public key for each recipient". If there is no public key for any of the recipients, then Enigmail shall send an unencrypted email. At no point ought the user be prompted for anything. The setting whether to sign or not to sign by default can remain as it is now. I have good news for you: just switch to "No manual key selection", and switch on "Sign unencrypted messages by default", "Sign encrypted messages by default" and "Encrypt messages by default" in the account's OpenPGP settings. Olav -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Diese ist eine Digitale Signatur nach OpenPGP-Standard Comment: Weitere Informationen: http://privat.seyfarth.de/olav/schluessel.html iEYEAREIAAYFAkhOReIACgkQL/NBt8fdKe1KaQCfTRC/K/fj/zqQ+vcjhi7RM+Jw 6HEAmwaAg7MxARzoHrj7HBnCo9LuFFC0 =dGrP -----END PGP SIGNATURE----- From patrick at mozilla-enigmail.org Tue Jun 10 02:19:15 2008 From: patrick at mozilla-enigmail.org (Patrick Brunschwig) Date: Tue, 10 Jun 2008 11:19:15 +0200 Subject: [Enigmail] Configuring default Key Selection In-Reply-To: <484E2F66.4090906@simonloewen.com> References: <484E2F66.4090906@simonloewen.com> Message-ID: <484E4713.2070609@mozilla-enigmail.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Simon Loewen wrote: > > Hi, > I have used enigmail for a while now, and would like my siblings to use > this feature for all our email. A prerequisite is that it is > transparent for them. > > I tried to configure enigmail to encrypt by default for all addresses > that it has a valid public key for. If not, then it would send in clear > text by default. In each case, the user would not be prompted for > anything (other than the initial passphase for the private key when > decrypting). > > I configured Key Selection to use: By email addresses. However, > whenever I sent the email to an address that has public key it did not > encrypt by default. > > I configured Key Selection to use: By pre-set rules. I set-up a rule > for two email addresses that have public keys. This encrypted the email > by default, but if I entered an address that did not have a key nor had > any rule set-up for it, then enigmail returned a prompt asking what to do. > > I would like Enigmail to : > > 1) encytpt by default emails that it has a public key for. > 2) if there is no public key then by default it won't encrypt the email. > 3) all emails ought to be signed by default. > > At no point ought the user be prompted for anything. You should find the answer to your question in this forum entry: In order to get all mails signed, you should furthermore enable the options "Sign non-encrypted messages by default" and "Sign encrypted messages by default" in the OpenPGP setting of the account management (Tools > Account Settings). Furthermore, since you don't want the users to be prompted for anything, you might want to create keys without password protection and enable the option "Never ask for any passphrase" in OpenPGP > Preferences. Please note that I consider keys without passphrases as quite unsafe and I would discourage the use of such keys wherever possible. - -Patrick -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQEVAwUBSE5HEXcOpHodsOiwAQK3fAf/R3JCnHSSiMcCBTQ/YljioPU2ZX418aFu j2bQjEFZ8RR5/c0lJmsHd27PmAZ0Ou5NDP+60LGqm7ugezwmMi23yuN9p4/f2xn4 LDSU5MOdT5yHChQGC1sv1AiDvPlFTj2aXYbSNihMvEg4zuilr0hF691lUCXS/ZoK Uj4voQ3xuLvwg9S58TIzaYGLwjIRnrd27+sCo/UHeEpsL1S7BGrzg1jKQf675pgI 5MT//2uiufd0dn3xCkLUwEgUNFUDkiZH3CW1T5fnpHq1FVTEGsVIT9r8t2Cs5aW+ rb8QIy5UDZ8BtvIY5ZYZHkmh/PY3hLxlmsl7GsOABBOeCfH3wTYsJQ== =GE5b -----END PGP SIGNATURE----- From simon at simonloewen.com Tue Jun 10 02:31:00 2008 From: simon at simonloewen.com (Simon Loewen) Date: Tue, 10 Jun 2008 11:31:00 +0200 Subject: [Enigmail] Configuring default Key Selection In-Reply-To: <484E4713.2070609@mozilla-enigmail.org> References: <484E2F66.4090906@simonloewen.com> <484E4713.2070609@mozilla-enigmail.org> Message-ID: <484E49D4.5010502@simonloewen.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Thank-you everyone for the answers. I shall try these this evening. I have already created the keys without a passphase. Regards, S. Patrick Brunschwig wrote: | Simon Loewen wrote: |> Hi, |> I have used enigmail for a while now, and would like my siblings to use |> this feature for all our email. A prerequisite is that it is |> transparent for them. | |> I tried to configure enigmail to encrypt by default for all addresses |> that it has a valid public key for. If not, then it would send in clear |> text by default. In each case, the user would not be prompted for |> anything (other than the initial passphase for the private key when |> decrypting). | |> I configured Key Selection to use: By email addresses. However, |> whenever I sent the email to an address that has public key it did not |> encrypt by default. | |> I configured Key Selection to use: By pre-set rules. I set-up a rule |> for two email addresses that have public keys. This encrypted the email |> by default, but if I entered an address that did not have a key nor had |> any rule set-up for it, then enigmail returned a prompt asking what to do. | |> I would like Enigmail to : | |> 1) encytpt by default emails that it has a public key for. |> 2) if there is no public key then by default it won't encrypt the email. |> 3) all emails ought to be signed by default. | |> At no point ought the user be prompted for anything. | | You should find the answer to your question in this forum entry: | | | In order to get all mails signed, you should furthermore enable the | options "Sign non-encrypted messages by default" and "Sign encrypted | messages by default" in the OpenPGP setting of the account management | (Tools > Account Settings). | | Furthermore, since you don't want the users to be prompted for anything, | you might want to create keys without password protection and enable the | option "Never ask for any passphrase" in OpenPGP > Preferences. Please | note that I consider keys without passphrases as quite unsafe and I | would discourage the use of such keys wherever possible. | | -Patrick _______________________________________________ Enigmail mailing list Enigmail at mozdev.org https://www.mozdev.org/mailman/listinfo/enigmail - -- "...so we made her confess, then burned her at the stake. Feedback is that people accept that this is the sort of operation that is necessary and reasonable for the welfare of communities." No legitimate reason to know, no legitimate reason to ask. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (MingW32) iD8DBQFITknUKTaqpMPqlXYRAqn8AKCkJDNJNX2pMkoUqQzWL9tRAI0b4ACePxDI +oy/BP6xTMW1BCMQd/41CH0= =mXsO -----END PGP SIGNATURE----- From simon at simonloewen.com Wed Jun 11 00:24:23 2008 From: simon at simonloewen.com (Simon Loewen) Date: Wed, 11 Jun 2008 09:24:23 +0200 Subject: [Enigmail] Configuring default Key Selection In-Reply-To: <484E45E3.9030702@mozilla-enigmail.org> References: <484E2F66.4090906@simonloewen.com> <484E45E3.9030702@mozilla-enigmail.org> Message-ID: <484F7DA7.4060504@simonloewen.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I tried these instructions last night. Results; All emails are sent encrypted by default including to addresses that there is not a key for. e.g I sent an email to a fictional address for which there is no key: fred at hdakhdasj.comb. The email was encrypted, but I don't know why! Olav Seyfarth wrote: | Hi Simon, | |> I would like Enigmail to : |> 1) encrypt by default emails that it has a public key for |> 2) if there is no public key then by default it won't encrypt the email. |> 3) all emails ought to be signed by default. |> At no point ought the user be prompted for anything. | | Let me put it in my words: | | You would like to have a OpenPGP -> Preferences -> Key Selection setting to | "encrypt emails automatically if Enigmail has a public key for each recipient". | If there is no public key for any of the recipients, then Enigmail shall send | an unencrypted email. At no point ought the user be prompted for anything. | The setting whether to sign or not to sign by default can remain as it is now. | | I have good news for you: just switch to "No manual key selection", and switch | on "Sign unencrypted messages by default", "Sign encrypted messages by default" | and "Encrypt messages by default" in the account's OpenPGP settings. | | Olav _______________________________________________ Enigmail mailing list Enigmail at mozdev.org https://www.mozdev.org/mailman/listinfo/enigmail - -- "...so we made her confess, then burned her at the stake. Feedback is that people accept that this is the sort of operation that is necessary and reasonable for the welfare of communities." No legitimate reason to know, no legitimate reason to ask. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (MingW32) iD8DBQFIT32nKTaqpMPqlXYRAi/KAJ9vXTJkrtowpMRZAqnPOOsDHSO2RgCgqsg5 S9UNykbemPP1L8czVXdOvHk= =SYRR -----END PGP SIGNATURE----- From simon at simonloewen.com Wed Jun 11 00:30:53 2008 From: simon at simonloewen.com (Simon Loewen) Date: Wed, 11 Jun 2008 09:30:53 +0200 Subject: [Enigmail] Configuring default Key Selection In-Reply-To: <484F7DA7.4060504@simonloewen.com> References: <484E2F66.4090906@simonloewen.com> <484E45E3.9030702@mozilla-enigmail.org> <484F7DA7.4060504@simonloewen.com> Message-ID: <484F7F2D.1090304@simonloewen.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I have tried the same setup on Windows XP and Thunderbird in work and it works without a hitch. The problem is at home on Ubuntu because the configuration is identical in EnigMail on both. Strange. Simon Loewen wrote: | I tried these instructions last night. | | Results; | | All emails are sent encrypted by default including to addresses that | there is not a key for. | | e.g I sent an email to a fictional address for which there is no key: | fred at hdakhdasj.comb. The email was encrypted, but I don't know why! | | | | Olav Seyfarth wrote: | | Hi Simon, | | | |> I would like Enigmail to : | |> 1) encrypt by default emails that it has a public key for | |> 2) if there is no public key then by default it won't encrypt the email. | |> 3) all emails ought to be signed by default. | |> At no point ought the user be prompted for anything. | | | | Let me put it in my words: | | | | You would like to have a OpenPGP -> Preferences -> Key Selection | setting to | | "encrypt emails automatically if Enigmail has a public key for each | recipient". | | If there is no public key for any of the recipients, then Enigmail | shall send | | an unencrypted email. At no point ought the user be prompted for anything. | | The setting whether to sign or not to sign by default can remain as it | is now. | | | | I have good news for you: just switch to "No manual key selection", | and switch | | on "Sign unencrypted messages by default", "Sign encrypted messages by | default" | | and "Encrypt messages by default" in the account's OpenPGP settings. | | | | Olav | _______________________________________________ | Enigmail mailing list | Enigmail at mozdev.org | https://www.mozdev.org/mailman/listinfo/enigmail | _______________________________________________ Enigmail mailing list Enigmail at mozdev.org https://www.mozdev.org/mailman/listinfo/enigmail - -- "...so we made her confess, then burned her at the stake. Feedback is that people accept that this is the sort of operation that is necessary and reasonable for the welfare of communities." No legitimate reason to know, no legitimate reason to ask. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (MingW32) iD8DBQFIT38tKTaqpMPqlXYRApk3AJwK2A7hqunjfU+aAUrkEexfXsJT8ACgnUNe z9r1GZ294x8tajFbgw1rFoQ= =BY+u -----END PGP SIGNATURE----- From faramir.cl at gmail.com Wed Jun 11 11:31:00 2008 From: faramir.cl at gmail.com (Faramir) Date: Wed, 11 Jun 2008 14:31:00 -0400 Subject: [Enigmail] (no subject) In-Reply-To: <0MKwh2-1K5xxt0Fni-00048A@mrelayeu.kundenserver.de> References: <484B1BF0.9090301@bellsouth.net> <484DDD4A.9050105@gmail.com> <0MKwh2-1K5xxt0Fni-00048A@mrelayeu.kundenserver.de> Message-ID: <485019E4.3040605@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Alexander Dahl escribi?: >>> http://lookout.mozdev.org/ >> >> >> Hummm... I saw the Add-On page, but still don't know when would I need >> it... can you clarify it a bit, please? > > I got a mail today and thunderbird just showed an attachment called > winmail.dat. The mail came from someone using Outlook 11. Without this > extension I was stuck. I installed lookout and thunderbird showed two > more attachments which lookout had decoded from winmail.dat. One of them > was the Word file I requested. I would not have been able to read this > without the hint in this mailing list. Thanks for that. :) > > Greets > Alex Then, that extension is a "must have", thanks for the clarification. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEcBAEBAgAGBQJIUBnkAAoJEMV4f6PvczxA0C0H/1zeEnX85yPzX6MOteQRUy3h pNKDYIrMOYHSFz1o844hXCs4FL5mB+I3oEY+lnc8lL3XSW3zUjY8vtFNiK7bZY9G 5KiiVCjpERowga/q5DWgaUNQMnetcuL1a1MkNqU2mO2qPceiDN8rIbV3x3aisQiJ oAuembY3a1V6Sfw+ty/mJnJV7dQ7j3lzIHrr1YHkNZteSIVqJibrKIns7BwFAXNP fRWWK8N6IC0yrPbOTX3nExpaAiivdvwqz6MMcWFlrjtXJW+Mh9xZpZS14DiZZzC/ mner8RzCghsmZCZjAy5u5jBVw2Cg+0iK+F4siKqWMCqm+N7cWSJjxKWxE659TJg= =Dyv7 -----END PGP SIGNATURE----- From otrmail02 at gmail.com Thu Jun 12 01:55:41 2008 From: otrmail02 at gmail.com (otrmail02 otrmail) Date: Thu, 12 Jun 2008 16:55:41 +0800 Subject: [Enigmail] Development question about MIME format Message-ID: Hi, I am doing an extension for Thunderbird. The extension will send a mail with MIME Security with OpenPGP format (RFC3156). Understand that enigmail is using a method WriteEncryptedHeaders() in nsEnigMsgCompose.cpp to write the format. I am wondering how does the method is called and when is called. Hope any of can answer my question. Thanks in advance. regards Lai -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.mozdev.org/pipermail/enigmail/attachments/20080612/83350785/attachment.html From patrick at mozilla-enigmail.org Thu Jun 12 05:32:36 2008 From: patrick at mozilla-enigmail.org (Patrick Brunschwig) Date: Thu, 12 Jun 2008 14:32:36 +0200 Subject: [Enigmail] Development question about MIME format In-Reply-To: References: Message-ID: <48511764.1050101@mozilla-enigmail.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 otrmail02 otrmail wrote: > Hi, > > I am doing an extension for Thunderbird. The extension will send a mail > with MIME Security with OpenPGP format (RFC3156). > Understand that enigmail is using a method WriteEncryptedHeaders() in > nsEnigMsgCompose.cpp to write the format. I am wondering how does the > method is called and when is called. Hope any of can answer my question. > Thanks in advance. > > regards > Lai You have to register your class in with the component registrar, like it's done in enigmail.js in Enigmail.prototype.initialize(). 1st thing in that method does is to register nsEnigMsgCompose for secure message sending. The methods are automatically invoked if gMsgCompose.compFields.securityInfo is defined and specifies that the message should be encrypted. See enigmailMsgComposeOverlay.js, function enigEncryptMsg(). - -Patrick -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQEVAwUBSFEXYncOpHodsOiwAQIW8Af/UpuVH4b6Zzw2HfTkkyCWhPvwxieDhiks ejx0YrX9BVVKXogvi/eCI+sDLNAd4wqDe2pUep6YPaXby91yGGmP7PBIMP1bLFcq ulu9AfMxFlBe9n4zo/CIrDf2XTr6R8XzrFFpa3M92VSsFfywb06cWpeomuBzeTym RyBi40Kd3g8bGlKp8OB5uWCVjYglvHp28C9GorwUqmVWzzBUHrAWVErGPB9R4/Q6 9sNAi9LIu1dtWdi1X4+pJM8IrIf6kOM8FsWBvwjgt2LbeI243zTTWlsGvJC9LgG3 LWyFmZDJ83KEJg8b4XSNBmcvJ3npdQNl1p7Cul5coGigcZDKNBDvTA== =KVKO -----END PGP SIGNATURE----- From hans at caltech.edu Wed Jun 11 13:37:56 2008 From: hans at caltech.edu (Hans G Hornung) Date: Wed, 11 Jun 2008 13:37:56 -0700 Subject: [Enigmail] Hello Message-ID: <485037A4.8060408@caltech.edu> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 This is my first signed message, and I would like some help with testing the encryption features of Enigmail. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (GNU/Linux) Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org iD8DBQFIUDej9pm5Rn3qYvcRAoT8AJ4xq+M5Dc1Xpj6MDJBaOCSm5fQ4FACeIkSE GwWNPUwKRe4qIKQ5doYnpss= =y8N+ -----END PGP SIGNATURE----- From jmoore3rd at bellsouth.net Fri Jun 13 09:21:34 2008 From: jmoore3rd at bellsouth.net (John W. Moore III) Date: Fri, 13 Jun 2008 12:21:34 -0400 Subject: [Enigmail] Hello In-Reply-To: <485037A4.8060408@caltech.edu> References: <485037A4.8060408@caltech.edu> Message-ID: <48529E8E.7000806@bellsouth.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Hans G Hornung wrote: > This is my first signed message, and I would like some help with > testing the encryption features of Enigmail. I would be delighted to assist You in Testing Encryption and configuring Enigmail. I was unable to verify You Signature on this Post because I didn't locate Your Key on any of the Keyservers. Have You Uploaded Your Key yet to any Keyserver or do You have it posted anywhere where it may be retrieved? Since it is rude to Post an Encrypted Message to a Mailing List please feel free to Email Me directly with an Encrypted Message. Both My Email Address and a Link to My Key are available within the Header of this Post. I also have a Link to My Key in the 'Comments' within My Signature Block. [Ctrl+U will access the raw Message Source] I look forward to hearing from You. JOHN ;) Timestamp: Friday 13 Jun 2008, 12:20 --400 (Eastern Daylight Time) - -- The NSA would like to remind everyone to call their Fathers this Sunday. They need to calibrate their system. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.5.0-svn4754: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIUp6MAAoJEBCGy9eAtCsPj/sH/2JvQogku1ZrdeyrB8zDTvx8 VRtoJP0fbA+5Zk/UTfgIA1Nr28a8BeRpehPKQugq8X/gzJvOc8zgBQBwV+c25tGa W0aukdeGsbzMaMptOZD+OVgnMdNADqU/QBzDfJSsWmKcRsr7TJpBhwwrgdfMQ2au odRjAQ3vT1SFRWAxec5RKYV3qvf+qBnkzjYd1GQgyS+6qXzQW0U1srUcg58clhzo kshuXO7iUTBOkIuXZ2vx0nUrzQ+CKgH1sQPiXrdflYHfclOqGwtnIgh/0c1iKGkh eVcmbyj+OWwXuZwACnzWlFwBuIEFb2UNkcjHNzCvk2m9nkJi1ZV2ZDFhPDkm8Ho= =yaYo -----END PGP SIGNATURE----- From hans at caltech.edu Fri Jun 13 09:27:51 2008 From: hans at caltech.edu (Hans G Hornung) Date: Fri, 13 Jun 2008 09:27:51 -0700 Subject: [Enigmail] Hello In-Reply-To: <48529E8E.7000806@bellsouth.net> References: <485037A4.8060408@caltech.edu> <48529E8E.7000806@bellsouth.net> Message-ID: <4852A007.609@caltech.edu> John: Thank you very much for helping me. I did upload my key to random.sks.keyserver.penguin.de Meantime, I will try to use your key to send you an encrypted message. I don't yet know how exactly I have to go about doing that, but I will work on it. Hans. John W. Moore III wrote: > Hans G Hornung wrote: > > This is my first signed message, and I would like some help with > > testing the encryption features of Enigmail. > > I would be delighted to assist You in Testing Encryption and configuring > Enigmail. I was unable to verify You Signature on this Post because I > didn't locate Your Key on any of the Keyservers. Have You Uploaded Your > Key yet to any Keyserver or do You have it posted anywhere where it may > be retrieved? > > Since it is rude to Post an Encrypted Message to a Mailing List please > feel free to Email Me directly with an Encrypted Message. Both My Email > Address and a Link to My Key are available within the Header of this > Post. I also have a Link to My Key in the 'Comments' within My > Signature Block. [Ctrl+U will access the raw Message Source] > > I look forward to hearing from You. > > JOHN ;) > Timestamp: Friday 13 Jun 2008, 12:20 --400 (Eastern Daylight Time) _______________________________________________ Enigmail mailing list Enigmail at mozdev.org https://www.mozdev.org/mailman/listinfo/enigmail From alaric at metrocast.net Fri Jun 13 09:38:37 2008 From: alaric at metrocast.net (Phil Stracchino) Date: Fri, 13 Jun 2008 12:38:37 -0400 Subject: [Enigmail] Hello In-Reply-To: <485037A4.8060408@caltech.edu> References: <485037A4.8060408@caltech.edu> Message-ID: <4852A28D.6080900@metrocast.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Hans G Hornung wrote: > This is my first signed message, and I would like some help with > testing the encryption features of Enigmail. Hans, gpg: requesting key 7DEA62F7 from hkp server pool.sks-keyservers.net gpg: no valid OpenPGP data found. gpg: Total number processed: 0 Unable to verify your signature. I'll try again after it's had a while to propagate. - -- Phil Stracchino, CDK#2 DoD#299792458 ICBM: 43.5607, -71.355 alaric at caerllewys.net alaric at metrocast.net phil at co.ordinate.org Renaissance Man, Unix ronin, Perl hacker, Free Stater It's not the years, it's the mileage. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFIUqKN0DfOju+hMkkRCLBtAJ981o4tZaH2weGZGRRr5PcjTBFtvQCeP6u5 R6pBq3mMz57aCIPF9RDha94= =2she -----END PGP SIGNATURE----- From jmoore3rd at bellsouth.net Fri Jun 13 13:04:57 2008 From: jmoore3rd at bellsouth.net (John W. Moore III) Date: Fri, 13 Jun 2008 16:04:57 -0400 Subject: [Enigmail] Hello In-Reply-To: <4852A007.609@caltech.edu> References: <485037A4.8060408@caltech.edu> <48529E8E.7000806@bellsouth.net> <4852A007.609@caltech.edu> Message-ID: <4852D2E9.6020808@bellsouth.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Hans G Hornung wrote: > Thank you very much for helping me. I did upload my key to > > random.sks.keyserver.penguin.de IIRC, the above Keyserver is broken/offline at present. I suggest that You switch to using hkp://pool.sks-keyservers.net as Your primary Keyserver. :-\ > Meantime, I will try to use your key to send you an encrypted message. I > don't yet know how exactly I have to go about doing that, but I will > work on it. Should be a piece of cake. If My Key has been imported into Your Keyring then just select 'Encrypt' from the OpenPGP drop down menu and select My Key if prompted. Make not that My Primary UID is a free form UID consisting solely of My Name. If You have Enigmail preference to 'select Key based upon Email Address or Rule' then My key will be chosen automatically without You being prompted for it. ;) JOHN 8-) Timestamp: Friday 13 Jun 2008, 16:04 --400 (Eastern Daylight Time) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.5.0-svn4754: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIUtLoAAoJEBCGy9eAtCsPUVgH/j9c6hH2I3AYsjPlfoeWtcvr yhxmPzPlHhOo2waCzdBEmUTaVhyn2Ke9tuEGse8Hmhb6Bs4zYVnpwNGEG+v82i5J eqGC5GmOS/Y9O67LJyUjjQ+Bjx95TfKCJ8S/mMlVGfSWbpnFGV5d1+sX71Z2a0hl 3gZJUOxCAV2mlTTDEHHN/8yev1Eb2yfbLzl9P/FOvExtCJx5+F462rfH39Z7WkcC uHHnLhpZwEn3hBwHAjPCjp3EIdNx+1YjH9uSow/lTq0L/gvSYWCpyvAwGkhXPTm4 pbHdXBCPp/dEV/HteaWRSGzcAuYhhUEPVYCpPh5oFEIsoqGA83Ix0qy/g2Dv4O0= =80Vf -----END PGP SIGNATURE----- From druffet at fibertel.com.ar Fri Jun 13 13:11:30 2008 From: druffet at fibertel.com.ar (Diego Ruffet) Date: Fri, 13 Jun 2008 17:11:30 -0300 Subject: [Enigmail] (sin asunto) Message-ID: <4852D472.6050903@fibertel.com.ar> From faramir.cl at gmail.com Fri Jun 13 20:08:17 2008 From: faramir.cl at gmail.com (Faramir) Date: Fri, 13 Jun 2008 23:08:17 -0400 Subject: [Enigmail] Small question about redistribution of enigmail Message-ID: <48533621.5000908@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Well, this is a bit off-topic. I a student, and I am currently working on a project for my "business over internet" course. The thing is I must setup an e-commerce web site, and I am thinking I can use gpg to have secure communication with customers. But since the customers probably don't have any idea about gpg, I would need to make available to download package with portable thunderbird with enigmail (and the site public key already loaded). Would it be "legal"? I mean, I know both thunderbird and enigmail are free to use, but I am not sure if I can "redistribute" such package... Anyway, it is just a class project, the site will live long enough to be shown in classes, and no real customers will ever exist. But I can't say the site would do something illegal. Best regards -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEcBAEBAgAGBQJIUzYhAAoJEMV4f6PvczxAdFAH/2o+WsCFz+LaJuCZXMEiDReN MHVKuMU6DC/gP2z9CxfXLVDUpbYnGTnqVraA67CA9+hTtEMbgP4wpw7Qv7G32vcg 3Pnrpqv7CIzg9W3i9++IA/7tLmDDfZUBIhtqhTs1FokHWlXPhrj20GYseFU9hou/ PUCXTqQ83oyboTUj78wVnp7zGV6mVryxXvxle7oS35P0xbBx8qz+pQPnbQ8UExse ppOD4u5tdVl1ZbU9MrtSDpiWkqGNp0DvBMSBImly7szJM2FWYDPUqzbEzgWkNAdU aWlQANxqBnrZx4zt+Jv3cSVrMxF95p9be/Y4aiANUKSP5TfP7sLUo/PqOaLTtgs= =6Hru -----END PGP SIGNATURE----- From rjh at sixdemonbag.org Fri Jun 13 20:15:02 2008 From: rjh at sixdemonbag.org (Robert J. Hansen) Date: Fri, 13 Jun 2008 22:15:02 -0500 Subject: [Enigmail] Small question about redistribution of enigmail In-Reply-To: <48533621.5000908@gmail.com> References: <48533621.5000908@gmail.com> Message-ID: <485337B6.9010209@sixdemonbag.org> Faramir wrote: > secure communication with customers. But since the customers probably > don't have any idea about gpg, I would need to make available to > download package with portable thunderbird with enigmail (and the site > public key already loaded). Would it be "legal"? I mean, I know both > thunderbird and enigmail are free to use, but I am not sure if I can > "redistribute" such package... You are free to redistribute the packages so long as you also make available the source code and any changes/modifications you've made. From faramir.cl at gmail.com Fri Jun 13 20:27:11 2008 From: faramir.cl at gmail.com (Faramir) Date: Fri, 13 Jun 2008 23:27:11 -0400 Subject: [Enigmail] Small question about redistribution of enigmail In-Reply-To: <485337B6.9010209@sixdemonbag.org> References: <48533621.5000908@gmail.com> <485337B6.9010209@sixdemonbag.org> Message-ID: <48533A8F.8050702@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Robert J. Hansen escribi?: > Faramir wrote: >> secure communication with customers. But since the customers probably >> don't have any idea about gpg, I would need to make available to >> download package with portable thunderbird with enigmail (and the site >> public key already loaded). Would it be "legal"? I mean, I know both >> thunderbird and enigmail are free to use, but I am not sure if I can >> "redistribute" such package... > > You are free to redistribute the packages so long as you also make > available the source code and any changes/modifications you've made. I would not touch the code... it is just Mozilla Thunderbird Portable (downloaded from portable apps, with enigmail for thunderbird portable - -also available at portableapps.com wich includes gpg portable), the only thing I would do is donwload those apps, "install" them into a folder, import the public key, compress the folder, and put it available for download. I could also put the links and a "how to" for the customers to "do it yourself", but I think none of my classmates (and the teacher) will belive somebody would actually follow those instructions. It is more plausible they would download a self extracting compressed file, uncompress it, and run the executable... Thanks for your prompt reply, I was talking right now about this with a team partner of this project. Best regards -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEcBAEBAgAGBQJIUzqOAAoJEMV4f6PvczxAPCgH/ixbMYSAdyTBuzfn3T8XeCEE /IDqtukRgQ3aFMbvdRBuaALrNKHFBfB/x8JCTdnk4ztz0KB+ugHkWqZLjg2IhvzE 2s2aMIDznBrrnrUJXBg5noon/YKIDuCEwksKF+xPwZmBsk5AZ6cPl+rll2i8OT8U xNO0NiJZ/yDeU21LvBNHH3mZSEI6IQK5Vh0dmXuHGoK5ZpL8aqPOpOhrmpukPZK1 1QC/+W5JjfwIJcjbEde38B8YN/SR0ylJ5xjku5f3rPetVDLgwxmee8pgbzvorHRQ Qs44806BtOZVGI5JEGkBNBBS/M0O3Gs6JVnl72KLMLBq+sz3JV/z6OW3KSwqZm4= =cYcE -----END PGP SIGNATURE----- From jmoore3rd at bellsouth.net Fri Jun 13 20:36:43 2008 From: jmoore3rd at bellsouth.net (John W. Moore III) Date: Fri, 13 Jun 2008 23:36:43 -0400 Subject: [Enigmail] Small question about redistribution of enigmail In-Reply-To: <48533621.5000908@gmail.com> References: <48533621.5000908@gmail.com> Message-ID: <48533CCB.7070500@bellsouth.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Faramir wrote: > Anyway, it is just a class project, the site will live long enough to be > shown in classes, and no real customers will ever exist. But I can't say > the site would do something illegal. Technically, Your issues would be with Mozilla with regards to the code for Thunderbird. Last I checked, even John Haller hadn't secured all the necessary permissions for Mozilla Code distribution in relation to His 'Portable Thunderbird'; but this may have bee cleared up by now. Since this is for a class project why not use the native S/MIME feature and use a 'roll your own' x.509 Certificate for securing the Site? All the software is already 'native' in whichever Browser/MUA is used. [Well, You'd need to Import the Main x.509 into any Browser since it won't be included automatically but this is no big deal] x.509 is what is used in the "Real World" for eCommerce anyway. JOHN ;) Timestamp: Friday 13 Jun 2008, 23:35 --400 (Eastern Daylight Time) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.5.0-svn4754: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIUzzJAAoJEBCGy9eAtCsP7LoIAJ9nppr9LWBazSa+wNzGidj0 /OKO32GqGmTP9+g3KN/tw4XqBzDhK3IQpzJzN1UFiwoELarvhBUSveJ6asUQFB/t ZHBN7+XxVYSJqpt1SuRkLL1Wk6hCgRhnevVJfOul1qSqYQRj1MZQ35dDf6O+V0jx 4iUPybAIYL+vKVZiktWcu8Q0K9m6UzPlHGX9QwMI9cVaIJZ3iAJGrkoFUgBIN3DK DoAFWbQ3fwWk7wQ/Wrd3UTOke/aTOZXuididqA4DEJpXQ/Nb8+jHiiBNSgMInuuO xIPJamt7/Yte+uC14vfr66NhstSaIEcwQGrZLGcI/9Bmx6jgwVXQ2Y0wr2Wf6Dg= =sulX -----END PGP SIGNATURE----- From faramir.cl at gmail.com Fri Jun 13 20:57:55 2008 From: faramir.cl at gmail.com (Faramir) Date: Fri, 13 Jun 2008 23:57:55 -0400 Subject: [Enigmail] Small question about redistribution of enigmail In-Reply-To: <48533CCB.7070500@bellsouth.net> References: <48533621.5000908@gmail.com> <48533CCB.7070500@bellsouth.net> Message-ID: <485341C3.2060803@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 John W. Moore III escribi?: > Faramir wrote: > >> Anyway, it is just a class project, the site will live long enough to be >> shown in classes, and no real customers will ever exist. But I can't say >> the site would do something illegal. > > Technically, Your issues would be with Mozilla with regards to the code > for Thunderbird. Last I checked, even John Haller hadn't secured all > the necessary permissions for Mozilla Code distribution in relation to > His 'Portable Thunderbird'; but this may have bee cleared up by now. > > Since this is for a class project why not use the native S/MIME feature > and use a 'roll your own' x.509 Certificate for securing the Site? All > the software is already 'native' in whichever Browser/MUA is used. > [Well, You'd need to Import the Main x.509 into any Browser since it > won't be included automatically but this is no big deal] > > x.509 is what is used in the "Real World" for eCommerce anyway. Thanks for your reply (again, it arrives right when we are trying to decide about this subject). About the x.509 certificate, I got a free trial certificate from Comodo, so the https connections doesn't cause any "fake site" alert. But for email purposes, I am not so sure how to deal with S/MIME... well, if the subject turns to that direction (S/MIME instead of gpg) maybe I should move to pgp-basics list, in order to don't spam this list. I know gpg 2 has x.509 functions, but I have just 1.4.9 version, so I still don't know much about that other system... Best Regards -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEcBAEBAgAGBQJIU0HDAAoJEMV4f6PvczxArGIIAIMqwarQpy9Qo9Kkq1TmJseo tbIsD0NiW/uK4I2zau4oM4sXsY7qgyM2I/vTxqLOB455YpOhaRQ97gEFljVLPsze 6DlQO3b9vk5405cnf3vCr6q9qOzak5A9/+QRkNrOQB9zWj4Tyf+J+JnbyuZ4K1XY WFlmC0IZIoUX73dUgWxyXk/5thP/xD4tTXjiXRK2JX9KuYxcoWbvvKoNaiM11hgA CLdow+EAzZadtwfGLnfTSk5qRt5Kr6E8DtowmiIsmRn6f7RTvvDyWNRiYqC+qLHJ 5uBeNqWwuX1UGeq2plIVQv79zKN1F3dQcGZ9GNJ+ilFyzLXuS7Ji3Rufo8E4QrY= =6NGH -----END PGP SIGNATURE----- From John at Mozilla-Enigmail.org Fri Jun 13 22:04:16 2008 From: John at Mozilla-Enigmail.org (John Clizbe) Date: Sat, 14 Jun 2008 00:04:16 -0500 Subject: [Enigmail] Small question about redistribution of enigmail In-Reply-To: <485341C3.2060803@gmail.com> References: <48533621.5000908@gmail.com> <48533CCB.7070500@bellsouth.net> <485341C3.2060803@gmail.com> Message-ID: <48535150.5010703@Mozilla-Enigmail.org> Faramir wrote: > Thanks for your reply (again, it arrives right when we are trying to > decide about this subject). About the x.509 certificate, I got a free > trial certificate from Comodo, so the https connections doesn't cause > any "fake site" alert. But for email purposes, I am not so sure how to > deal with S/MIME... well, if the subject turns to that direction (S/MIME > instead of gpg) maybe I should move to pgp-basics list, in order to > don't spam this list. I know gpg 2 has x.509 functions, but I have just > 1.4.9 version, so I still don't know much about that other system... How difficult do you want to make this? Most modern mail clients and all browsers already have the infrastructure built-in for S/MIME, TLS/SSL, and X.509 certificate handling. Instead of gpg2, I think you're looking for gpgsm (which is included in the GnuPG 2 package), even then you probably only need it on the server. For an e-commerce site, you should only have to implement S/MIME mail signing/encryption. The web part should be fairly cookbook. You probably want GnuPG-Devel for gpgsm questions, not PGP-Basics -- John P. Clizbe Inet: John (a) Mozilla-Enigmail.org You can't spell fiasco without SCO. PGP/GPG KeyID: 0x608D2A10/0x18BB373A Q:"Just how do the residents of Haiku, Hawai'i hold conversations?" A:"An odd melody / island voices on the winds / surplus of vowels" -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 677 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080614/4ecfb9c1/attachment.bin From ussenterprise at babylonfarms.com Fri Jun 13 22:34:17 2008 From: ussenterprise at babylonfarms.com (Troy) Date: Sat, 14 Jun 2008 00:34:17 -0500 Subject: [Enigmail] honor-keyserver-url doesn't appear to work Message-ID: <48535859.8020200@babylonfarms.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 I seem to have run into a problem with --honor-keyserver-url 1st this is the pref on my key (1). Troy Weinzetl (P.S.K.) Cipher: AES256, AES192, AES, BLOWFISH, CAST5, 3DES, TWOFISH Digest: SHA256, SHA224, SHA512, SHA384, RIPEMD160, SHA1 Compression: BZIP2, ZLIB, ZIP, Uncompressed Features: MDC, Keyserver no-modify Preferred keyserver: http://www.babylonfarms.com/secure/0xF8180E9E_pub.asc this setup worked well under gpgshell in windows and to be honest I never found the need to use Enigmail's key management, that all changed when I switched to linux (Mepis). Using Kgpg I found the honor-url didn't work there and tried Enigmail's key management no luck there either, however command line works and the output as follows. babylon at babylon-P4:~$ gpg --refresh-key 0xF8180E9E gpg: requesting key F8180E9E from http server www.babylonfarms.com gpg: armor header: Version: GnuPG v1.4.10-svn4774-wK8cam-tlw0 (GNU/Linux) gpg: armor header: Comment: http://www.babylonfarms.com/secure/0xF8180E9E_pub.asc gpg: pub 2048R/F8180E9E 2005-09-01 Troy Weinzetl (P.S.K.) where as if i do the same for another key babylon at babylon-P4:~$ gpg --refresh-key 1086CBD780B42B0F gpg: refreshing 1 key from hkp://wwwkeys.eu.pgp.net gpg: requesting key 80B42B0F from hkp server wwwkeys.eu.pgp.net gpg: armor header: Version: GnuPG v1.4.1 (GNU/Linux) gpg: armor header: Comment: OpenPGP-Keyserver 1.0 (OPKS) gpg: pub 2048R/80B42B0F 2005-09-23 However Enigmail does not. Tbird-Enigmail output after updating gpg: depth: 4 valid: 5 signed: 4 trust: 0-, 0q, 0n, 3m, 2f, 0u gpg: next trustdb check due at 2008-08-25 gpg: Total number processed: 1 gpg: new signatures: 12 gpg: signatures cleaned: 12 output from console enigmail> /usr/bin/gpg --charset utf8 --batch --no-tty --status-fd 2 - --with-fin gerprint --fixed-list-mode --with-colons --list-keys enigmail> /usr/bin/gpg --charset utf8 --batch --no-tty --status-fd 2 - --with-fin gerprint --fixed-list-mode --with-colons --list-secret-keys enigmail> /usr/bin/gpg --charset utf8 --batch --no-tty --status-fd 2 - --keyserve r pool.sks-keyservers.net --recv-keys 0x75AA9F9CF8180E9E - From my understanding, the example from the gpg CL is how - --Honor-keyserver-url is supposed to work and how it worked with gpgshell. under windows. Using Thunderbird 2.0.0.6 Enigmail 0.95.0 Mepis 7.0 gpg both 1.4.6 & the most current SVN-release Thanks in advance Troy -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) Comment: http://www.babylonfarms.com/secure/0xF8180E9E_pub.asc iQEVAwUBSFNYWXWqn5z4GA6eAQiE0AgAuwy4nxDOf0T1k7T3ohCGRisvLiP+MBH5 /5NyDrGx7Qameo3JAVvQzhVHfexWJqHaJi7Kx6yd4LvxgNm8GQle8Ki5Xgi2u12Q Q5mmeEmqYRdrhXVUKvhIxtzyCWj9R8GdtZyhDbYsNezPclL/I9QOR9kmpgTZ1rMf wFOcFjJDK5vxB8smmnUwovgNtcWHTXktE7bLCGJqmn8YW0uB5iC30MOSD1cRzDxU Ucc/Vo/3v/fstmf/5/TRIvEmlEvH/9mT1cRYvgMtRhcrFmu0R9wnWctNpC3RCd1Z gNGBYzy4JBlEOhavi1xn5MjSor3m+dbHzVHe7d1Nh3Rq8b4MtTZFcA== =zbdX -----END PGP SIGNATURE----- From rjh at sixdemonbag.org Fri Jun 13 23:05:07 2008 From: rjh at sixdemonbag.org (Robert J. Hansen) Date: Sat, 14 Jun 2008 01:05:07 -0500 Subject: [Enigmail] Small question about redistribution of enigmail In-Reply-To: <48535150.5010703@Mozilla-Enigmail.org> References: <48533621.5000908@gmail.com> <48533CCB.7070500@bellsouth.net> <485341C3.2060803@gmail.com> <48535150.5010703@Mozilla-Enigmail.org> Message-ID: <48535F93.2050401@sixdemonbag.org> John Clizbe wrote: > For an e-commerce site, you should only have to implement S/MIME mail > signing/encryption. The web part should be fairly cookbook. Or, for that matter, do what professional ecommerce sites do: shrug and say "we're not going to worry about this, we're just going to put those mechanisms in place the credit card companies say we have to do." Talk to your local bank and ask what you'd have to do to process Visa cards online. Visa has a lot of ties to the banking industry, moreso than MasterCard or Discover, so your local bank can probably point you in the right direction. Part of good engineering is not making design decisions before you have to. Making a commitment to a particular kind of ecommerce security solution before knowing what the real world uses for them seems to be a violation of this rule of thumb. :) From John at Mozilla-Enigmail.org Fri Jun 13 23:39:32 2008 From: John at Mozilla-Enigmail.org (John Clizbe) Date: Sat, 14 Jun 2008 01:39:32 -0500 Subject: [Enigmail] honor-keyserver-url doesn't appear to work In-Reply-To: <48535859.8020200@babylonfarms.com> References: <48535859.8020200@babylonfarms.com> Message-ID: <485367A4.7080401@Mozilla-Enigmail.org> Troy wrote: > > I seem to have run into a problem with --honor-keyserver-url Yeah, looks like either a CKBI* problem or maybe an issue in GnuPG. Try including it in gpg.conf along with any other keyserver-options. It ain't automagic according to the man page: honor-keyserver-url When using --refresh-keys, if the key in question has a preferred keyserver URL, then use that pre- ferred keyserver to refresh the key from. In addi- tion, if auto-key-retrieve is set, and the signa- ture being verified has a preferred keyserver URL, then use that preferred keyserver to fetch the key from. Defaults to yes. Maybe it once was a default behavior, but it doesn't appear to be in 1.4.9 and later. Neither windows nor linux refreshed from the "preferred keyserver' until honor-keyserver-url was included with the other keyserver-options. Often if you wish an explicit behavior you must explicitly set it. BTW, this is really a GnuPG config issue not an Enigmail issue. If you think GnuPG's behavior is broken, post to GnuPG-Users or GnuPG-Dev. FWIW, you should probably also update the keyservers as there is no guarantee you can force others to obey this preference. I tend to turn it off since i have a keyserver on my local LAN. * Chair-KeyBoard Interface 8-} -- John P. Clizbe Inet: John (a) Mozilla-Enigmail.org You can't spell fiasco without SCO. PGP/GPG KeyID: 0x608D2A10/0x18BB373A Q:"Just how do the residents of Haiku, Hawai'i hold conversations?" A:"An odd melody / island voices on the winds / surplus of vowels" -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 677 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080614/a161c2a8/attachment.bin From ussenterprise at babylonfarms.com Sat Jun 14 00:30:15 2008 From: ussenterprise at babylonfarms.com (Troy) Date: Sat, 14 Jun 2008 02:30:15 -0500 Subject: [Enigmail] honor-keyserver-url doesn't appear to work In-Reply-To: <485367A4.7080401@Mozilla-Enigmail.org> References: <48535859.8020200@babylonfarms.com> <485367A4.7080401@Mozilla-Enigmail.org> Message-ID: <48537387.3010808@babylonfarms.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 John Clizbe wrote: > Troy wrote: >> I seem to have run into a problem with --honor-keyserver-url > > Yeah, looks like either a CKBI* problem or maybe an issue in GnuPG. Try > including it in gpg.conf along with any other keyserver-options. This was my gpg.conf file prior to using Mepis (linux) and the current gpg.conf. comment http://www.babylonfarms.com/secure/0xF8180E9E_pub.asc default-key F8180E9E default-recipient-self keyserver-options auto-key-retrieve honor-keyserver-url import-clean export-clean enable-dsa2 default-preference-list s9 s8 s7 s4 s3 s2 s10 h8 h11 h10 h9 h3 z2 z1 personal-cipher-preferences s9 s8 s7 s4 s3 s2 s10 personal-digest-preferences h8 h11 h10 h9 h3 personal-compress-preferences z2 z1 ask-cert-level no-greeting no-mdc-warning trust-model pgp expert verbose this is the only new entry: keyserver hkp://wwwkeys.eu.pgp.net > It ain't automagic according to the man page: agreed, however Enigmail is over riding the gpg.conf with/without the new entry with pool.sks-keyservers.net according to the output. > Often if you wish an explicit behavior you must explicitly set it. It is, and has been. > BTW, this is really a GnuPG config issue not an Enigmail issue. If you think > GnuPG's behavior is broken, post to GnuPG-Users or GnuPG-Dev. I would have thought so too, had it not worked using the CLI. If the added gpg.conf information still supports your direction I will gladly do that. > FWIW, you should probably also update the keyservers as there is no guarantee > you can force others to obey this preference. I tend to turn it off since i have > a keyserver on my local LAN. Yes, I should probably give up the server begets spam mentality but old habits are hard to break, plus the key started getting loaded down with pgp sigs from when I used their keyserver as well :) Thanks for the help Troy -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) Comment: http://www.babylonfarms.com/secure/0xF8180E9E_pub.asc iQEVAwUBSFNzh3Wqn5z4GA6eAQjE6wgAvtaCCZP74E+ArPtQzfn8kqFocWvEhI19 PJCpjwdphwijkCzXQjWSnwn84+HU9QDZM8dq0gTzAfNd2fKmuTFsHCY5PqTQBSgr 5g0oXbCXVKzhkUqtNuNBZubgLjbm68rmN8RVJcL6FWoKEC6QX63jbvq+BPfI9JnX EpXKsrQJscmp0GDsUlRtELI+CDtWr8TtgxGud0y8fw/9NUJz7rc3sGglXHDn1f9M JADxzhT6MUm8QIRzJfwfysDsjdVoDGF2fKcHriXRf4Aw5pMLGJupZY0wsEooohHZ wukJY7jXzveFKnjp+TCITiFVi1T65NzzGTeaaF1clOHnva6wd6lkoQ== =gSTU -----END PGP SIGNATURE----- From John at Mozilla-Enigmail.org Sat Jun 14 00:55:34 2008 From: John at Mozilla-Enigmail.org (John Clizbe) Date: Sat, 14 Jun 2008 02:55:34 -0500 Subject: [Enigmail] honor-keyserver-url doesn't appear to work In-Reply-To: <48537387.3010808@babylonfarms.com> References: <48535859.8020200@babylonfarms.com> <485367A4.7080401@Mozilla-Enigmail.org> <48537387.3010808@babylonfarms.com> Message-ID: <48537976.2070902@Mozilla-Enigmail.org> Troy wrote: > John Clizbe wrote: >> Troy wrote: >>> I seem to have run into a problem with --honor-keyserver-url > >> Yeah, looks like either a CKBI* problem or maybe an issue in GnuPG. Try >> including it in gpg.conf along with any other keyserver-options. > > This was my gpg.conf file prior to using Mepis (linux) and the current > gpg.conf. > comment http://www.babylonfarms.com/secure/0xF8180E9E_pub.asc > default-key F8180E9E > default-recipient-self > keyserver-options auto-key-retrieve honor-keyserver-url import-clean > export-clean > enable-dsa2 > default-preference-list s9 s8 s7 s4 s3 s2 s10 h8 h11 h10 h9 h3 z2 z1 > personal-cipher-preferences s9 s8 s7 s4 s3 s2 s10 > personal-digest-preferences h8 h11 h10 h9 h3 > personal-compress-preferences z2 z1 > ask-cert-level > no-greeting > no-mdc-warning > trust-model pgp > expert > verbose > this is the only new entry: > keyserver hkp://wwwkeys.eu.pgp.net > >> It ain't automagic according to the man page: > > agreed, however Enigmail is over riding the gpg.conf with/without the > new entry with pool.sks-keyservers.net according to the output. Enigmail has *zero* knowledge of what you have in gpg.conf. gpg is the only program that loads it *after* Enigmail passes the command to execute. If you wish Enigmail to use a particular server, you will need to change the setting in Enigmail's preferences. gpg.conf can be used to fine-tune Enigmail's behavior, but Enigmail will behave as if the file does not exist and pass whatever options it needs to gpg on the command line. The fact that your settings in gpg.conf are reflected in gpg's output leads me to think there may be an issue with the file itself. >> BTW, this is really a GnuPG config issue not an Enigmail issue. If you think >> GnuPG's behavior is broken, post to GnuPG-Users or GnuPG-Dev. > > I would have thought so too, had it not worked using the CLI. > If the added gpg.conf information still supports your direction I will > gladly do that. Verify that Enigmail and you agree on the home directory - Enigmail's console starts with the output of 'gpg --version'. If the home directory is the same for both Enigmail and a console seesion, you have a bug either in GnuPG or your particular build. As I said, My linux version (Slackware 12.1) didn't honor the preferred keyserver option until the option was set in gpg.conf. >> FWIW, you should probably also update the keyservers as there is no guarantee >> you can force others to obey this preference. I tend to turn it off since i have >> a keyserver on my local LAN. > > Yes, I should probably give up the server begets spam mentality but old > habits are hard to break, plus the key started getting loaded down with > pgp sigs from when I used their keyserver as well :) From my tests, the amount of SPAM traceable to an address on a key varies little from that resulting from random noise. I get far much more SPAM on any address I use on a mailing list. Not using the keyservers to avoid SPAM is simply Security By Obscurity, and it's /that/ effective also. -- John P. Clizbe Inet: John (a) Mozilla-Enigmail.org You can't spell fiasco without SCO. PGP/GPG KeyID: 0x608D2A10/0x18BB373A "what's the key to success?" / "two words: good decisions." "what's the key to good decisions?" / "one word: experience." "how do i get experience?" / "two words: bad decisions." "Just how do the residents of Haiku, Hawai'i hold conversations?" -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 677 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080614/02baebec/attachment.bin From faramir.cl at gmail.com Sat Jun 14 02:01:38 2008 From: faramir.cl at gmail.com (Faramir) Date: Sat, 14 Jun 2008 05:01:38 -0400 Subject: [Enigmail] Small question about redistribution of enigmail In-Reply-To: <48535F93.2050401@sixdemonbag.org> References: <48533621.5000908@gmail.com> <48533CCB.7070500@bellsouth.net> <485341C3.2060803@gmail.com> <48535150.5010703@Mozilla-Enigmail.org> <48535F93.2050401@sixdemonbag.org> Message-ID: <485388F2.1060705@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Robert J. Hansen escribi?: > John Clizbe wrote: >> For an e-commerce site, you should only have to implement S/MIME mail >> signing/encryption. The web part should be fairly cookbook. If web part means the certificate for SSL, yes, it was really easy > Or, for that matter, do what professional ecommerce sites do: shrug and > say "we're not going to worry about this, we're just going to put those > mechanisms in place the credit card companies say we have to do." Our policy is: "let paypal take care about that". We don't really want to have to answer difficult questions about security, so... About local banks and ecommerce, I would have to deal with "transbank", but I couldn't find a clear policy, what I found was a contact form to ask them to contact me (and their phone number, in case I want to call them to ask details)... and since their policy is not to talk with customers, just with institutions (the customer's bank, or the store), I think they wouldn't like to hear "well, I am an student, and this store will never actually sell anything". > Part of good engineering is not making design decisions before you have > to. Making a commitment to a particular kind of ecommerce security > solution before knowing what the real world uses for them seems to be a > violation of this rule of thumb. :) Well, the idea was to provide "secure" email communication with customers, in case they need support, or something goes wrong. I am using osCommerce, so I really hope the built in modules, or the addons modules can handle the paypal integration. I just finished setting up the sendmail feature, and I have not had time to test it. If I am going too much off-topic, please tell me, so I can stop... Thanks for the advices -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEcBAEBAgAGBQJIU4jxAAoJEMV4f6PvczxAr04IAIltkM9L6SnYbLwJIHFHzSF2 n3ECdYRFYWYihrx2DkPREvhoeA5YMOBQvd3IpphpRQVBvGPHb0FBHbbIRx9xazoQ JC6DhkrZb2JR/PFWbyDfpQD688hz7LjV1ie7AQ2wVX6ODJ2dUNW7crm9XD3ikqFN 2+vfmkbuXqGiicYmHom39eCaNIGanu06eoWWxK3eXNf0g/7XmzHyU5QA0Xa/RSjU zhwFGg4swL1/KiKmOJVBa8QAmlkUX1DUfVSg+MmltD2IpLd57FGL6+iD7j5+HE2z 0IL2XK7+nkV4Ht9IziP0SSBlpwK1/7qcUtTUrzbx3tp8ii1tJDNVt0rtFzL0LW0= =nn/2 -----END PGP SIGNATURE----- From omnil at gmx.de Sat Jun 14 17:11:53 2008 From: omnil at gmx.de (Michael Hofrichter) Date: Sun, 15 Jun 2008 02:11:53 +0200 Subject: [Enigmail] Enigmail Digest, Vol 60, Issue 15 --> thx for the info i must first reinstall Debian under my wintendo In-Reply-To: References: Message-ID: <20080615001153.68150@gmx.net> Dear mozdev.org for these days its all just toooo suspicious, for the moment i am reinstalling my router behind my cablemodem to have maximal security. My windows edition has blown out, and now i am just reinstalling on old version of Sarge. I know theres is a new one out available but waiting on edonkey just nervs me. And my emule version has crashed, i?d send the dump to the adress i was given. Sure i had big probs too for installing openpgp and the keydownload went down while surfing with an Siemens Fujitsu Edition of Windows on a MSI Machine from Medion: but thats not my problem, its Microsofties internal problem with wishing to keep the monopol behind all using their OS freely in credit of Activation. And its always the same story: when its getting interesting on the net for me my windows version always struggle and i need to go to an internet cafe like this one for only sending a mail. Next week i think i?ll be back with Debian 24/7 online behindg my router: While installing a new Windows version : I was asked: Sie m?chten also, die Tastatur: erweitertes K?nigreich mit Gebietskennung Deutschland und Standort Ghana installieren? -->I clicked okay Greets to Arpa and the Admirality ((us) (ca)) perhaps they have there similar problems with installing windows. omnil -------- Original-Nachricht -------- > Datum: Thu, 12 Jun 2008 12:00:01 -0700 > Von: enigmail-request at mozdev.org > An: enigmail at mozdev.org > Betreff: Enigmail Digest, Vol 60, Issue 15 > Send Enigmail mailing list submissions to > enigmail at mozdev.org > > To subscribe or unsubscribe via the World Wide Web, visit > https://www.mozdev.org/mailman/listinfo/enigmail > or, via email, send a message with subject or body 'help' to > enigmail-request at mozdev.org > > You can reach the person managing the list at > enigmail-owner at mozdev.org > > When replying, please edit your Subject line so it is more specific > than "Re: Contents of Enigmail digest..." > > > Today's Topics: > > 1. Development question about MIME format (otrmail02 otrmail) > 2. Re: Development question about MIME format (Patrick Brunschwig) > > > ---------------------------------------------------------------------- > > Message: 1 > Date: Thu, 12 Jun 2008 16:55:41 +0800 > From: "otrmail02 otrmail" > Subject: [Enigmail] Development question about MIME format > To: enigmail at mozdev.org > Message-ID: > > Content-Type: text/plain; charset="iso-8859-1" > > Hi, > > I am doing an extension for Thunderbird. The extension will send a mail > with > MIME Security with OpenPGP format (RFC3156). > Understand that enigmail is using a method WriteEncryptedHeaders() in > nsEnigMsgCompose.cpp to write the format. I am wondering how does the > method > is called and when is called. Hope any of can answer my question. Thanks > in > advance. > > regards > Lai > -------------- next part -------------- > An HTML attachment was scrubbed... > URL: > http://www.mozdev.org/pipermail/enigmail/attachments/20080612/83350785/attachment-0001.html > > ------------------------------ > > Message: 2 > Date: Thu, 12 Jun 2008 14:32:36 +0200 > From: Patrick Brunschwig > Subject: Re: [Enigmail] Development question about MIME format > To: Enigmail user discussion list > Message-ID: <48511764.1050101 at mozilla-enigmail.org> > Content-Type: text/plain; charset=ISO-8859-1 > > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > otrmail02 otrmail wrote: > > Hi, > > > > I am doing an extension for Thunderbird. The extension will send a mail > > with MIME Security with OpenPGP format (RFC3156). > > Understand that enigmail is using a method WriteEncryptedHeaders() in > > nsEnigMsgCompose.cpp to write the format. I am wondering how does the > > method is called and when is called. Hope any of can answer my question. > > Thanks in advance. > > > > regards > > Lai > > You have to register your class in with the component registrar, like > it's done in enigmail.js in Enigmail.prototype.initialize(). 1st thing > in that method does is to register nsEnigMsgCompose for secure message > sending. > > The methods are automatically invoked if > gMsgCompose.compFields.securityInfo is defined and specifies that the > message should be encrypted. See enigmailMsgComposeOverlay.js, function > enigEncryptMsg(). > > - -Patrick > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v2.0.9 (GNU/Linux) > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ > > iQEVAwUBSFEXYncOpHodsOiwAQIW8Af/UpuVH4b6Zzw2HfTkkyCWhPvwxieDhiks > ejx0YrX9BVVKXogvi/eCI+sDLNAd4wqDe2pUep6YPaXby91yGGmP7PBIMP1bLFcq > ulu9AfMxFlBe9n4zo/CIrDf2XTr6R8XzrFFpa3M92VSsFfywb06cWpeomuBzeTym > RyBi40Kd3g8bGlKp8OB5uWCVjYglvHp28C9GorwUqmVWzzBUHrAWVErGPB9R4/Q6 > 9sNAi9LIu1dtWdi1X4+pJM8IrIf6kOM8FsWBvwjgt2LbeI243zTTWlsGvJC9LgG3 > LWyFmZDJ83KEJg8b4XSNBmcvJ3npdQNl1p7Cul5coGigcZDKNBDvTA== > =KVKO > -----END PGP SIGNATURE----- > > > ------------------------------ > > _______________________________________________ > Enigmail mailing list > Enigmail at mozdev.org > https://www.mozdev.org/mailman/listinfo/enigmail > > > End of Enigmail Digest, Vol 60, Issue 15 > **************************************** From John at Mozilla-Enigmail.org Sat Jun 14 20:02:47 2008 From: John at Mozilla-Enigmail.org (John Clizbe) Date: Sat, 14 Jun 2008 22:02:47 -0500 Subject: [Enigmail] Enigmail Digest, Vol 60, Issue 15 --> thx for the info i must first reinstall Debian under my wintendo In-Reply-To: <20080615001153.68150@gmx.net> References: <20080615001153.68150@gmx.net> Message-ID: <48548657.1040208@Mozilla-Enigmail.org> Michael Hofrichter wrote: > Dear mozdev.org > > for these days its all just toooo suspicious, for the moment i am > reinstalling my router behind my cablemodem to have maximal security. My windows edition has blown out, and now i am just reinstalling on old version of Sarge. I know theres is a new one out available but waiting on edonkey just nervs me. And my emule version has crashed, i?d send the dump to the adress i was given. > > Sure i had big probs too for installing openpgp and the keydownload went down > while surfing with an Siemens Fujitsu Edition of Windows on a MSI Machine from Medion: but thats not my problem, its Microsofties internal problem with wishing to keep the monopol behind all using their OS freely in credit of Activation. And its always the same story: when its getting interesting on the net for me my windows version always struggle and i need to go to an internet cafe like this one for only sending a mail. > > Next week i think i?ll be back with Debian 24/7 online behindg my router: > > While installing a new Windows version : I was asked: Sie m?chten also, die Tastatur: erweitertes K?nigreich mit Gebietskennung Deutschland und Standort Ghana installieren? -->I clicked okay > > Greets to Arpa and the Admirality ((us) (ca)) perhaps they have there similar > problems with installing windows. > > omnil Maybe you could post something that has something slightly to do with Enigmail? This isn't SlashDot - You can save the OS-bashing for another forum where it's more appreciated. -- John P. Clizbe Inet: John (a) Mozilla-Enigmail.org You can't spell fiasco without SCO. PGP/GPG KeyID: 0x608D2A10/0x18BB373A "what's the key to success?" / "two words: good decisions." "what's the key to good decisions?" / "one word: experience." "how do i get experience?" / "two words: bad decisions." "Just how do the residents of Haiku, Hawai'i hold conversations?" -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 677 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080614/07a03860/attachment.bin From torajeshr at aol.com Sun Jun 15 05:44:56 2008 From: torajeshr at aol.com (R Rajesh) Date: Sun, 15 Jun 2008 18:14:56 +0530 Subject: [Enigmail] Test E-mail Message-ID: <48550EC8.6080809@aol.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Please discard this mail. Sorry to be spamming:( -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (Darwin) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkhVDsgACgkQ1sBwegTenMTZNgCgro80T1vrNSaWF54zd8n0d20Q gMIAnivevWcApH/WI0U7kZp923DHjj4/ =z52P -----END PGP SIGNATURE----- From alaric at metrocast.net Sun Jun 15 09:40:02 2008 From: alaric at metrocast.net (Phil Stracchino) Date: Sun, 15 Jun 2008 12:40:02 -0400 Subject: [Enigmail] Test E-mail In-Reply-To: <48550EC8.6080809@aol.com> References: <48550EC8.6080809@aol.com> Message-ID: <485545E2.7060002@metrocast.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 R Rajesh wrote: > Please discard this mail. > > Sorry to be spamming:( That's not spamming, that's testing. OpenPGP Security Info UNTRUSTED Good signature from R Rajesh Key ID: 0x04DE9CC4 / Signed on: 06/15/08 08:44 Looks like you're in good shape. Feel free to send me an encrypted test off-list if you need to. - -- Phil Stracchino, CDK#2 DoD#299792458 ICBM: 43.5607, -71.355 alaric at caerllewys.net alaric at metrocast.net phil at co.ordinate.org Renaissance Man, Unix ronin, Perl hacker, Free Stater It's not the years, it's the mileage. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFIVUXi0DfOju+hMkkRCORQAJ9V2wfcVOvrRqeuYNAGzQneuc3yOACgmhJm zIA/1nOGv7Mzd7J0E0ZCMRc= =xwCH -----END PGP SIGNATURE----- From stefanxe at gmx.net Sun Jun 15 15:21:36 2008 From: stefanxe at gmx.net (Stefan X) Date: Mon, 16 Jun 2008 00:21:36 +0200 Subject: [Enigmail] forwarding S/MIME encrypted email failed Message-ID: <485595F0.2070208@gmx.net> I received a S/MIME encrypted email (which I could not decrypt because I did not have the required certificate and did not used S/MIME at all). Thunderbird failed to simply forward this email to another recipient with the error message "pgpMime.sMime.incompatible". For the receiver rules are in Enigmail defined to send all emails encrypted. I also tried to send the forwarded email unencrypted but failed with an error message explaining me that Thunderbird can not find the defined encryption certificate or the certificate is expired. What to do? Stefan From post at lespocky.de Sun Jun 15 22:42:27 2008 From: post at lespocky.de (Alexander Dahl) Date: Mon, 16 Jun 2008 07:42:27 +0200 Subject: [Enigmail] forwarding S/MIME encrypted email failed In-Reply-To: <485595F0.2070208@gmx.net> References: <485595F0.2070208@gmx.net> Message-ID: <0MKwtQ-1K87UR0rfT-0004B4@mrelayeu.kundenserver.de> Hi Stefan, > certificate or the certificate is expired. What to do? Did you try to bounce/redirect the message? You can use the following extension for that: http://mailredirect.mozdev.org/ Greets Alex -- ***** http://www.lespocky.de ******************************************* Those who would give up essential Liberty, to purchase a little temporary Safety, deserve neither Liberty nor Safety. (Benjamin Franklin) -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 258 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080616/b2a04a92/attachment.bin From patrick at mozilla-enigmail.org Sun Jun 15 23:28:03 2008 From: patrick at mozilla-enigmail.org (Patrick Brunschwig) Date: Mon, 16 Jun 2008 08:28:03 +0200 Subject: [Enigmail] forwarding S/MIME encrypted email failed In-Reply-To: <485595F0.2070208@gmx.net> References: <485595F0.2070208@gmx.net> Message-ID: <485607F3.9090804@mozilla-enigmail.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Stefan X wrote: > I received a S/MIME encrypted email (which I could not decrypt because I > did not have the required certificate and did not used S/MIME at all). > Thunderbird failed to simply forward this email to another recipient > with the error message "pgpMime.sMime.incompatible". For the receiver > rules are in Enigmail defined to send all emails encrypted. I also tried > to send the forwarded email unencrypted but failed with an error message > explaining me that Thunderbird can not find the defined encryption > certificate or the certificate is expired. What to do? Forward the email as attachment and activate the option OpenPGP > Ignore per-recipient rules. - -Patrick -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQEVAwUBSFYH83cOpHodsOiwAQKU/ggAwBp6VZMLB0HQ2zWrbKcuNwGoXVRJqIJ9 AjWJ954OgDlrEnpF90E1K8dFqDUcNjUyPsKBNcF0GmR/JuWv0AJBsar9pCT19MFJ CvQW5naHw1q+ggLiaNSXsPn5vyM8AexyYv+8vFNnu6WsnadxcyTNiG/HJmsnoF33 XCZh3evBsHCfrsY7gi8kapF7f8FvPmlL9de8boU03GijIvcLGbvui+Ggs7xWYlnk WaedXMXTdYOlVm22IWItCQDpSO/fpWZhLCKm1YnSUlhxsCWtwIvwmFHea8+66uqA LDAP0UzIJNYIMGuk88ftpsjBTf2qdOrrWGlvpoPRumdEY7TQ0wMvXQ== =d8pU -----END PGP SIGNATURE----- From simon at simonloewen.com Mon Jun 16 01:58:15 2008 From: simon at simonloewen.com (Simon Lowen) Date: Mon, 16 Jun 2008 10:58:15 +0200 Subject: [Enigmail] Configuring default Key Selection In-Reply-To: <484E4713.2070609@mozilla-enigmail.org> References: <484E2F66.4090906@simonloewen.com> <484E4713.2070609@mozilla-enigmail.org> Message-ID: <48562B27.3030004@simonloewen.com> Dear all, I have tried to configure my other half's Enigmail to automatically encryt and decypt emails. With help from this mailing list I have got this working. I have a question: When she sends her email it adds a very large signature to the bottom of it. I am concerned because my signature on my email (and others) only occupies 2 or 3 lines, while her signature is 13 lines !! My concern is that the private key is being sent as well. If this is not the case, then please would someone explain to me why her public key is so large. There is no passphase. The key is not uploaded to a public key server. Regards, S. Below is my signature and then her sig for comparision. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFIVinXKTaqpMPqlXYRCvd/AJ9fZQAubr1Ojfvx/62Gbe81u1XaKgCgjkf+ ha0faJJUr9dyCeZHp6vWvLA= =rt/D -----END PGP SIGNATURE----- And here is hers: -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iQIVAwUBSFYo3mylYaeiCjbPAQIThA/+OLEEx1VikARDxUjHlL0rGwcxww1yrJoN VyMImxmMKtRT8j9Blsb76qDwMlNrcIROSoXGenUFzzWY9Pg/08fgFAe6F41BHIWe zLAy9VemTNfSnSR8ZtdldBLWNO2u6/2FhbKNS42+ZjRBfaiwOXdKgC3PjzV6sXKx GYTCVGjT9ZpCvKQUf6ZOE37k4LYMZQROTMedp+8f8TWeo78RSKsWKRGYRgrwtWU4 SyL3UhsejtB8pv/266xjbKIvrwJOctN3nF7NNN5wxynQtQs9QYLaQMY0V5KUFGnW 80efMyCkiaiWYL1WMDqRBVzLi7BxT+zRIo0yVLwaSb9U825gk3PpdFAlzrmxeEN6 F6x3xvt4os49/hGdBgibINh1HTvvwgImsohlm4sKwLeIWm7pj/k+s/AN0SLIqXBx dTTa3oPfFXhfrGuty/Hqdpdgmk3D7oePFgWwTlesr52cefWFpwt4M0clwz/+XuVU di/vAM51f5HXiSZie/XkISesXBmnJkZcHg0ISjEC+NxaDVRRG4nf32dcalGAirI2 5c1trpRFP+KtnPzCD7ieNBlSklHlWm6PyzR+bjtodUQgAcHXBxfSYAH3tVsG1I41 pdG097aCcLxlfY+W46CsDXP+gb28C2nJkuucfaq/OIFbm5M3Rp1OY8BOTyqRbWRA J6q/SDo3GQg= =8Hn/ -----END PGP SIGNATURE----- From otrmail02 at gmail.com Mon Jun 16 02:09:37 2008 From: otrmail02 at gmail.com (otrmail02 otrmail) Date: Mon, 16 Jun 2008 17:09:37 +0800 Subject: [Enigmail] Development question about MIME format In-Reply-To: <48511764.1050101@mozilla-enigmail.org> References: <48511764.1050101@mozilla-enigmail.org> Message-ID: Hi, Thanks for reply, Patrick. I have study about the enigmailMsgComposeOverlay.js. But i still confuse about how does the method is invoked automatically. Could you tell me more about it? Or any reference that i can refer to it. Thanks. Regards Lai On Thu, Jun 12, 2008 at 8:32 PM, Patrick Brunschwig < patrick at mozilla-enigmail.org> wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > otrmail02 otrmail wrote: > > Hi, > > > > I am doing an extension for Thunderbird. The extension will send a mail > > with MIME Security with OpenPGP format (RFC3156). > > Understand that enigmail is using a method WriteEncryptedHeaders() in > > nsEnigMsgCompose.cpp to write the format. I am wondering how does the > > method is called and when is called. Hope any of can answer my question. > > Thanks in advance. > > > > regards > > Lai > > You have to register your class in with the component registrar, like > it's done in enigmail.js in Enigmail.prototype.initialize(). 1st thing > in that method does is to register nsEnigMsgCompose for secure message > sending. > > The methods are automatically invoked if > gMsgCompose.compFields.securityInfo is defined and specifies that the > message should be encrypted. See enigmailMsgComposeOverlay.js, function > enigEncryptMsg(). > > - -Patrick > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v2.0.9 (GNU/Linux) > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ > > iQEVAwUBSFEXYncOpHodsOiwAQIW8Af/UpuVH4b6Zzw2HfTkkyCWhPvwxieDhiks > ejx0YrX9BVVKXogvi/eCI+sDLNAd4wqDe2pUep6YPaXby91yGGmP7PBIMP1bLFcq > ulu9AfMxFlBe9n4zo/CIrDf2XTr6R8XzrFFpa3M92VSsFfywb06cWpeomuBzeTym > RyBi40Kd3g8bGlKp8OB5uWCVjYglvHp28C9GorwUqmVWzzBUHrAWVErGPB9R4/Q6 > 9sNAi9LIu1dtWdi1X4+pJM8IrIf6kOM8FsWBvwjgt2LbeI243zTTWlsGvJC9LgG3 > LWyFmZDJ83KEJg8b4XSNBmcvJ3npdQNl1p7Cul5coGigcZDKNBDvTA== > =KVKO > -----END PGP SIGNATURE----- > _______________________________________________ > Enigmail mailing list > Enigmail at mozdev.org > https://www.mozdev.org/mailman/listinfo/enigmail > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.mozdev.org/pipermail/enigmail/attachments/20080616/bed74db8/attachment.html From faramir.cl at gmail.com Mon Jun 16 02:47:21 2008 From: faramir.cl at gmail.com (Faramir) Date: Mon, 16 Jun 2008 05:47:21 -0400 Subject: [Enigmail] Configuring default Key Selection In-Reply-To: <48562B27.3030004@simonloewen.com> References: <484E2F66.4090906@simonloewen.com> <484E4713.2070609@mozilla-enigmail.org> <48562B27.3030004@simonloewen.com> Message-ID: <485636A9.4000807@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Simon Lowen escribi?: > Dear all, > > I have tried to configure my other half's Enigmail to automatically > encryt and decypt emails. With help from this mailing list I have got > this working. > > I have a question: > > When she sends her email it adds a very large signature to the bottom of > it. I am concerned because my signature on my email (and others) only > occupies 2 or 3 lines, while her signature is 13 lines !! My concern > is that the private key is being sent as well. If this is not the case, > then please would someone explain to me why her public key is so large. > There is no passphase. The key is not uploaded to a public key server. > > Regards, S. > > > Below is my signature and then her sig for comparision. Are both of you using the same kind of keys? I have read (I am not sure if it was in this list, or in gnupg list) RSA signatures are larger than DSA signatures, so if you are using a DSA key, and your other half is using RSA keys, maybe that would explain the diference. My signature is 7 lines long, longer than your signature, but shorter than her signature... Anyway, Enigmail doesn't have the "attach private key" option (at least, not anywhere I can see it), and it would be an incredible bug if that was the case... unless she installed a tampered version of Enigmail, it is unlikely to happen. Anyway, I suggest she should set a passphrase, just in case somebody get access to her computer... without a passphrase, it is easy to export the private key, or to revoke it... -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEcBAEBAgAGBQJIVjapAAoJEMV4f6PvczxAw3AH/2hrCID9fncYquQ4vZhKnKk7 ppb5OON3UJzUMTJIB17HfWBzo1g4B2Y9TeH8th960C09IFDBR18kahLV9IBczhpX jggameb9MozvdLbWad53Ry8lbJFVWUajxo7oby4eDPyWQbSm0W8qw3gK2uHKKwdv 93nksFHLr/qDa9bt8+k8I7GHdb0vZBladWXrtQh09RSXsz3Er8ZjIow3++/D5e84 0yuBmQkDTYbWGGynK9tJYP0ZtrD121CnKUNYKWT7+WS1HvygdIp4PeWViCg7+qkK +lzmRfBXTsQhtfdE8kN+ftek4AjK8yemEMFKELSB7FjqHr66D0DOz1CJqi36NsA= =rdo7 -----END PGP SIGNATURE----- From alaric at metrocast.net Mon Jun 16 03:27:04 2008 From: alaric at metrocast.net (Phil Stracchino) Date: Mon, 16 Jun 2008 06:27:04 -0400 Subject: [Enigmail] Configuring default Key Selection In-Reply-To: <48562B27.3030004@simonloewen.com> References: <484E2F66.4090906@simonloewen.com> <484E4713.2070609@mozilla-enigmail.org> <48562B27.3030004@simonloewen.com> Message-ID: <48563FF8.4080709@metrocast.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Simon Lowen wrote: > Dear all, > > I have tried to configure my other half's Enigmail to automatically > encryt and decypt emails. With help from this mailing list I have got > this working. > > I have a question: > > When she sends her email it adds a very large signature to the bottom of > it. I am concerned because my signature on my email (and others) only > occupies 2 or 3 lines, while her signature is 13 lines !! My concern > is that the private key is being sent as well. If this is not the case, > then please would someone explain to me why her public key is so large. > There is no passphase. The key is not uploaded to a public key server. > > Regards, S. > > > Below is my signature and then her sig for comparision. > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.6 (GNU/Linux) > > iD8DBQFIVinXKTaqpMPqlXYRCvd/AJ9fZQAubr1Ojfvx/62Gbe81u1XaKgCgjkf+ > ha0faJJUr9dyCeZHp6vWvLA= > =rt/D > -----END PGP SIGNATURE----- > > > > And here is hers: > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.6 (GNU/Linux) > > iQIVAwUBSFYo3mylYaeiCjbPAQIThA/+OLEEx1VikARDxUjHlL0rGwcxww1yrJoN > VyMImxmMKtRT8j9Blsb76qDwMlNrcIROSoXGenUFzzWY9Pg/08fgFAe6F41BHIWe > zLAy9VemTNfSnSR8ZtdldBLWNO2u6/2FhbKNS42+ZjRBfaiwOXdKgC3PjzV6sXKx > GYTCVGjT9ZpCvKQUf6ZOE37k4LYMZQROTMedp+8f8TWeo78RSKsWKRGYRgrwtWU4 > SyL3UhsejtB8pv/266xjbKIvrwJOctN3nF7NNN5wxynQtQs9QYLaQMY0V5KUFGnW > 80efMyCkiaiWYL1WMDqRBVzLi7BxT+zRIo0yVLwaSb9U825gk3PpdFAlzrmxeEN6 > F6x3xvt4os49/hGdBgibINh1HTvvwgImsohlm4sKwLeIWm7pj/k+s/AN0SLIqXBx > dTTa3oPfFXhfrGuty/Hqdpdgmk3D7oePFgWwTlesr52cefWFpwt4M0clwz/+XuVU > di/vAM51f5HXiSZie/XkISesXBmnJkZcHg0ISjEC+NxaDVRRG4nf32dcalGAirI2 > 5c1trpRFP+KtnPzCD7ieNBlSklHlWm6PyzR+bjtodUQgAcHXBxfSYAH3tVsG1I41 > pdG097aCcLxlfY+W46CsDXP+gb28C2nJkuucfaq/OIFbm5M3Rp1OY8BOTyqRbWRA > J6q/SDo3GQg= > =8Hn/ > -----END PGP SIGNATURE----- The first question that occurs to me is: What type and length are the keys being used? - -- Phil Stracchino, CDK#2 DoD#299792458 ICBM: 43.5607, -71.355 alaric at caerllewys.net alaric at metrocast.net phil at co.ordinate.org Renaissance Man, Unix ronin, Perl hacker, Free Stater It's not the years, it's the mileage. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEAREIAAYFAkhWP/gACgkQ0DfOju+hMknasQCg6XRAmuM4EEI8TNNn8AjbIaXF HgcAnjvopfRWICSsB66IhrrnIQLT8t/K =Tmfk -----END PGP SIGNATURE----- From patrick at mozilla-enigmail.org Mon Jun 16 04:43:32 2008 From: patrick at mozilla-enigmail.org (Patrick Brunschwig) Date: Mon, 16 Jun 2008 13:43:32 +0200 Subject: [Enigmail] Development question about MIME format In-Reply-To: References: <48511764.1050101@mozilla-enigmail.org> Message-ID: <485651E4.5040106@mozilla-enigmail.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 There is no at mozilla.org available on this topic :-( The code is automatically invoked by Mozilla if you set the securityInfo. If you want to know more, you'll have to study the Mozilla code in mailnews/compose/src, in particular nsMsgSend.cpp and nsMsgSendPart.cpp - -Patrick otrmail02 otrmail wrote: > Hi, > > Thanks for reply, Patrick. I have study about the > enigmailMsgComposeOverlay.js. But i still confuse about how does the > method is invoked automatically. Could you tell me more about it? Or any > reference that i can refer to it. Thanks. > > Regards > Lai > > On Thu, Jun 12, 2008 at 8:32 PM, Patrick Brunschwig > > wrote: > > otrmail02 otrmail wrote: >> Hi, > >> I am doing an extension for Thunderbird. The extension will send a > mail >> with MIME Security with OpenPGP format (RFC3156). >> Understand that enigmail is using a method WriteEncryptedHeaders() in >> nsEnigMsgCompose.cpp to write the format. I am wondering how does the >> method is called and when is called. Hope any of can answer my > question. >> Thanks in advance. > >> regards >> Lai > > You have to register your class in with the component registrar, like > it's done in enigmail.js in Enigmail.prototype.initialize(). 1st thing > in that method does is to register nsEnigMsgCompose for secure message > sending. > > The methods are automatically invoked if > gMsgCompose.compFields.securityInfo is defined and specifies that the > message should be encrypted. See enigmailMsgComposeOverlay.js, function > enigEncryptMsg(). > > -Patrick > _______________________________________________ Enigmail mailing list Enigmail at mozdev.org https://www.mozdev.org/mailman/listinfo/enigmail > ------------------------------------------------------------------------ > _______________________________________________ > Enigmail mailing list > Enigmail at mozdev.org > https://www.mozdev.org/mailman/listinfo/enigmail -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQEVAwUBSFZR43cOpHodsOiwAQLwjwgAiII0Hi85i4iEfqVoR31h5Ge/ANWSQr+3 fxu/aUW9xMvii+ZDm9Aq82/LkcO6pWa/bQ1ZWIKpaUHQzO9v0S0V+8VUVcCJtNim efk7CNmH0jHHuxYx6aVMgiTTwLxq2LHH2xzP+Rgh/UyPnnYO+92bpop3zXgA3rzg QM8BDUQ02tafbnCw4vf34l+cYMPq727tly1xBvLARMwNNWl2n7eNqeWRCNmzLXnF aVJLqC9NajsY68SNfF0RF7MQd1Hmvl7x8v61ryq7LMJW1TFHP8ODFyEX40/p5agg 3Om2GD7bkJX+lUMYVLnfF/qjmRPWCH5i0eupGYGJEq/ecRTBHErriw== =b8mz -----END PGP SIGNATURE----- From stefanxe at gmx.net Mon Jun 16 05:58:46 2008 From: stefanxe at gmx.net (Stefan X) Date: Mon, 16 Jun 2008 14:58:46 +0200 Subject: [Enigmail] forwarding S/MIME encrypted email failed In-Reply-To: <485607F3.9090804@mozilla-enigmail.org> References: <485595F0.2070208@gmx.net> <485607F3.9090804@mozilla-enigmail.org> Message-ID: <48566386.4020409@gmx.net> Hi Patrick! I did exactly what you described which resulted in the mentioned (second) error message. Stefan Patrick Brunschwig schrieb: > Stefan X wrote: >> I received a S/MIME encrypted email (which I could not decrypt because I >> did not have the required certificate and did not used S/MIME at all). >> Thunderbird failed to simply forward this email to another recipient >> with the error message "pgpMime.sMime.incompatible". For the receiver >> rules are in Enigmail defined to send all emails encrypted. I also tried >> to send the forwarded email unencrypted but failed with an error message >> explaining me that Thunderbird can not find the defined encryption >> certificate or the certificate is expired. What to do? > > Forward the email as attachment and activate the option OpenPGP > Ignore > per-recipient rules. > > -Patrick _______________________________________________ Enigmail mailing list Enigmail at mozdev.org https://www.mozdev.org/mailman/listinfo/enigmail From rjh at sixdemonbag.org Mon Jun 16 07:34:12 2008 From: rjh at sixdemonbag.org (Robert J. Hansen) Date: Mon, 16 Jun 2008 09:34:12 -0500 Subject: [Enigmail] Configuring default Key Selection In-Reply-To: <48562B27.3030004@simonloewen.com> References: <484E2F66.4090906@simonloewen.com> <484E4713.2070609@mozilla-enigmail.org> <48562B27.3030004@simonloewen.com> Message-ID: <485679E4.3020100@sixdemonbag.org> Simon Lowen wrote: > If this is not the case, then please would someone explain to me why > her public key is so large. Looking at the two signatures, it appears that one is a small DSA key (DSA1024), and the other is a large RSA key (RSA3072? RSA4096?). If I am correct, then that explains it completely. DSA signatures are much smaller than RSA signatures, and the larger the RSA key the larger the RSA signature becomes. From rjh at sixdemonbag.org Mon Jun 16 09:39:11 2008 From: rjh at sixdemonbag.org (Robert J. Hansen) Date: Mon, 16 Jun 2008 11:39:11 -0500 Subject: [Enigmail] Configuring default Key Selection In-Reply-To: <485636A9.4000807@gmail.com> References: <484E2F66.4090906@simonloewen.com> <484E4713.2070609@mozilla-enigmail.org> <48562B27.3030004@simonloewen.com> <485636A9.4000807@gmail.com> Message-ID: <4856972F.3010203@sixdemonbag.org> Faramir wrote: > Enigmail doesn't have the "attach private key" option (at least, not > anywhere I can see it), and it would be an incredible bug if that > was the case I have never seen any such misfeature in the source code. You're correct: if it did exist, it would be a bug of astonishing proportions. > unless she installed a tampered version of Enigmail, it is unlikely > to happen. As far as I know, there have been no credible reports of Enigmail getting Trojaned. However, I can't rule it out. Always get your Enigmail from either your OS vendor or from the Enigmail main site. From simon at simonloewen.com Mon Jun 16 11:36:03 2008 From: simon at simonloewen.com (Simon Lowen) Date: Mon, 16 Jun 2008 20:36:03 +0200 Subject: [Enigmail] Configuring default Key Selection In-Reply-To: <4856972F.3010203@sixdemonbag.org> References: <484E2F66.4090906@simonloewen.com> <484E4713.2070609@mozilla-enigmail.org> <48562B27.3030004@simonloewen.com> <485636A9.4000807@gmail.com> <4856972F.3010203@sixdemonbag.org> Message-ID: <4856B293.3010802@simonloewen.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Before anyone jumps on the trojan wagon, please wait until I get home and check which type of key that was created, as I expect that it is as people have pointed out: a large bit RSA key verses a RSA key. Robert J. Hansen wrote: | Faramir wrote: |> Enigmail doesn't have the "attach private key" option (at least, not |> anywhere I can see it), and it would be an incredible bug if that |> was the case | | I have never seen any such misfeature in the source code. You're | correct: if it did exist, it would be a bug of astonishing proportions. | |> unless she installed a tampered version of Enigmail, it is unlikely |> to happen. | | As far as I know, there have been no credible reports of Enigmail | getting Trojaned. However, I can't rule it out. Always get your | Enigmail from either your OS vendor or from the Enigmail main site. | | | _______________________________________________ | Enigmail mailing list | Enigmail at mozdev.org | https://www.mozdev.org/mailman/listinfo/enigmail - -- PGP plugin for Microsoft Outlook: http://www.gpg4win.org/ PGP plugin for Thunderbird/Mozilla: http://enigmail.mozdev.org No legitimate reason to know, no legitimate reason to ask. In the beginning, things were simple. That's arguably because people were far more stupid, but let's not split hairs. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFIVrKSKTaqpMPqlXYRCgKhAJ4sJhju4A5fM6rudZkJNJ2JK4W6HwCdEzhC 1bksuL9OwdGVhue7et+XgEs= =ODD5 -----END PGP SIGNATURE----- From simon at simonloewen.com Mon Jun 16 11:40:25 2008 From: simon at simonloewen.com (Simon Lowen) Date: Mon, 16 Jun 2008 20:40:25 +0200 Subject: [Enigmail] Configuring default Key Selection In-Reply-To: <4856972F.3010203@sixdemonbag.org> References: <484E2F66.4090906@simonloewen.com> <484E4713.2070609@mozilla-enigmail.org> <48562B27.3030004@simonloewen.com> <485636A9.4000807@gmail.com> <4856972F.3010203@sixdemonbag.org> Message-ID: <4856B399.1090504@simonloewen.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 And I have the answer already from my keyring: Hers is a 4096 RSA and mine is a 4096 ELG. Key size is explained. I have never heard of ELG, but this is what the OpenPGP Key Management window writes. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFIVrOZKTaqpMPqlXYRCqnlAKCJOvv5olWSb5iNR+ESBXL4zd52RgCgmKil Oxtxtjwau8nMi0LZgB1/JV8= =9Sod -----END PGP SIGNATURE----- From ayush.cena at gmail.com Mon Jun 16 11:53:19 2008 From: ayush.cena at gmail.com (Ayush Sharma) Date: Tue, 17 Jun 2008 00:23:19 +0530 Subject: [Enigmail] Configuring default Key Selection In-Reply-To: <4856B399.1090504@simonloewen.com> References: <484E2F66.4090906@simonloewen.com> <484E4713.2070609@mozilla-enigmail.org> <48562B27.3030004@simonloewen.com> <485636A9.4000807@gmail.com> <4856972F.3010203@sixdemonbag.org> <4856B399.1090504@simonloewen.com> Message-ID: <4856B69F.8020507@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Simon Lowen wrote: > And I have the answer already from my keyring: > > Hers is a 4096 RSA and mine is a 4096 ELG. > Key size is explained. > > I have never heard of ELG, but this is what the OpenPGP Key Management > window writes. > ElG is short for El-Gamal (a type of Encryption and Signature scheme...like RSA). Regards, - -Ayush -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkhWtp8ACgkQX85fnujYCQY8XgCdHcWU+FUWw6BFYyE03MSygqtp 290AoMrdOCW0OChaXtplKlwxFwKRzy/h =iPp6 -----END PGP SIGNATURE----- From rjh at sixdemonbag.org Mon Jun 16 12:48:37 2008 From: rjh at sixdemonbag.org (Robert J. Hansen) Date: Mon, 16 Jun 2008 14:48:37 -0500 Subject: [Enigmail] Configuring default Key Selection In-Reply-To: <4856B399.1090504@simonloewen.com> References: <484E2F66.4090906@simonloewen.com> <484E4713.2070609@mozilla-enigmail.org> <48562B27.3030004@simonloewen.com> <485636A9.4000807@gmail.com> <4856972F.3010203@sixdemonbag.org> <4856B399.1090504@simonloewen.com> Message-ID: <4856C395.5060806@sixdemonbag.org> Simon Lowen wrote: > Hers is a 4096 RSA and mine is a 4096 ELG. Hers is a 4K RSA. Yours is not a 4K ELG. :) Your key is using a 4K Elgamal key _for others to use when encrypting data to you_. Elgamal signing keys used to be supported in previous versions of GnuPG, but were abandoned due to implementation difficulty. (Elgamal signature algorithms are very safe, when used properly... but it's the torment of the damned to write code that does it properly.) Your signing key is probably 1K DSA. "Elgamal" can refer to either an entire family of algorithms, of which Diffie-Hellman, DSA and Elgamal-the-signature-algorithm are all part. It can also refer to one particular kind of signature algorithm within the Elgamal family, and to one particular kind of encryption algorithm within the Elgamal family. From rjh at sixdemonbag.org Mon Jun 16 12:57:37 2008 From: rjh at sixdemonbag.org (Robert J. Hansen) Date: Mon, 16 Jun 2008 14:57:37 -0500 Subject: [Enigmail] Configuring default Key Selection In-Reply-To: <4856B69F.8020507@gmail.com> References: <484E2F66.4090906@simonloewen.com> <484E4713.2070609@mozilla-enigmail.org> <48562B27.3030004@simonloewen.com> <485636A9.4000807@gmail.com> <4856972F.3010203@sixdemonbag.org> <4856B399.1090504@simonloewen.com> <4856B69F.8020507@gmail.com> Message-ID: <4856C5B1.3040509@sixdemonbag.org> Ayush Sharma wrote: > ElG is short for El-Gamal (a type of Encryption and Signature > scheme...like RSA). See my previous message for what Elgamal means. Also, please note the spelling. Taher el Gamal was born in Egypt and thus has an Egyptian Arabic name. Upon becoming an American citizen he Americanized it as "Elgamal". "el Gamal" and "Elgamal" are the only two correct spellings; Dr. Elgamal himself prefers the latter one. In Arabic, "el" is roughly analogous to "the" in English. So it would be like saying "Ludwig Van Beethoven" as opposed to "Ludwig van Beethoven", or "the Baron Von Richtoffen" as opposed to "the Baron von Richtoffen", etc., etc. From renato.puceiro3 at gmail.com Mon Jun 16 12:48:33 2008 From: renato.puceiro3 at gmail.com (Renato Puceiro) Date: Mon, 16 Jun 2008 16:48:33 -0300 Subject: [Enigmail] Enigmail Digest, Vol 60, Issue 21 In-Reply-To: References: Message-ID: <795e66310806161248s778974c5w46328e791be3ebe0@mail.gmail.com> Hey! all friends. It is possible that in the Web exits a version of PGP 6.5? I could not understand nothing. I like Thunder with eudora, now calling different. My poor english can not allow me to make some publick and private key. And then, how could I send to all. My main exploted!!!!! Yours Renato On 6/16/08, enigmail-request at mozdev.org wrote: > > Send Enigmail mailing list submissions to > enigmail at mozdev.org > > To subscribe or unsubscribe via the World Wide Web, visit > https://www.mozdev.org/mailman/listinfo/enigmail > or, via email, send a message with subject or body 'help' to > enigmail-request at mozdev.org > > You can reach the person managing the list at > enigmail-owner at mozdev.org > > When replying, please edit your Subject line so it is more specific > than "Re: Contents of Enigmail digest..." > > > Today's Topics: > > 1. Re: Configuring default Key Selection (Robert J. Hansen) > 2. Re: Configuring default Key Selection (Simon Lowen) > 3. Re: Configuring default Key Selection (Simon Lowen) > 4. Re: Configuring default Key Selection (Ayush Sharma) > > > ---------------------------------------------------------------------- > > Message: 1 > Date: Mon, 16 Jun 2008 11:39:11 -0500 > From: "Robert J. Hansen" > Subject: Re: [Enigmail] Configuring default Key Selection > To: Enigmail user discussion list > Message-ID: <4856972F.3010203 at sixdemonbag.org> > Content-Type: text/plain; charset=UTF-8 > > Faramir wrote: > > Enigmail doesn't have the "attach private key" option (at least, not > > anywhere I can see it), and it would be an incredible bug if that > > was the case > > I have never seen any such misfeature in the source code. You're > correct: if it did exist, it would be a bug of astonishing proportions. > > > unless she installed a tampered version of Enigmail, it is unlikely > > to happen. > > As far as I know, there have been no credible reports of Enigmail > getting Trojaned. However, I can't rule it out. Always get your > Enigmail from either your OS vendor or from the Enigmail main site. > > > > > ------------------------------ > > Message: 2 > Date: Mon, 16 Jun 2008 20:36:03 +0200 > From: Simon Lowen > Subject: Re: [Enigmail] Configuring default Key Selection > To: Enigmail user discussion list > Message-ID: <4856B293.3010802 at simonloewen.com> > Content-Type: text/plain; charset=ISO-8859-1; format=flowed > > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA512 > > Before anyone jumps on the trojan wagon, please wait until I get home > and check which type of key that was created, as I expect that it is as > people have pointed out: a large bit RSA key verses a RSA key. > > Robert J. Hansen wrote: > | Faramir wrote: > |> Enigmail doesn't have the "attach private key" option (at least, not > |> anywhere I can see it), and it would be an incredible bug if that > |> was the case > | > | I have never seen any such misfeature in the source code. You're > | correct: if it did exist, it would be a bug of astonishing proportions. > | > |> unless she installed a tampered version of Enigmail, it is unlikely > |> to happen. > | > | As far as I know, there have been no credible reports of Enigmail > | getting Trojaned. However, I can't rule it out. Always get your > | Enigmail from either your OS vendor or from the Enigmail main site. > | > | > | _______________________________________________ > | Enigmail mailing list > | Enigmail at mozdev.org > | https://www.mozdev.org/mailman/listinfo/enigmail > > - -- > PGP plugin for Microsoft Outlook: http://www.gpg4win.org/ > PGP plugin for Thunderbird/Mozilla: http://enigmail.mozdev.org > No legitimate reason to know, no legitimate reason to ask. > In the beginning, things were simple. That's arguably because people > were far more stupid, but let's not split hairs. > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.6 (GNU/Linux) > > iD8DBQFIVrKSKTaqpMPqlXYRCgKhAJ4sJhju4A5fM6rudZkJNJ2JK4W6HwCdEzhC > 1bksuL9OwdGVhue7et+XgEs= > =ODD5 > -----END PGP SIGNATURE----- > > > ------------------------------ > > Message: 3 > Date: Mon, 16 Jun 2008 20:40:25 +0200 > From: Simon Lowen > Subject: Re: [Enigmail] Configuring default Key Selection > To: Enigmail user discussion list > Message-ID: <4856B399.1090504 at simonloewen.com> > Content-Type: text/plain; charset=ISO-8859-1; format=flowed > > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA512 > > And I have the answer already from my keyring: > > Hers is a 4096 RSA and mine is a 4096 ELG. > Key size is explained. > > I have never heard of ELG, but this is what the OpenPGP Key Management > window writes. > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.6 (GNU/Linux) > > iD8DBQFIVrOZKTaqpMPqlXYRCqnlAKCJOvv5olWSb5iNR+ESBXL4zd52RgCgmKil > Oxtxtjwau8nMi0LZgB1/JV8= > =9Sod > -----END PGP SIGNATURE----- > > > ------------------------------ > > Message: 4 > Date: Tue, 17 Jun 2008 00:23:19 +0530 > From: Ayush Sharma > Subject: Re: [Enigmail] Configuring default Key Selection > To: Enigmail user discussion list > Message-ID: <4856B69F.8020507 at gmail.com> > Content-Type: text/plain; charset=ISO-8859-1 > > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Simon Lowen wrote: > > And I have the answer already from my keyring: > > > > Hers is a 4096 RSA and mine is a 4096 ELG. > > Key size is explained. > > > > I have never heard of ELG, but this is what the OpenPGP Key Management > > window writes. > > > ElG is short for El-Gamal (a type of Encryption and Signature > scheme...like RSA). > Regards, > - -Ayush > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.9 (MingW32) > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org > > iEYEARECAAYFAkhWtp8ACgkQX85fnujYCQY8XgCdHcWU+FUWw6BFYyE03MSygqtp > 290AoMrdOCW0OChaXtplKlwxFwKRzy/h > =iPp6 > -----END PGP SIGNATURE----- > > > ------------------------------ > > _______________________________________________ > Enigmail mailing list > Enigmail at mozdev.org > https://www.mozdev.org/mailman/listinfo/enigmail > > > End of Enigmail Digest, Vol 60, Issue 21 > **************************************** > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.mozdev.org/pipermail/enigmail/attachments/20080616/fc9e5db9/attachment.html From rjh at sixdemonbag.org Mon Jun 16 14:35:17 2008 From: rjh at sixdemonbag.org (Robert J. Hansen) Date: Mon, 16 Jun 2008 16:35:17 -0500 Subject: [Enigmail] Enigmail Digest, Vol 60, Issue 21 In-Reply-To: <795e66310806161248s778974c5w46328e791be3ebe0@mail.gmail.com> References: <795e66310806161248s778974c5w46328e791be3ebe0@mail.gmail.com> Message-ID: <4856DC95.6070000@sixdemonbag.org> Renato Puceiro wrote: > Hey! all friends. Hello, Renato. :) > It is possible that in the Web exits a version of PGP 6.5? It is illegal to download PGP 6.5. The copyright owner has disallowed its continued download. From faramir.cl at gmail.com Mon Jun 16 21:22:26 2008 From: faramir.cl at gmail.com (Faramir) Date: Tue, 17 Jun 2008 00:22:26 -0400 Subject: [Enigmail] Enigmail Digest, Vol 60, Issue 21 In-Reply-To: <795e66310806161248s778974c5w46328e791be3ebe0@mail.gmail.com> References: <795e66310806161248s778974c5w46328e791be3ebe0@mail.gmail.com> Message-ID: <48573C02.7010903@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Renato Puceiro escribi?: > Hey! all friends. > It is possible that in the Web exits a version of PGP 6.5? > I could not understand nothing. I like Thunder with eudora, now calling > different. > My poor english can not allow me to make some publick and private key. > And then, how could I send to all. > My main exploted!!!!! > Yours > Renato Ok, don't worry, there are people here that can speak other languages too (I mean, other than english language). Would you rather speak Spanish? If not, what is your language? Spanish version: Esta bien, no te preocupes, aqui hay personas que hablan otros idiomas (quiero decir, otros idiomas ademas de ingl?s). Prefieres hablar espa?ol? Si no, que idioma hablas? Regards Saludos -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEcBAEBAgAGBQJIVzwCAAoJEMV4f6PvczxAN/IH/i7LMN2ehuPK6YJhGQDiJAMb KLSvsVqCsnI/7yVdhqhC6OwIR4XVnhNkGY9OBRSQBq2A24WEwJbK83Fs6dRZQSQH fq0lCyxG7GwFTX2CQuv/ENPCK2gx/hYJNCosW9e/GAszEk0vXQHfafltbEXzJHo5 LTkIqfTjoHX0w0NQW1uxiYz0sHJc8/nQRyY1HG1Zmft7OnC5VlHJETLj0Cqx4Ioe WODZ4uz52Q4vJmVF7bOBu5Q47gnGFAiBqzn538vhLGCfkKf6AEOEzGcYd42G8Kvq IX7WP6jn5eNEwm2RhG/KchPJlIMAwbY/MxncLuQFTeQpyeG8fsvN4F24xSkALeI= =Gu06 -----END PGP SIGNATURE----- From faramir.cl at gmail.com Mon Jun 16 21:30:49 2008 From: faramir.cl at gmail.com (Faramir) Date: Tue, 17 Jun 2008 00:30:49 -0400 Subject: [Enigmail] Configuring default Key Selection In-Reply-To: <4856C5B1.3040509@sixdemonbag.org> References: <484E2F66.4090906@simonloewen.com> <484E4713.2070609@mozilla-enigmail.org> <48562B27.3030004@simonloewen.com> <485636A9.4000807@gmail.com> <4856972F.3010203@sixdemonbag.org> <4856B399.1090504@simonloewen.com> <4856B69F.8020507@gmail.com> <4856C5B1.3040509@sixdemonbag.org> Message-ID: <48573DF9.2020701@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Robert J. Hansen escribi?: > Ayush Sharma wrote: >> ElG is short for El-Gamal (a type of Encryption and Signature >> scheme...like RSA). > > See my previous message for what Elgamal means. > > Also, please note the spelling. Taher el Gamal was born in Egypt and > thus has an Egyptian Arabic name. Upon becoming an American citizen he > Americanized it as "Elgamal". "el Gamal" and "Elgamal" are the only two > correct spellings; Dr. Elgamal himself prefers the latter one. > > In Arabic, "el" is roughly analogous to "the" in English. So it would > be like saying "Ludwig Van Beethoven" as opposed to "Ludwig van > Beethoven", or "the Baron Von Richtoffen" as opposed to "the Baron von > Richtoffen", etc., etc. Interesting, in spanish, "el" is analogous to "the" in english (but just for singular "male" subjects). By the way, what is the right term, "Von" or "von"? Regarding with Elgamal, it is a bit confusing the fact it can mean a family of algorithms, or one of these algorithms... I think I will stay using RSA... (lol) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEcBAEBAgAGBQJIVz35AAoJEMV4f6PvczxAmB4IAKQJmbZZPMHP25WPlRK6wIi2 rBHFStG4syRIr6y784A5vuan6ycl0gaLnXUTZIEYapYajuMqJGAFw8w/f5hFUut5 uJ7RFrsUUFzSxLJE9UrTGlDmVCj+v800X4slmQDFjoMGc9xEXSuBpTNwcXSmJzto 26gL9QjMimFpdmYWVls6RYly9Kg535vcmPJLWTb7BHdNw8lphg2ShNhloICBC95l ICuKyn0I2rVxcrCx6ibT2VkX/+c/TkYzcaGdpFnhJIDdVv5D1mNeW4zjAqXs/elB dKVZT8+4YI98ey2P4PRxCItW3h/lONeEHjDGupsqJ6/xAkk1tPbFh2rk2U8uQ+4= =9i4M -----END PGP SIGNATURE----- From rjh at sixdemonbag.org Mon Jun 16 21:58:05 2008 From: rjh at sixdemonbag.org (Robert J. Hansen) Date: Mon, 16 Jun 2008 23:58:05 -0500 Subject: [Enigmail] Configuring default Key Selection In-Reply-To: <48573DF9.2020701@gmail.com> References: <484E2F66.4090906@simonloewen.com> <484E4713.2070609@mozilla-enigmail.org> <48562B27.3030004@simonloewen.com> <485636A9.4000807@gmail.com> <4856972F.3010203@sixdemonbag.org> <4856B399.1090504@simonloewen.com> <4856B69F.8020507@gmail.com> <4856C5B1.3040509@sixdemonbag.org> <48573DF9.2020701@gmail.com> Message-ID: <4857445D.6090806@sixdemonbag.org> Faramir wrote: > Interesting, in spanish, "el" is analogous to "the" in english (but > just for singular "male" subjects). By the way, what is the right term, > "Von" or "von"? Prepositions are not capitalized in English names, regardless of the language of origin. Hence, "Tierra del Fuego", not "Tierra Del Fuego". There are exceptions. El Cid, for instance, is always capitalized; but El Cid's real name, Ruy D?az de Vivar, has a noncapitalized preposition. From post at lespocky.de Tue Jun 17 00:18:57 2008 From: post at lespocky.de (Alexander Dahl) Date: Tue, 17 Jun 2008 09:18:57 +0200 Subject: [Enigmail] Configuring default Key Selection In-Reply-To: <48573DF9.2020701@gmail.com> References: <484E2F66.4090906@simonloewen.com> <484E4713.2070609@mozilla-enigmail.org> <48562B27.3030004@simonloewen.com> <485636A9.4000807@gmail.com> <4856972F.3010203@sixdemonbag.org> <4856B399.1090504@simonloewen.com> <4856B69F.8020507@gmail.com> <4856C5B1.3040509@sixdemonbag.org> <48573DF9.2020701@gmail.com> Message-ID: <0MKwh2-1K8VT72IC9-0004Sj@mrelayeu.kundenserver.de> Hi, > just for singular "male" subjects). By the way, what is the right term, > "Von" or "von"? Regarding with Elgamal, it is a bit confusing the fact In German it is "von" with lowercase 'v'. Greets Alex -- 'With the first link, the chain is forged. The first speech censured, the first thought forbidden, the first freedom denied, chains us all irrevocably.' (Jean-Luc Picard, quoting Judge Aaron Satie) *** GnuPG-FP: 02C8 A590 7FE5 CA5F 3601 D1D5 8FBA 7744 CC87 10D0 *** -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 250 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080617/c4db82f3/attachment-0001.bin From simon at simonloewen.com Tue Jun 17 00:50:33 2008 From: simon at simonloewen.com (Simon Loewen) Date: Tue, 17 Jun 2008 09:50:33 +0200 Subject: [Enigmail] Enigmail Digest, Vol 60, Issue 21 In-Reply-To: <4856DC95.6070000@sixdemonbag.org> References: <795e66310806161248s778974c5w46328e791be3ebe0@mail.gmail.com> <4856DC95.6070000@sixdemonbag.org> Message-ID: <48576CC9.9010901@simonloewen.com> Although, there is a link here for 6.5.8 : http://www.pgpi.org/products/pgp/versions/freeware/unix/6.5.8/ It certainly worked for me! Robert J. Hansen wrote: > Renato Puceiro wrote: >> Hey! all friends. > > Hello, Renato. :) > >> It is possible that in the Web exits a version of PGP 6.5? > > It is illegal to download PGP 6.5. The copyright owner has disallowed > its continued download. > > > _______________________________________________ > Enigmail mailing list > Enigmail at mozdev.org > https://www.mozdev.org/mailman/listinfo/enigmail -- "...so we made her confess, then burned her at the stake. Feedback is that people accept that this is the sort of operation that is necessary and reasonable for the welfare of communities." No legitimate reason to know, no legitimate reason to ask. From simon at simonloewen.com Tue Jun 17 01:01:22 2008 From: simon at simonloewen.com (Simon Loewen) Date: Tue, 17 Jun 2008 10:01:22 +0200 Subject: [Enigmail] Configuring default Key Selection In-Reply-To: <0MKwh2-1K8VT72IC9-0004Sj@mrelayeu.kundenserver.de> References: <484E2F66.4090906@simonloewen.com> <484E4713.2070609@mozilla-enigmail.org> <48562B27.3030004@simonloewen.com> <485636A9.4000807@gmail.com> <4856972F.3010203@sixdemonbag.org> <4856B399.1090504@simonloewen.com> <4856B69F.8020507@gmail.com> <4856C5B1.3040509@sixdemonbag.org> <48573DF9.2020701@gmail.com> <0MKwh2-1K8VT72IC9-0004Sj@mrelayeu.kundenserver.de> Message-ID: <48576F52.4000908@simonloewen.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Back to El Gamel: All the keys I have created with Emigmail are listed as Algorithm: ELG Size: 4096 What does this really mean? Am I using DSA as part of the ELG family or did I create a ELG key? I think the latter because Emigmail key generation lists two options: DSA & El Gamal and RSA. I think I shall generate a DSA/ELG key for my other half. I remember a few years ago I found a PGP plugin for Mozilla that would allow large bit keys and some other algorithms. I created an ELG 8192 bit key once, and its on a key server (I just checked), but I lost the private and rev keys a a year ago! S. Alexander Dahl wrote: | Hi, | |> just for singular "male" subjects). By the way, what is the right term, |> "Von" or "von"? Regarding with Elgamal, it is a bit confusing the fact | | In German it is "von" with lowercase 'v'. | | Greets | Alex | | | ------------------------------------------------------------------------ | | _______________________________________________ | Enigmail mailing list | Enigmail at mozdev.org | https://www.mozdev.org/mailman/listinfo/enigmail - -- "...so we made her confess, then burned her at the stake. Feedback is that people accept that this is the sort of operation that is necessary and reasonable for the welfare of communities." No legitimate reason to know, no legitimate reason to ask. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (MingW32) iD8DBQFIV29SKTaqpMPqlXYRAlspAKCZd8QEReet/+kU3mt7CBZezWysQgCfWRT6 uDbFAKADMn2kqzBTKR0D39k= =TDrj -----END PGP SIGNATURE----- From simon at simonloewen.com Tue Jun 17 01:07:48 2008 From: simon at simonloewen.com (Simon Loewen) Date: Tue, 17 Jun 2008 10:07:48 +0200 Subject: [Enigmail] Configuring default Key Selection In-Reply-To: <48576F52.4000908@simonloewen.com> References: <484E2F66.4090906@simonloewen.com> <484E4713.2070609@mozilla-enigmail.org> <48562B27.3030004@simonloewen.com> <485636A9.4000807@gmail.com> <4856972F.3010203@sixdemonbag.org> <4856B399.1090504@simonloewen.com> <4856B69F.8020507@gmail.com> <4856C5B1.3040509@sixdemonbag.org> <48573DF9.2020701@gmail.com> <0MKwh2-1K8VT72IC9-0004Sj@mrelayeu.kundenserver.de> <48576F52.4000908@simonloewen.com> Message-ID: <485770D4.3070001@simonloewen.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 With regards to the 8192 bit key lengths: I have found the answer to this question. Please either ignore my question, or read this link. http://mozilla-enigmail.org/forum/viewtopic.php?t=229 Simon Loewen wrote while drunk: | | I remember a few years ago I found a PGP plugin for Mozilla that would | allow large bit keys and some other algorithms. I created an ELG 8192 | bit key once, and its on a key server (I just checked), but I lost the | private and rev keys a a year ago! | -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (MingW32) iD8DBQFIV3DUKTaqpMPqlXYRAsSMAJ9DF4Z0U1q1B8xW7MOZahha3RRHCwCdG+48 7L/kXs5exvlCwYoTbvmbELA= =1rwf -----END PGP SIGNATURE----- From rjh at sixdemonbag.org Tue Jun 17 08:50:35 2008 From: rjh at sixdemonbag.org (Robert J. Hansen) Date: Tue, 17 Jun 2008 10:50:35 -0500 Subject: [Enigmail] Configuring default Key Selection In-Reply-To: <48576F52.4000908@simonloewen.com> References: <484E2F66.4090906@simonloewen.com> <484E4713.2070609@mozilla-enigmail.org> <48562B27.3030004@simonloewen.com> <485636A9.4000807@gmail.com> <4856972F.3010203@sixdemonbag.org> <4856B399.1090504@simonloewen.com> <4856B69F.8020507@gmail.com> <4856C5B1.3040509@sixdemonbag.org> <48573DF9.2020701@gmail.com> <0MKwh2-1K8VT72IC9-0004Sj@mrelayeu.kundenserver.de> <48576F52.4000908@simonloewen.com> Message-ID: <4857DD4B.1070700@sixdemonbag.org> Simon Loewen wrote: > All the keys I have created with Emigmail are listed as > Algorithm: ELG > Size: 4096 If they are, then either your key manager is mis-presenting the data or you're mis-reading the data. Your key is a DSA/ELG pair, not a purely ELG pair. At a command prompt, try "gpg --list-key your_key_id". Cut and paste the output into an email back to the list and we'll be happy to walk you through what each line means. > I think I shall generate a DSA/ELG key for my other half. Please don't do this. Unless you know what you're doing and why, just stick with the defaults. Really. The defaults are good defaults, and 99% of the time there is _no_ effective increase in security to be had by tinkering with the defaults. If your wife's key works, then there's no need to change it. From rjh at sixdemonbag.org Tue Jun 17 10:20:59 2008 From: rjh at sixdemonbag.org (Robert J. Hansen) Date: Tue, 17 Jun 2008 12:20:59 -0500 Subject: [Enigmail] Enigmail Digest, Vol 60, Issue 21 In-Reply-To: <48576CC9.9010901@simonloewen.com> References: <795e66310806161248s778974c5w46328e791be3ebe0@mail.gmail.com> <4856DC95.6070000@sixdemonbag.org> <48576CC9.9010901@simonloewen.com> Message-ID: <4857F27B.1000306@sixdemonbag.org> Simon Loewen wrote: > http://www.pgpi.org/products/pgp/versions/freeware/unix/6.5.8/ > > It certainly worked for me! Did it? Most of them won't run on modern Unices. 6.5.8 is _several_ libc revisions ago -- it won't run on a modern Fedora, Ubuntu or FreeBSD box. It is also not lawful to download it. The copyright holder has expressed their desire that 6.5.8 no longer be distributed. From stefanxe at gmx.net Tue Jun 17 11:53:17 2008 From: stefanxe at gmx.net (Stefan X) Date: Tue, 17 Jun 2008 20:53:17 +0200 Subject: [Enigmail] forwarding S/MIME encrypted email failed In-Reply-To: <485607F3.9090804@mozilla-enigmail.org> References: <485595F0.2070208@gmx.net> <485607F3.9090804@mozilla-enigmail.org> Message-ID: <4858081D.1040609@gmx.net> Hi Patrick! So, is it a bug? Should I document it in bugtrack? Stefan Patrick Brunschwig schrieb: > Stefan X wrote: >> I received a S/MIME encrypted email (which I could not decrypt because I >> did not have the required certificate and did not used S/MIME at all). >> Thunderbird failed to simply forward this email to another recipient >> with the error message "pgpMime.sMime.incompatible". For the receiver >> rules are in Enigmail defined to send all emails encrypted. I also tried >> to send the forwarded email unencrypted but failed with an error message >> explaining me that Thunderbird can not find the defined encryption >> certificate or the certificate is expired. What to do? > > Forward the email as attachment and activate the option OpenPGP > Ignore > per-recipient rules. > > -Patrick _______________________________________________ Enigmail mailing list Enigmail at mozdev.org https://www.mozdev.org/mailman/listinfo/enigmail From simon at simonloewen.com Tue Jun 17 12:08:23 2008 From: simon at simonloewen.com (Simon Lowen) Date: Tue, 17 Jun 2008 21:08:23 +0200 Subject: [Enigmail] Enigmail Digest, Vol 60, Issue 21 In-Reply-To: <4857F27B.1000306@sixdemonbag.org> References: <795e66310806161248s778974c5w46328e791be3ebe0@mail.gmail.com> <4856DC95.6070000@sixdemonbag.org> <48576CC9.9010901@simonloewen.com> <4857F27B.1000306@sixdemonbag.org> Message-ID: <48580BA7.5000506@simonloewen.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 |> It certainly worked for me! I meant that I could download it not that I actually did anything useful with it. Robert J. Hansen wrote: | Simon Loewen wrote: |> http://www.pgpi.org/products/pgp/versions/freeware/unix/6.5.8/ |> |> It certainly worked for me! | | Did it? Most of them won't run on modern Unices. 6.5.8 is _several_ | libc revisions ago -- it won't run on a modern Fedora, Ubuntu or FreeBSD | box. | | It is also not lawful to download it. The copyright holder has | expressed their desire that 6.5.8 no longer be distributed. | | _______________________________________________ | Enigmail mailing list | Enigmail at mozdev.org | https://www.mozdev.org/mailman/listinfo/enigmail - -- PGP plugin for Microsoft Outlook: http://www.gpg4win.org/ PGP plugin for Thunderbird/Mozilla: http://enigmail.mozdev.org No legitimate reason to know, no legitimate reason to ask. In the beginning, things were simple. That's arguably because people were far more stupid, but let's not split hairs. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFIWAunKTaqpMPqlXYRCvX6AKCrw8tOkeZhNIm4R+TpzlzRyVx9SQCgiQH4 L3Is7QexwabdmqF4IKLKrgk= =739Y -----END PGP SIGNATURE----- From faramir.cl at gmail.com Tue Jun 17 12:12:13 2008 From: faramir.cl at gmail.com (Faramir) Date: Tue, 17 Jun 2008 15:12:13 -0400 Subject: [Enigmail] Enigmail Digest, Vol 60, Issue 21 In-Reply-To: <4857F27B.1000306@sixdemonbag.org> References: <795e66310806161248s778974c5w46328e791be3ebe0@mail.gmail.com> <4856DC95.6070000@sixdemonbag.org> <48576CC9.9010901@simonloewen.com> <4857F27B.1000306@sixdemonbag.org> Message-ID: <48580C8D.2070006@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Robert J. Hansen escribi?: > Simon Loewen wrote: >> http://www.pgpi.org/products/pgp/versions/freeware/unix/6.5.8/ >> >> It certainly worked for me! > > Did it? Most of them won't run on modern Unices. 6.5.8 is _several_ > libc revisions ago -- it won't run on a modern Fedora, Ubuntu or FreeBSD > box. > > It is also not lawful to download it. The copyright holder has > expressed their desire that 6.5.8 no longer be distributed. Then... Simon, why don't you move to GnuPG? -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEcBAEBAgAGBQJIWAyNAAoJEMV4f6PvczxAg8IH+wRkOPbkzBYFWBztFY8rCTRD TIU9mG+VF+W1t12YGqNMlE2Fp5erSG6dqzWUD/dvlQdTWSxaM7nB7R/6mMqZh4A1 Qm0EkRAaYzNCgRHbx3p2CVAOhnaf5Hb489MgY8uokMW66UmxKhU5JTybL1YHQ3aL xFbP0qnB8K44ek2BjNEzKwxchbtMyfPyM8NRWmdDCfvGO1uWJFETWvppRkuj5d9k 3QcdTU7vP0Mrt7ut94bK/haCnqsMWGXD3dWn9rE8eAdEm621R8Qgeubl+rPRrU2b MItWI6SoSOxAME315yXagqB+EEIzm/m4frOBpq/+GykzMs6Lvu77KLOVgv35zGU= =UNjn -----END PGP SIGNATURE----- From omnil at gmx.de Tue Jun 17 14:58:09 2008 From: omnil at gmx.de (Michael Hofrichter) Date: Tue, 17 Jun 2008 23:58:09 +0200 Subject: [Enigmail] Enigmail Digest, Vol 60, Issue 20 In-Reply-To: References: Message-ID: <20080617215809.97370@gmx.net> i am installing linux debian at the moment there is not much time for me but i got a good clock -------- Original-Nachricht -------- > Datum: Mon, 16 Jun 2008 07:34:12 -0700 > Von: enigmail-request at mozdev.org > An: enigmail at mozdev.org > Betreff: Enigmail Digest, Vol 60, Issue 20 > Send Enigmail mailing list submissions to > enigmail at mozdev.org > > To subscribe or unsubscribe via the World Wide Web, visit > https://www.mozdev.org/mailman/listinfo/enigmail > or, via email, send a message with subject or body 'help' to > enigmail-request at mozdev.org > > You can reach the person managing the list at > enigmail-owner at mozdev.org > > When replying, please edit your Subject line so it is more specific > than "Re: Contents of Enigmail digest..." > > > Today's Topics: > > 1. forwarding S/MIME encrypted email failed (Stefan X) > 2. Re: forwarding S/MIME encrypted email failed (Alexander Dahl) > 3. Re: forwarding S/MIME encrypted email failed (Patrick Brunschwig) > 4. Re: Configuring default Key Selection (Simon Lowen) > 5. Re: Development question about MIME format (otrmail02 otrmail) > 6. Re: Configuring default Key Selection (Faramir) > 7. Re: Configuring default Key Selection (Phil Stracchino) > 8. Re: Development question about MIME format (Patrick Brunschwig) > 9. Re: forwarding S/MIME encrypted email failed (Stefan X) > 10. Re: Configuring default Key Selection (Robert J. Hansen) > > > ---------------------------------------------------------------------- > > Message: 1 > Date: Mon, 16 Jun 2008 00:21:36 +0200 > From: Stefan X > Subject: [Enigmail] forwarding S/MIME encrypted email failed > To: Enigmail user discussion list > Message-ID: <485595F0.2070208 at gmx.net> > Content-Type: text/plain; charset=ISO-8859-15; format=flowed > > I received a S/MIME encrypted email (which I could not decrypt because I > did not have the required certificate and did not used S/MIME at all). > Thunderbird failed to simply forward this email to another recipient > with the error message "pgpMime.sMime.incompatible". For the receiver > rules are in Enigmail defined to send all emails encrypted. I also tried > to send the forwarded email unencrypted but failed with an error message > explaining me that Thunderbird can not find the defined encryption > certificate or the certificate is expired. What to do? > > Stefan > > > ------------------------------ > > Message: 2 > Date: Mon, 16 Jun 2008 07:42:27 +0200 > From: Alexander Dahl > Subject: Re: [Enigmail] forwarding S/MIME encrypted email failed > To: Enigmail user discussion list > Message-ID: <0MKwtQ-1K87UR0rfT-0004B4 at mrelayeu.kundenserver.de> > Content-Type: text/plain; charset="iso-8859-1" > > Hi Stefan, > > > certificate or the certificate is expired. What to do? > > Did you try to bounce/redirect the message? You can use the following > extension for that: http://mailredirect.mozdev.org/ > > Greets > Alex > > -- > ***** http://www.lespocky.de ******************************************* > Those who would give up essential Liberty, to purchase > a little temporary Safety, deserve neither Liberty nor Safety. > (Benjamin Franklin) > > -------------- next part -------------- > A non-text attachment was scrubbed... > Name: signature.asc > Type: application/pgp-signature > Size: 258 bytes > Desc: OpenPGP digital signature > Url : > http://www.mozdev.org/pipermail/enigmail/attachments/20080616/b2a04a92/attachment-0001.bin > > ------------------------------ > > Message: 3 > Date: Mon, 16 Jun 2008 08:28:03 +0200 > From: Patrick Brunschwig > Subject: Re: [Enigmail] forwarding S/MIME encrypted email failed > To: Enigmail user discussion list > Message-ID: <485607F3.9090804 at mozilla-enigmail.org> > Content-Type: text/plain; charset=ISO-8859-1 > > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Stefan X wrote: > > I received a S/MIME encrypted email (which I could not decrypt because I > > did not have the required certificate and did not used S/MIME at all). > > Thunderbird failed to simply forward this email to another recipient > > with the error message "pgpMime.sMime.incompatible". For the receiver > > rules are in Enigmail defined to send all emails encrypted. I also tried > > to send the forwarded email unencrypted but failed with an error message > > explaining me that Thunderbird can not find the defined encryption > > certificate or the certificate is expired. What to do? > > Forward the email as attachment and activate the option OpenPGP > Ignore > per-recipient rules. > > - -Patrick > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v2.0.9 (GNU/Linux) > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ > > iQEVAwUBSFYH83cOpHodsOiwAQKU/ggAwBp6VZMLB0HQ2zWrbKcuNwGoXVRJqIJ9 > AjWJ954OgDlrEnpF90E1K8dFqDUcNjUyPsKBNcF0GmR/JuWv0AJBsar9pCT19MFJ > CvQW5naHw1q+ggLiaNSXsPn5vyM8AexyYv+8vFNnu6WsnadxcyTNiG/HJmsnoF33 > XCZh3evBsHCfrsY7gi8kapF7f8FvPmlL9de8boU03GijIvcLGbvui+Ggs7xWYlnk > WaedXMXTdYOlVm22IWItCQDpSO/fpWZhLCKm1YnSUlhxsCWtwIvwmFHea8+66uqA > LDAP0UzIJNYIMGuk88ftpsjBTf2qdOrrWGlvpoPRumdEY7TQ0wMvXQ== > =d8pU > -----END PGP SIGNATURE----- > > > ------------------------------ > > Message: 4 > Date: Mon, 16 Jun 2008 10:58:15 +0200 > From: Simon Lowen > Subject: Re: [Enigmail] Configuring default Key Selection > To: Enigmail user discussion list > Message-ID: <48562B27.3030004 at simonloewen.com> > Content-Type: text/plain; charset=us-ascii; format=flowed > > Dear all, > > I have tried to configure my other half's Enigmail to automatically > encryt and decypt emails. With help from this mailing list I have got > this working. > > I have a question: > > When she sends her email it adds a very large signature to the bottom of > it. I am concerned because my signature on my email (and others) only > occupies 2 or 3 lines, while her signature is 13 lines !! My concern > is that the private key is being sent as well. If this is not the case, > then please would someone explain to me why her public key is so large. > There is no passphase. The key is not uploaded to a public key server. > > Regards, S. > > > Below is my signature and then her sig for comparision. > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.6 (GNU/Linux) > > iD8DBQFIVinXKTaqpMPqlXYRCvd/AJ9fZQAubr1Ojfvx/62Gbe81u1XaKgCgjkf+ > ha0faJJUr9dyCeZHp6vWvLA= > =rt/D > -----END PGP SIGNATURE----- > > > > And here is hers: > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.6 (GNU/Linux) > > iQIVAwUBSFYo3mylYaeiCjbPAQIThA/+OLEEx1VikARDxUjHlL0rGwcxww1yrJoN > VyMImxmMKtRT8j9Blsb76qDwMlNrcIROSoXGenUFzzWY9Pg/08fgFAe6F41BHIWe > zLAy9VemTNfSnSR8ZtdldBLWNO2u6/2FhbKNS42+ZjRBfaiwOXdKgC3PjzV6sXKx > GYTCVGjT9ZpCvKQUf6ZOE37k4LYMZQROTMedp+8f8TWeo78RSKsWKRGYRgrwtWU4 > SyL3UhsejtB8pv/266xjbKIvrwJOctN3nF7NNN5wxynQtQs9QYLaQMY0V5KUFGnW > 80efMyCkiaiWYL1WMDqRBVzLi7BxT+zRIo0yVLwaSb9U825gk3PpdFAlzrmxeEN6 > F6x3xvt4os49/hGdBgibINh1HTvvwgImsohlm4sKwLeIWm7pj/k+s/AN0SLIqXBx > dTTa3oPfFXhfrGuty/Hqdpdgmk3D7oePFgWwTlesr52cefWFpwt4M0clwz/+XuVU > di/vAM51f5HXiSZie/XkISesXBmnJkZcHg0ISjEC+NxaDVRRG4nf32dcalGAirI2 > 5c1trpRFP+KtnPzCD7ieNBlSklHlWm6PyzR+bjtodUQgAcHXBxfSYAH3tVsG1I41 > pdG097aCcLxlfY+W46CsDXP+gb28C2nJkuucfaq/OIFbm5M3Rp1OY8BOTyqRbWRA > J6q/SDo3GQg= > =8Hn/ > -----END PGP SIGNATURE----- > > > > > > ------------------------------ > > Message: 5 > Date: Mon, 16 Jun 2008 17:09:37 +0800 > From: "otrmail02 otrmail" > Subject: Re: [Enigmail] Development question about MIME format > To: "Enigmail user discussion list" > Message-ID: > > Content-Type: text/plain; charset="iso-8859-1" > > Hi, > > Thanks for reply, Patrick. I have study about the > enigmailMsgComposeOverlay.js. But i still confuse about how does the > method > is invoked automatically. Could you tell me more about it? Or any > reference > that i can refer to it. Thanks. > > Regards > Lai > > On Thu, Jun 12, 2008 at 8:32 PM, Patrick Brunschwig < > patrick at mozilla-enigmail.org> wrote: > > > -----BEGIN PGP SIGNED MESSAGE----- > > Hash: SHA1 > > > > otrmail02 otrmail wrote: > > > Hi, > > > > > > I am doing an extension for Thunderbird. The extension will send a > mail > > > with MIME Security with OpenPGP format (RFC3156). > > > Understand that enigmail is using a method WriteEncryptedHeaders() in > > > nsEnigMsgCompose.cpp to write the format. I am wondering how does the > > > method is called and when is called. Hope any of can answer my > question. > > > Thanks in advance. > > > > > > regards > > > Lai > > > > You have to register your class in with the component registrar, like > > it's done in enigmail.js in Enigmail.prototype.initialize(). 1st thing > > in that method does is to register nsEnigMsgCompose for secure message > > sending. > > > > The methods are automatically invoked if > > gMsgCompose.compFields.securityInfo is defined and specifies that the > > message should be encrypted. See enigmailMsgComposeOverlay.js, function > > enigEncryptMsg(). > > > > - -Patrick > > > > -----BEGIN PGP SIGNATURE----- > > Version: GnuPG v2.0.9 (GNU/Linux) > > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ > > > > iQEVAwUBSFEXYncOpHodsOiwAQIW8Af/UpuVH4b6Zzw2HfTkkyCWhPvwxieDhiks > > ejx0YrX9BVVKXogvi/eCI+sDLNAd4wqDe2pUep6YPaXby91yGGmP7PBIMP1bLFcq > > ulu9AfMxFlBe9n4zo/CIrDf2XTr6R8XzrFFpa3M92VSsFfywb06cWpeomuBzeTym > > RyBi40Kd3g8bGlKp8OB5uWCVjYglvHp28C9GorwUqmVWzzBUHrAWVErGPB9R4/Q6 > > 9sNAi9LIu1dtWdi1X4+pJM8IrIf6kOM8FsWBvwjgt2LbeI243zTTWlsGvJC9LgG3 > > LWyFmZDJ83KEJg8b4XSNBmcvJ3npdQNl1p7Cul5coGigcZDKNBDvTA== > > =KVKO > > -----END PGP SIGNATURE----- > > _______________________________________________ > > Enigmail mailing list > > Enigmail at mozdev.org > > https://www.mozdev.org/mailman/listinfo/enigmail > > > -------------- next part -------------- > An HTML attachment was scrubbed... > URL: > http://www.mozdev.org/pipermail/enigmail/attachments/20080616/bed74db8/attachment-0001.html > > ------------------------------ > > Message: 6 > Date: Mon, 16 Jun 2008 05:47:21 -0400 > From: Faramir > Subject: Re: [Enigmail] Configuring default Key Selection > To: Enigmail user discussion list > Message-ID: <485636A9.4000807 at gmail.com> > Content-Type: text/plain; charset=UTF-8 > > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Simon Lowen escribi?: > > Dear all, > > > > I have tried to configure my other half's Enigmail to > automatically > > encryt and decypt emails. With help from this mailing list I > have got > > this working. > > > > I have a question: > > > > When she sends her email it adds a very large signature to the > bottom of > > it. I am concerned because my signature on my email (and > others) only > > occupies 2 or 3 lines, while her signature is 13 lines !! > My concern > > is that the private key is being sent as well. If this is not > the case, > > then please would someone explain to me why her public key is > so large. > > There is no passphase. The key is not uploaded to a public > key server. > > > > Regards, S. > > > > > > Below is my signature and then her sig for comparision. > > > Are both of you using the same kind of keys? I have read (I am not sure > if it was in this list, or in gnupg list) RSA signatures are larger than > DSA signatures, so if you are using a DSA key, and your other half > is using RSA keys, maybe that would explain the diference. > > My signature is 7 lines long, longer than your signature, but shorter > than her signature... Anyway, Enigmail doesn't have the "attach private > key" option (at least, not anywhere I can see it), and it would be an > incredible bug if that was the case... unless she installed a tampered > version of Enigmail, it is unlikely to happen. Anyway, I suggest she > should set a passphrase, just in case somebody get access to her > computer... without a passphrase, it is easy to export the private key, > or to revoke it... > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.9 (MingW32) > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org > > iQEcBAEBAgAGBQJIVjapAAoJEMV4f6PvczxAw3AH/2hrCID9fncYquQ4vZhKnKk7 > ppb5OON3UJzUMTJIB17HfWBzo1g4B2Y9TeH8th960C09IFDBR18kahLV9IBczhpX > jggameb9MozvdLbWad53Ry8lbJFVWUajxo7oby4eDPyWQbSm0W8qw3gK2uHKKwdv > 93nksFHLr/qDa9bt8+k8I7GHdb0vZBladWXrtQh09RSXsz3Er8ZjIow3++/D5e84 > 0yuBmQkDTYbWGGynK9tJYP0ZtrD121CnKUNYKWT7+WS1HvygdIp4PeWViCg7+qkK > +lzmRfBXTsQhtfdE8kN+ftek4AjK8yemEMFKELSB7FjqHr66D0DOz1CJqi36NsA= > =rdo7 > -----END PGP SIGNATURE----- > > > ------------------------------ > > Message: 7 > Date: Mon, 16 Jun 2008 06:27:04 -0400 > From: Phil Stracchino > Subject: Re: [Enigmail] Configuring default Key Selection > To: Enigmail user discussion list > Message-ID: <48563FF8.4080709 at metrocast.net> > Content-Type: text/plain; charset=ISO-8859-1 > > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA256 > > Simon Lowen wrote: > > Dear all, > > > > I have tried to configure my other half's Enigmail to automatically > > encryt and decypt emails. With help from this mailing list I have got > > this working. > > > > I have a question: > > > > When she sends her email it adds a very large signature to the bottom of > > it. I am concerned because my signature on my email (and others) only > > occupies 2 or 3 lines, while her signature is 13 lines !! My concern > > is that the private key is being sent as well. If this is not the case, > > then please would someone explain to me why her public key is so large. > > There is no passphase. The key is not uploaded to a public key server. > > > > Regards, S. > > > > > > Below is my signature and then her sig for comparision. > > > > -----BEGIN PGP SIGNATURE----- > > Version: GnuPG v1.4.6 (GNU/Linux) > > > > iD8DBQFIVinXKTaqpMPqlXYRCvd/AJ9fZQAubr1Ojfvx/62Gbe81u1XaKgCgjkf+ > > ha0faJJUr9dyCeZHp6vWvLA= > > =rt/D > > -----END PGP SIGNATURE----- > > > > > > > > And here is hers: > > > > -----BEGIN PGP SIGNATURE----- > > Version: GnuPG v1.4.6 (GNU/Linux) > > > > iQIVAwUBSFYo3mylYaeiCjbPAQIThA/+OLEEx1VikARDxUjHlL0rGwcxww1yrJoN > > VyMImxmMKtRT8j9Blsb76qDwMlNrcIROSoXGenUFzzWY9Pg/08fgFAe6F41BHIWe > > zLAy9VemTNfSnSR8ZtdldBLWNO2u6/2FhbKNS42+ZjRBfaiwOXdKgC3PjzV6sXKx > > GYTCVGjT9ZpCvKQUf6ZOE37k4LYMZQROTMedp+8f8TWeo78RSKsWKRGYRgrwtWU4 > > SyL3UhsejtB8pv/266xjbKIvrwJOctN3nF7NNN5wxynQtQs9QYLaQMY0V5KUFGnW > > 80efMyCkiaiWYL1WMDqRBVzLi7BxT+zRIo0yVLwaSb9U825gk3PpdFAlzrmxeEN6 > > F6x3xvt4os49/hGdBgibINh1HTvvwgImsohlm4sKwLeIWm7pj/k+s/AN0SLIqXBx > > dTTa3oPfFXhfrGuty/Hqdpdgmk3D7oePFgWwTlesr52cefWFpwt4M0clwz/+XuVU > > di/vAM51f5HXiSZie/XkISesXBmnJkZcHg0ISjEC+NxaDVRRG4nf32dcalGAirI2 > > 5c1trpRFP+KtnPzCD7ieNBlSklHlWm6PyzR+bjtodUQgAcHXBxfSYAH3tVsG1I41 > > pdG097aCcLxlfY+W46CsDXP+gb28C2nJkuucfaq/OIFbm5M3Rp1OY8BOTyqRbWRA > > J6q/SDo3GQg= > > =8Hn/ > > -----END PGP SIGNATURE----- > > > The first question that occurs to me is: What type and length are the > keys being used? > > > - -- > Phil Stracchino, CDK#2 DoD#299792458 ICBM: 43.5607, -71.355 > alaric at caerllewys.net alaric at metrocast.net phil at co.ordinate.org > Renaissance Man, Unix ronin, Perl hacker, Free Stater > It's not the years, it's the mileage. > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.9 (GNU/Linux) > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org > > iEYEAREIAAYFAkhWP/gACgkQ0DfOju+hMknasQCg6XRAmuM4EEI8TNNn8AjbIaXF > HgcAnjvopfRWICSsB66IhrrnIQLT8t/K > =Tmfk > -----END PGP SIGNATURE----- > > > ------------------------------ > > Message: 8 > Date: Mon, 16 Jun 2008 13:43:32 +0200 > From: Patrick Brunschwig > Subject: Re: [Enigmail] Development question about MIME format > To: Enigmail user discussion list > Message-ID: <485651E4.5040106 at mozilla-enigmail.org> > Content-Type: text/plain; charset=ISO-8859-1 > > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > There is no at mozilla.org available on this topic :-( > > The code is automatically invoked by Mozilla if you set the > securityInfo. If you want to know more, you'll have to study the Mozilla > code in mailnews/compose/src, in particular nsMsgSend.cpp and > nsMsgSendPart.cpp > > - -Patrick > > > otrmail02 otrmail wrote: > > Hi, > > > > Thanks for reply, Patrick. I have study about the > > enigmailMsgComposeOverlay.js. But i still confuse about how does the > > method is invoked automatically. Could you tell me more about it? Or any > > reference that i can refer to it. Thanks. > > > > Regards > > Lai > > > > On Thu, Jun 12, 2008 at 8:32 PM, Patrick Brunschwig > > > > wrote: > > > > otrmail02 otrmail wrote: > >> Hi, > > > >> I am doing an extension for Thunderbird. The extension will send a > > mail > >> with MIME Security with OpenPGP format (RFC3156). > >> Understand that enigmail is using a method WriteEncryptedHeaders() in > >> nsEnigMsgCompose.cpp to write the format. I am wondering how does the > >> method is called and when is called. Hope any of can answer my > > question. > >> Thanks in advance. > > > >> regards > >> Lai > > > > You have to register your class in with the component registrar, like > > it's done in enigmail.js in Enigmail.prototype.initialize(). 1st thing > > in that method does is to register nsEnigMsgCompose for secure message > > sending. > > > > The methods are automatically invoked if > > gMsgCompose.compFields.securityInfo is defined and specifies that the > > message should be encrypted. See enigmailMsgComposeOverlay.js, function > > enigEncryptMsg(). > > > > -Patrick > > > _______________________________________________ > Enigmail mailing list > Enigmail at mozdev.org > https://www.mozdev.org/mailman/listinfo/enigmail > > > ------------------------------------------------------------------------ > > > _______________________________________________ > > Enigmail mailing list > > Enigmail at mozdev.org > > https://www.mozdev.org/mailman/listinfo/enigmail > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v2.0.9 (GNU/Linux) > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ > > iQEVAwUBSFZR43cOpHodsOiwAQLwjwgAiII0Hi85i4iEfqVoR31h5Ge/ANWSQr+3 > fxu/aUW9xMvii+ZDm9Aq82/LkcO6pWa/bQ1ZWIKpaUHQzO9v0S0V+8VUVcCJtNim > efk7CNmH0jHHuxYx6aVMgiTTwLxq2LHH2xzP+Rgh/UyPnnYO+92bpop3zXgA3rzg > QM8BDUQ02tafbnCw4vf34l+cYMPq727tly1xBvLARMwNNWl2n7eNqeWRCNmzLXnF > aVJLqC9NajsY68SNfF0RF7MQd1Hmvl7x8v61ryq7LMJW1TFHP8ODFyEX40/p5agg > 3Om2GD7bkJX+lUMYVLnfF/qjmRPWCH5i0eupGYGJEq/ecRTBHErriw== > =b8mz > -----END PGP SIGNATURE----- > > > ------------------------------ > > Message: 9 > Date: Mon, 16 Jun 2008 14:58:46 +0200 > From: Stefan X > Subject: Re: [Enigmail] forwarding S/MIME encrypted email failed > To: Enigmail user discussion list > Message-ID: <48566386.4020409 at gmx.net> > Content-Type: text/plain; charset=ISO-8859-1; format=flowed > > Hi Patrick! > I did exactly what you described which resulted in the mentioned > (second) error message. > > Stefan > > Patrick Brunschwig schrieb: > > Stefan X wrote: > >> I received a S/MIME encrypted email (which I could not decrypt because > I > >> did not have the required certificate and did not used S/MIME at all). > >> Thunderbird failed to simply forward this email to another recipient > >> with the error message "pgpMime.sMime.incompatible". For the receiver > >> rules are in Enigmail defined to send all emails encrypted. I also > tried > >> to send the forwarded email unencrypted but failed with an error > message > >> explaining me that Thunderbird can not find the defined encryption > >> certificate or the certificate is expired. What to do? > > > > Forward the email as attachment and activate the option OpenPGP > Ignore > > per-recipient rules. > > > > -Patrick > _______________________________________________ > Enigmail mailing list > Enigmail at mozdev.org > https://www.mozdev.org/mailman/listinfo/enigmail > > > > ------------------------------ > > Message: 10 > Date: Mon, 16 Jun 2008 09:34:12 -0500 > From: "Robert J. Hansen" > Subject: Re: [Enigmail] Configuring default Key Selection > To: Enigmail user discussion list > Message-ID: <485679E4.3020100 at sixdemonbag.org> > Content-Type: text/plain; charset=ISO-8859-1; format=flowed > > Simon Lowen wrote: > > If this is not the case, then please would someone explain to me why > > her public key is so large. > > Looking at the two signatures, it appears that one is a small DSA key > (DSA1024), and the other is a large RSA key (RSA3072? RSA4096?). If I > am correct, then that explains it completely. DSA signatures are much > smaller than RSA signatures, and the larger the RSA key the larger the > RSA signature becomes. > > > > > ------------------------------ > > _______________________________________________ > Enigmail mailing list > Enigmail at mozdev.org > https://www.mozdev.org/mailman/listinfo/enigmail > > > End of Enigmail Digest, Vol 60, Issue 20 > **************************************** -- and he heard ugly kid joe while sputtering the disks in the fab after i asked: him why do you like working in germany: he answered: Hole Germany is a kindergarden: "why that" i asked again: he said "there are no weapons" From alaric at metrocast.net Tue Jun 17 15:13:37 2008 From: alaric at metrocast.net (Phil Stracchino) Date: Tue, 17 Jun 2008 18:13:37 -0400 Subject: [Enigmail] Enigmail Digest, Vol 60, Issue 20 In-Reply-To: <20080617215809.97370@gmx.net> References: <20080617215809.97370@gmx.net> Message-ID: <48583711.6010703@metrocast.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Michael Hofrichter wrote: > i am installing linux debian at the moment there is not much time for me but i got a good clock > -------- Original-Nachricht -------- >> Datum: Mon, 16 Jun 2008 07:34:12 -0700 >> Von: enigmail-request at mozdev.org >> An: enigmail at mozdev.org >> Betreff: Enigmail Digest, Vol 60, Issue 20 Please, please, please: Do NOT quote an entire digest to make a single one-line comment, *especially* an apparently completely off-topic one. - -- Phil Stracchino, CDK#2 DoD#299792458 ICBM: 43.5607, -71.355 alaric at caerllewys.net alaric at metrocast.net phil at co.ordinate.org Renaissance Man, Unix ronin, Perl hacker, Free Stater It's not the years, it's the mileage. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEAREIAAYFAkhYNxEACgkQ0DfOju+hMkmxfACgpWXUkLRhTM3nYSfXiYLZu9qv 5NMAoPpGON6sT8yjub7yeE3/oOf5cv/9 =77mT -----END PGP SIGNATURE----- From jmoore3rd at bellsouth.net Tue Jun 17 15:20:37 2008 From: jmoore3rd at bellsouth.net (John W. Moore III) Date: Tue, 17 Jun 2008 18:20:37 -0400 Subject: [Enigmail] Enigmail Digest, Vol 60, Issue 20 In-Reply-To: <20080617215809.97370@gmx.net> References: <20080617215809.97370@gmx.net> Message-ID: <485838B5.8090501@bellsouth.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Michael Hofrichter wrote: > i am installing linux debian at the moment there is not much time for me but i got a good clock Please, Please, Please! When receiving the Forum in Digest Delivery and wishing to Reply *trim* Your quoted material and change the Subject to what is germane to the Reply. :-\ JOHN ;) Timestamp: Tuesday 17 Jun 2008, 18:20 --400 (Eastern Daylight Time) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.5.0-svn4754: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIWDizAAoJEBCGy9eAtCsPXpsIAIB9HRnFceur0Ijk7gpXC8X2 43w79T9DM19Z0Q3tStbbO3w68InUZTmtljDISTVhr9Ab6vxxN0DSatmhT/Ifri7u +fZ0U3mpX+6yHMk6lhdJ8KisjF7U5T9Y2jq988QjcbjJ4U7jZbi/R4bZAVWAu4yD MjBzTFDwlintSbIBvte8TuwPur1mL2oNOuJSWxV4m0E56nqwOMfJzqMIBaPip/23 yc0LW58utGPxQDuX1OgBjPTKkYwVCW8fG2ESZB4Q6MHuqDEUXmXFNTz21wRTrMKc UkZmDXy4qtMNXqANL74te3Vi4yHvEWbL0N+rYPmMlqH6U2b0R6nrKli/2JO/g+k= =01Df -----END PGP SIGNATURE----- From patrick at mozilla-enigmail.org Wed Jun 18 09:12:38 2008 From: patrick at mozilla-enigmail.org (Patrick Brunschwig) Date: Wed, 18 Jun 2008 18:12:38 +0200 Subject: [Enigmail] forwarding S/MIME encrypted email failed In-Reply-To: <4858081D.1040609@gmx.net> References: <485595F0.2070208@gmx.net> <485607F3.9090804@mozilla-enigmail.org> <4858081D.1040609@gmx.net> Message-ID: <485933F6.9020801@mozilla-enigmail.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Stefan X wrote: > Patrick Brunschwig schrieb: >> Stefan X wrote: >>> I received a S/MIME encrypted email (which I could not decrypt because I >>> did not have the required certificate and did not used S/MIME at all). >>> Thunderbird failed to simply forward this email to another recipient >>> with the error message "pgpMime.sMime.incompatible". For the receiver >>> rules are in Enigmail defined to send all emails encrypted. I also tried >>> to send the forwarded email unencrypted but failed with an error message >>> explaining me that Thunderbird can not find the defined encryption >>> certificate or the certificate is expired. What to do? >> Forward the email as attachment and activate the option OpenPGP > Ignore >> per-recipient rules. >> >> -Patrick > > Hi Patrick! > So, is it a bug? Should I document it in bugtrack? > No, I don't think so. I just tried it myself, and I noticed that Thunderbird automatically enables S/MIME encryption in such a situation - -- and this clashes with PGP/MIME. You should forward the message as attachment and before sending choose from the menu Options > Security the option "Do not encrypt message" (that is disable S/MIME security). - -Patrick -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQEVAwUBSFkz9XcOpHodsOiwAQKuOAf9E1hw5gDmTf7i4VmEcNvjf/SiaZ8hNm83 tBJEmThTHAOZUDJhR14yiB+jaa8RwkDHrPHcQnkFYIzFovL3rKHVS9wZUJ/Unv7m 5RDKS40zFBDDdvUZfZ+6OFmK308KP55Ma1hcpzUSeUeNL7NZkfTuniNpsOmO9pKC h59Ie735BJpF+YR9DuXAMFDYBly/uHbKsKgXXnxyrvMk2t+WFE5zTFlbUBTTSbuQ E3VAZLQpX5+xEJVXBQg2tnDbOtnYEdz8Kw3pjn5KbwS/sKW2o+s1TTnhheLJNjNJ H8+KDjScXErMIebvLREhq2fxK+cb2Qv22fcWnwdl8VjCFHvHnSWL9Q== =LuZ4 -----END PGP SIGNATURE----- From 210525p42015 at denstarfarm.us Wed Jun 18 10:53:59 2008 From: 210525p42015 at denstarfarm.us (RD) Date: Wed, 18 Jun 2008 13:53:59 -0400 Subject: [Enigmail] About OpenPGP: Header Message-ID: <48594BB7.6080206@denstarfarm.us> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 I just tried setting the OpenPGP: header to show both my Key-ID as well as my URL for retrieval. As I have five or six email accounts, I first checked a default account's OpenPGP-Security boxes to activate Header insertion. Next I went thru the others. In each of the remaining accounts, the Key-ID box was check. However, it was grayed-out and unchangeable. Also, i each of the remaining accounts, the URL text-box was empty and the box to activate insertion of the URL was checked, and active (so I could uncheck it if wanted. I added the URL in the empty text-form Then I sent a test message from one of the other accounts. "Other" being any one *except* thee one I first activated (and it was by chance the default Thunderbird account too). What I saw in subsequent headers, of emails I sent to myself, was *only* the URL for Key retrieval was in the message headers. When I used the original account, the one in which both check-boxes were available to be edited, then I got a single OpenPGP: header with Key-ID after it then a separate line with no "OpenPGP:" header, but containing the correct URL I'd entered earlier. Is this a known feature? - -- RD Thunderbird: version 2.0.0.14 (20080421) -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.9 (Darwin) iQIcBAEBCgAGBQJIWUu2AAoJEM+FBuO1wKhLblYQAKCywhObJgC0R92piiJ557Vm 1oGlBef9I9XoDtK5yomuOKBmLYD9G4CmYGJLrGn+frxQRIxAbIqSTz9MqFgthXa4 mQwcYrP1bzM3EuM1VBtPZLe1AMBtHKnESFw8COTgJZMb3yggvgx1YdkBrX0GgFa2 1IPlC4eVN6gEq35cT6YnHDvqwO7+vg+ftVXk0FsZoTnrIE2TnE4FFMxNdQqhCTVj 4pL1Jz79/bnjzoJ9YSAKVyEg+9EzDEMi46W1qU3TY8qCaG5nqRlPXz7KBCAo9P84 QQ6LUoF8ftIK9FWLnzerDH+fRu1VerUj8BunFkJc02PcvxUEVRCzpDZu+nXIw1ln QRgL91uXu95jg9rkL8s0ok8MAhvMRjWraStY4U2QNEvPPLl7sXqcbGSYdn3cvHyM pXf88ddYynq2CzKtBqEfqZx55zr1DCeSRAv2hdvxbV8H2ghGTf/41FBLvFAJzaLQ JBYd+xVBfqpx8aYjNU0HR07NdlCYKp8uqlL4/YRyqeAEm+pg6ONuNuivbwnyybqn 0zYZOl6SAHeTt/X7dxKiPzBpx+HBaM9hyNL/QWhvL3ZHF2RlyEhV1rye8SptF9eL 37WOf8NR4YxeeYIwhuqynGC76gnQz+MyO8J40NMeQUTUZjf7kzZ+wZeGERiYRP73 ktHGgT5AYnoD5ZkRjgEM =0z56 -----END PGP SIGNATURE----- From 210525p42015 at denstarfarm.us Wed Jun 18 10:57:34 2008 From: 210525p42015 at denstarfarm.us (RD) Date: Wed, 18 Jun 2008 13:57:34 -0400 Subject: [Enigmail] About OpenPGP: Header In-Reply-To: <48594BB7.6080206@denstarfarm.us> References: <48594BB7.6080206@denstarfarm.us> Message-ID: <48594C8E.5010805@denstarfarm.us> Testing the reply *after* un-checking the URL box and leaving (no choice) the checked box for Key-ID in-situ From 210525p42015 at denstarfarm.us Wed Jun 18 11:05:05 2008 From: 210525p42015 at denstarfarm.us (RD) Date: Wed, 18 Jun 2008 14:05:05 -0400 Subject: [Enigmail] About OpenPGP: Header In-Reply-To: <48594C8E.5010805@denstarfarm.us> References: <48594BB7.6080206@denstarfarm.us> <48594C8E.5010805@denstarfarm.us> Message-ID: <48594E51.4020902@denstarfarm.us> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 RD said the following, On 6/18/08 1:57 PM: > Testing the reply *after* un-checking the URL box and leaving (no > choice) the checked box for Key-ID in-situ which leaves now a blank spot X-Enigmail-Version: 0.95.6 OpenPGP: the first message had the URL for Key-Retrieval. I may have discovered the problem (mine, here) ... I hadn't checked the box for default Key for each account. *actually*, I had done that in the past. I can figure that in recent upgrades and rebuilding the profile due to severe problems with iMap ... that I hadn't gone back and checked all the boxes and done the setup work. me bad. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.9 (Darwin) iQIcBAEBCgAGBQJIWU5QAAoJEM+FBuO1wKhLhFYP/Av/BxvWNlw+5OOUJ60q5bd/ X9J6x/ZDdhdxsvhqvX6ophO+sMG6WG6V/js0F2TW1M6lMLx0hLit9K7fNku9CK0x qxlp95+qJr8Pyu8w5xV33MPC+3bqr64rs89PSs0Tax+Cfq8nbwdS0/bACyFHo+9O dRCJGlaRq2Lrl7Od8/Tx16WBd0XYXPvxQxCT1wte0k2j2PGi63IoLY8YMBT3cCZl KQ8nSjxptBT6gpbpFXXOakN2NFr+sAOHbOvvNPsY8D8F+SYmXSZyfCduvcSduixk EsYiYugPyajHE14l0k5cSgmqALnVw7ilUcaI/nHls+CzfjjTVKectqgf+x73G7km 4MhmA6zn73VoZ/Zw+Bid7br5pX9hebBTWT+zN9pIVrlCwhFWzgWG/jh+Cu3CJqGm cdRB6712uETxOq0Mcf5xbO0PCbcjLNjiWL3IE+fNDwEeo4mpFTmU2PMqoNDSjnLq ShgJj3jtZ1zcsspiPAlvx1XHARoeET9Ls9z2MK+EQi8Xn9id3axzS415HBSH6jwO fCQrBQio6BThDTliXdbxvSax2qU0kK/pXlMCw6KRpJq6rx/DQDWAaJfXaIzfZzBU iReKXNc53d5dEbBjlYYMGpSgLNt8fbTnEHc8u3Awkn1VMFMDBQNVnX9u32mGDKJF XyyqiqOFazVljQnYcU5x =MJAs -----END PGP SIGNATURE----- From jamesrome at gmail.com Thu Jun 19 11:08:43 2008 From: jamesrome at gmail.com (James Rome) Date: Thu, 19 Jun 2008 14:08:43 -0400 Subject: [Enigmail] Crashing TB 3.0a Message-ID: <485AA0AB.7080707@gmail.com> On OS X, Thunderbird 3.0a2pro 2008061903 crashes every time when I click the OpenPGP menu item. I have today's downloaded enigmail 0.96a trunk installed. Jim Rome From mlisten at hammernoch.net Thu Jun 19 11:41:17 2008 From: mlisten at hammernoch.net (=?ISO-8859-1?Q?Ludwig_H=FCgelsch=E4fer?=) Date: Thu, 19 Jun 2008 20:41:17 +0200 Subject: [Enigmail] Crashing TB 3.0a In-Reply-To: <485AA0AB.7080707@gmail.com> References: <485AA0AB.7080707@gmail.com> Message-ID: <485AA84D.8080701@hammernoch.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Hi, James Rome wrote on 19.06.2008 20:08 Uhr: > On OS X, Thunderbird 3.0a2pro 2008061903 crashes every time when I click > the OpenPGP menu item. > I have today's downloaded enigmail 0.96a trunk installed. Please try to disable Enigmails expert settings. Once you have enabled them, you can do it only via editing prefs.js in your profile directory. First stop Thunderbird, then change the line: user_pref("extensions.enigmail.advancedUser", true); to user_pref("extensions.enigmail.advancedUser", false); This is an ugly workaround, the bug seems to be in the Mac OS specific Thunderbird code, see this bug: https://bugzilla.mozilla.org/show_bug.cgi?id=433858 HTH Ludwig -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (Darwin) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQEVAwUBSFqoTFYnpxVXVowdAQo9VQgAxs6vaOYCnBRbud//AffSOiVNlVAjJTTa 5yO2ES4RGl8IGGYnyKKgFYboW3BVBeNtELjzD3ys7JZeRaAfhTMecZ5emh0RySdD ZOnBR5ujgRX0N9aQ9lNzzAv3I3Gctyv6OY1+eVIb5FH0cHnmXObZtVMIYER7FQy6 V2OpmdrT4LQBXtamT1orgYJh1FSQ5qTZZdoqDEgDJS58EbLMGRvOugrU9d7C4ysw ZVc1NOM66plDt3WdiuWATqlQ6knmWWv9rIm7XgIcf8au+p5hqGtkHe1+kWrs3HXI W3VJI3bq6ezZJyykDRQkuMNUQeHGK9Y1rTj7scGjDdymz/quKlLnJw== =S1dr -----END PGP SIGNATURE----- From powermax_123 at gmx.de Thu Jun 19 23:43:52 2008 From: powermax_123 at gmx.de (powermax_123 at gmx.de) Date: Fri, 20 Jun 2008 08:43:52 +0200 Subject: [Enigmail] "Reply with template" failes with activated OpenPGP-Support for this identity Message-ID: Hello, I would like to use the "Reply with template"-action when filtering mails. When an incoming mail matches the criteria of the filter, Thunderbird shall answer with a predefined template. It fails with the message "Senden der Nachricht fehlgeschlagen. Bitte ?berpr?fen Sie Ihre Konten-Einstellungen und wiederholen Sie den Vorgang." (German Thunderbird) which says in English something like "Sending of message failed. Please check your account settings and retry". After deactivating OpenPGP-Support (Enigmail 0.95.6, gpg (GnuPG) 1.4.6) for this identity it works perfectly and the auto-reply is sent properly. Is there a setting which prevents Thunderbird from auto-replying with activated OpenPGP-Support? Or does anybody has a solution for this problem? Thank you in advance, kind regards, powermax123 From niels.maumenee at umontana.edu Fri Jun 20 09:10:16 2008 From: niels.maumenee at umontana.edu (Niels Maumenee) Date: Fri, 20 Jun 2008 10:10:16 -0600 Subject: [Enigmail] hello Message-ID: <485BD668.1050409@umontana.edu> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I heard an article on NPR yesterday about email encryption, so I am giving it a try. Thanks, Niels - -- Niels Maumenee Research Scientist FLBS Typology Project The University of Montana -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkhb1mgACgkQ2bsuurIH/+d0kQCgiEsA5MIMgC7yxcIOuozurdZP 0aYAnRAn+lFKn9vbK/wlXUqf1gTlovKx =SZ66 -----END PGP SIGNATURE----- From mlisten at hammernoch.net Fri Jun 20 10:35:11 2008 From: mlisten at hammernoch.net (=?ISO-8859-1?Q?Ludwig_H=FCgelsch=E4fer?=) Date: Fri, 20 Jun 2008 19:35:11 +0200 Subject: [Enigmail] hello In-Reply-To: <485BD668.1050409@umontana.edu> References: <485BD668.1050409@umontana.edu> Message-ID: <485BEA4F.7090000@hammernoch.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Hi Niels, Niels Maumenee wrote on 20.06.2008 18:10 Uhr: > I heard an article on NPR yesterday about email encryption, so I am > giving it a try. Seems to work: UNTRUSTED Good signature from Niels Maumenee My Enigmail - more correctly my underlying gpg - says it's untrusted because I haven't assured that your public key is really yours over a trusted channel. Welcome to the community! Don't hesitate to ask if there's anything unclear. You might want to subscribe to the mailinglist you have written to so that you receive the answers to your questions. Greetings Ludwig -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (Darwin) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQEVAwUBSFvqTlYnpxVXVowdAQrNSwf+Jay2wFTXO570oDz9FtsZKaojSgSW93rt gQdj3bFOz06bD3ZYsgzAU/Oq29oOm20neiLN/BXTdbdU0V5NZDp8KZZ0dS5+ttp7 6ORuE8N4fKC97GGom90hBE9Kx88crEh0LNAkc3m70gFhJgg7CIEQCGcQYM52/und C5QAHPgKwyo+gpcTko78rCBh54oWUJ5OPC0nhS+yw7UOx8IZwP5YAWWStYfJi3UX LGDj4YFT14nyivVriTVPJf4qM9ZWljTaBQtcmb6s6In3L/E6p/P5PuLS+rLMaYN2 Pzeqiz/Vw9yQSyAv4WvZgvfk4lKqaNJMup+ZA7HyfTuvrxqg+xNTwQ== =iCn4 -----END PGP SIGNATURE----- From John at Mozilla-Enigmail.org Fri Jun 20 10:49:37 2008 From: John at Mozilla-Enigmail.org (John Clizbe) Date: Fri, 20 Jun 2008 12:49:37 -0500 Subject: [Enigmail] hello In-Reply-To: <485BD668.1050409@umontana.edu> References: <485BD668.1050409@umontana.edu> Message-ID: <485BEDB1.3030302@Mozilla-Enigmail.org> Niels Maumenee wrote: > I heard an article on NPR yesterday about email encryption, so I am > giving it a try. Niels, Looks good. Signature verified fine. You may wish to subscribe to the mailing list to avoid the delay of having one of the moderators approve each post. The link to the mailing list, https://www.mozdev.org/mailman/listinfo/enigmail , is also at the bottom of each list message. Ask away if anything is unclear. BTW, which NPR program? -- John P. Clizbe Inet: John (a) Mozilla-Enigmail.org You can't spell fiasco without SCO. PGP/GPG KeyID: 0x608D2A10/0x18BB373A "what's the key to success?" / "two words: good decisions." "what's the key to good decisions?" / "one word: experience." "how do i get experience?" / "two words: bad decisions." "Just how do the residents of Haiku, Hawai'i hold conversations?" -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 677 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080620/e8a0c081/attachment.bin From cantanova at gmail.com Fri Jun 20 14:37:44 2008 From: cantanova at gmail.com (Henry Garcia) Date: Fri, 20 Jun 2008 17:37:44 -0400 Subject: [Enigmail] hello In-Reply-To: References: <485BD668.1050409@umontana.edu> Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 John Clizbe wrote: > Niels Maumenee wrote: >> I heard an article on NPR yesterday about email encryption, so I am >> giving it a try. > Niels, > > Looks good. Signature verified fine. > > You may wish to subscribe to the mailing list to avoid the delay of having one > of the moderators approve each post. The link to the mailing list, > https://www.mozdev.org/mailman/listinfo/enigmail , is also at the bottom of each > list message. > > Ask away if anything is unclear. > > BTW, which NPR program? > He's probably referring to this one: http://www.npr.org/templates/story/story.php?storyId=91666556 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) iEYEARECAAYFAkhcIycACgkQbLBBN5rwSlVB5QCgjFfzoe05umLgTUyXTycCCdFF hXEAn1p9aFgHc8qofUQjZZzXpMK62Lzx =fLtF -----END PGP SIGNATURE----- From m.fluch at soton.ac.uk Fri Jun 20 14:59:57 2008 From: m.fluch at soton.ac.uk (Martin Fluch) Date: Fri, 20 Jun 2008 22:59:57 +0100 Subject: [Enigmail] Problems with decrypting PGP/MIME messages Message-ID: <485C285D.9030605@soton.ac.uk> Hi! I'm using the most current Thunderbird (2.0.0.14) and the most current EnigMail (0.95.6), on two different systems, Ubuntu 8.04 and Mac OS X 10.5.3. In both cases I have the same problem: I cannot decrypt PGP/MIME messages. The fun part is, that a while ago I still could, but now I have problems with messages which I know I had once read, but cannot read them anymore. EnigMail/Thunderbid just don't recognice them anymore as as encrypted messages and just display an empty message together with two attachments: "PGP/MIME version identification" and "encrypted.asc". I first encountered it with some messages send by a friend of mine. And then I tested it with myself as follows: Sending a message to myself I without using the PGP/MIME option I can decrytp without any problems. But sending a message to myself with PGP/MIME .. I get the above behaviour. On both machines. Is this problem known? Any sollution except not using PGP/MIME? Thanks in advance, - Martin From jmoore3rd at bellsouth.net Fri Jun 20 16:30:19 2008 From: jmoore3rd at bellsouth.net (John W. Moore III) Date: Fri, 20 Jun 2008 19:30:19 -0400 Subject: [Enigmail] Problems with decrypting PGP/MIME messages In-Reply-To: <485C285D.9030605@soton.ac.uk> References: <485C285D.9030605@soton.ac.uk> Message-ID: <485C3D8B.3060809@bellsouth.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Martin Fluch wrote: > Any sollution except not using PGP/MIME? Have You tried installing the Enigmail Nightly Build from: http://enigmail.mozdev.org/download/nightly.php You can install this directly over Your existing Enigmail Extension install. JOHN ;) Timestamp: Friday 20 Jun 2008, 19:30 --400 (Eastern Daylight Time) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.5.0-svn4754: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIXD2KAAoJEBCGy9eAtCsPtTIH/2FpklgUfBEJ0xHKT+rAO962 Ur+lNy5G3hBiqottTffhyq0BdURNILXCgaIq8KtiGDDBapY1ztLg02RV1gs+MRwu 8JUfqhMdehvHCxB5q1WYmtRAlyKQOi5A03yFoJWSRcF9lkO5DtBdh+NuFLqOhflY msKupYCs2Wu769NdKOs4S4PxVrbURZLJ8YKofv9LVE+wRNM1AUqM7tz3plcDuWVb 8YGAiOj5sgFKV2tjiz71y/IJBIRI7Fe7sX0XkE0abDgwrEBn9ontK5Byk7BSk9Tw rWeCbU1x1A1+kefgkH7yON0Lq33I2zozG7HX8YGsqFgPvwThM+hMRCu9AklBbqA= =QKhC -----END PGP SIGNATURE----- From m.fluch at soton.ac.uk Fri Jun 20 16:40:01 2008 From: m.fluch at soton.ac.uk (Martin Fluch) Date: Sat, 21 Jun 2008 00:40:01 +0100 Subject: [Enigmail] Problems with decrypting PGP/MIME messages In-Reply-To: <485C3D8B.3060809@bellsouth.net> References: <485C285D.9030605@soton.ac.uk> <485C3D8B.3060809@bellsouth.net> Message-ID: <485C3FD1.5090704@soton.ac.uk> The problem remains (have only tested it on the Ubuntu machine).... :-( I am really surprised by this problem because I did not do anything fancy to Thunderbird, its settings or the system installation... - Martin John W. Moore III wrote: > Martin Fluch wrote: > >> Any sollution except not using PGP/MIME? > > Have You tried installing the Enigmail Nightly Build from: > > http://enigmail.mozdev.org/download/nightly.php > > You can install this directly over Your existing Enigmail Extension > install. > > JOHN ;) > Timestamp: Friday 20 Jun 2008, 19:30 --400 (Eastern Daylight Time) _______________________________________________ Enigmail mailing list Enigmail at mozdev.org https://www.mozdev.org/mailman/listinfo/enigmail From jmoore3rd at bellsouth.net Fri Jun 20 16:47:03 2008 From: jmoore3rd at bellsouth.net (John W. Moore III) Date: Fri, 20 Jun 2008 19:47:03 -0400 Subject: [Enigmail] Problems with decrypting PGP/MIME messages In-Reply-To: <485C3FD1.5090704@soton.ac.uk> References: <485C285D.9030605@soton.ac.uk> <485C3D8B.3060809@bellsouth.net> <485C3FD1.5090704@soton.ac.uk> Message-ID: <485C4177.7050009@bellsouth.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Martin Fluch wrote: > The problem remains (have only tested it on the Ubuntu machine).... :-( > > I am really surprised by this problem because I did not do anything > fancy to Thunderbird, its settings or the system installation... Oh, Right, You're using Ubuntu. Did You just Upgrade Ubuntu to 8.04? [Hardy Heron] JOHN ;) Timestamp: Friday 20 Jun 2008, 19:46 --400 (Eastern Daylight Time) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.5.0-svn4754: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIXEF1AAoJEBCGy9eAtCsPsG8H/2sHwBkikhBwOfb8Vml68v8K trc1m8ZbvElCYurbhld8XAL9mINyKgkcKZQFlULUIMn91wL6Arl3IjJwYfiBD3WS GMTYRN0BKospfJXF4N73avfNzGiVI19BSfNDZmh0GMG+zzCnU/7Dk8V7XJ6T42Ny ePo41g3EWYsbwyYxhkU+gkZZcLdxXrXJNSQOwY8aSTU7zGq09dac9mJ4u+RlhKeu 4HAHwGPCf2DH+zBWlZSCdzC1iLskz+31K+rXzJYdmU3TGmcwqfdcTAt2x3nTnZ71 3zlSo2PUje90jdenpI21lX/VE1byiMS1475KluIzjDhOy86oP8ruagifXcsJK5c= =fSHQ -----END PGP SIGNATURE----- From m.fluch at soton.ac.uk Fri Jun 20 16:50:01 2008 From: m.fluch at soton.ac.uk (Martin Fluch) Date: Sat, 21 Jun 2008 00:50:01 +0100 Subject: [Enigmail] Problems with decrypting PGP/MIME messages In-Reply-To: <485C4177.7050009@bellsouth.net> References: <485C285D.9030605@soton.ac.uk> <485C3D8B.3060809@bellsouth.net> <485C3FD1.5090704@soton.ac.uk> <485C4177.7050009@bellsouth.net> Message-ID: <485C4229.8070905@soton.ac.uk> No, I did a fresh install of this system. From the offcial release (not a release candidate). - Martin John W. Moore III wrote: > Martin Fluch wrote: >> The problem remains (have only tested it on the Ubuntu machine).... :-( > >> I am really surprised by this problem because I did not do anything >> fancy to Thunderbird, its settings or the system installation... > > Oh, Right, You're using Ubuntu. Did You just Upgrade Ubuntu to 8.04? > [Hardy Heron] > > JOHN ;) > Timestamp: Friday 20 Jun 2008, 19:46 --400 (Eastern Daylight Time) _______________________________________________ Enigmail mailing list Enigmail at mozdev.org https://www.mozdev.org/mailman/listinfo/enigmail From olav at mozilla-enigmail.org Fri Jun 20 22:46:14 2008 From: olav at mozilla-enigmail.org (Olav Seyfarth) Date: Sat, 21 Jun 2008 07:46:14 +0200 Subject: [Enigmail] Problems with decrypting PGP/MIME messages In-Reply-To: <485C4229.8070905@soton.ac.uk> References: <485C285D.9030605@soton.ac.uk> <485C3D8B.3060809@bellsouth.net> <485C3FD1.5090704@soton.ac.uk> <485C4177.7050009@bellsouth.net> <485C4229.8070905@soton.ac.uk> Message-ID: <485C95A6.3060208@mozilla-enigmail.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Hi Martin, while this may not be a solution but only to narrow down possible causes, may I advise you to try with a fresh profile? Olav -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Diese ist eine Digitale Signatur nach OpenPGP-Standard Comment: Weitere Informationen: http://privat.seyfarth.de/olav/schluessel.html iEYEAREIAAYFAkhclaYACgkQL/NBt8fdKe2a4QCfe5W/eh+ah7RfO1vskDam4DNK VUEAniTRaA9a9ZgSO1cIJCVq7E3xc47S =+5Of -----END PGP SIGNATURE----- From post at lespocky.de Fri Jun 20 22:55:46 2008 From: post at lespocky.de (Alexander Dahl) Date: Sat, 21 Jun 2008 07:55:46 +0200 Subject: [Enigmail] Problems with decrypting PGP/MIME messages In-Reply-To: <485C4229.8070905@soton.ac.uk> References: <485C285D.9030605@soton.ac.uk> <485C3D8B.3060809@bellsouth.net> <485C3FD1.5090704@soton.ac.uk> <485C4177.7050009@bellsouth.net> <485C4229.8070905@soton.ac.uk> Message-ID: <0ML29c-1K9w4r0125-0004yc@mrelayeu.kundenserver.de> > No, I did a fresh install of this system. From the offcial release (not > a release candidate). I suppose you imported your previously saved secret key? Greets Alex -- ***** http://www.lespocky.de ******************************************* Those who would give up essential Liberty, to purchase a little temporary Safety, deserve neither Liberty nor Safety. (Benjamin Franklin) -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 258 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080621/6ecd506f/attachment.bin From m.fluch at soton.ac.uk Sat Jun 21 02:28:19 2008 From: m.fluch at soton.ac.uk (Martin Fluch) Date: Sat, 21 Jun 2008 10:28:19 +0100 Subject: [Enigmail] Problems with decrypting PGP/MIME messages In-Reply-To: <485C95A6.3060208@mozilla-enigmail.org> References: <485C285D.9030605@soton.ac.uk> <485C3D8B.3060809@bellsouth.net> <485C3FD1.5090704@soton.ac.uk> <485C4177.7050009@bellsouth.net> <485C4229.8070905@soton.ac.uk> <485C95A6.3060208@mozilla-enigmail.org> Message-ID: <485CC9B3.5060704@soton.ac.uk> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi! I just tried it, complete fresh user on my Linux box, with freshly generated private key. And the problem remained. But I think I managed to track down the source of the problem, and it seems to be a Microsoft Exchange 2007 server (I am not completely surprised here...). When I send a PGP/MIME message and store a copy of it on my local folder, I can decrypt it fine (see the attachment test_message_orig.asc, which is the original message source). If I copy it to the Exchange server of my university (which I access via IMAP), the message gets changed on the server (see the attachment test_message_altered.asc). Suddenly the whole message consists of two attachments and otherwise changed. I tried a none-Exchange server (imap.gmail.com), and the message does not get changed (except a few headers in the beginning of the message got deleted). Do I interprete this right when I say it seems to be a problem of the Exchange server? Is such a problem known in general? Is it a missconfiguration of the Exchange server or a non-alterable problem on the site of the Exchange server? Thanks for the help so far, - - Martin :) Olav Seyfarth wrote: > Hi Martin, > > while this may not be a solution but only to narrow down possible causes, > may I advise you to try with a fresh profile? > > Olav -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iD8DBQFIXMmzeYN9CDg6e2IRAn1PAJ9d/9z03IHfB3LCTQa36zR0snTKZACfWNUR D9F2xJwxo7+vzyFmpmroaW4= =42Pe -----END PGP SIGNATURE----- -------------- next part -------------- An embedded and charset-unspecified text was scrubbed... Name: test_message_orig.asc Url: http://www.mozdev.org/pipermail/enigmail/attachments/20080621/ec5c3c66/attachment.ksh -------------- next part -------------- An embedded and charset-unspecified text was scrubbed... Name: test_message_altered.asc Url: http://www.mozdev.org/pipermail/enigmail/attachments/20080621/ec5c3c66/attachment-0001.ksh From m.fluch at soton.ac.uk Sat Jun 21 02:34:25 2008 From: m.fluch at soton.ac.uk (Martin Fluch) Date: Sat, 21 Jun 2008 10:34:25 +0100 Subject: [Enigmail] Problems with decrypting PGP/MIME messages In-Reply-To: <485CC9B3.5060704@soton.ac.uk> References: <485C285D.9030605@soton.ac.uk> <485C3D8B.3060809@bellsouth.net> <485C3FD1.5090704@soton.ac.uk> <485C4177.7050009@bellsouth.net> <485C4229.8070905@soton.ac.uk> <485C95A6.3060208@mozilla-enigmail.org> <485CC9B3.5060704@soton.ac.uk> Message-ID: <485CCB21.2050001@soton.ac.uk> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I just found the relevant thread on the EnigMail forum: http://mozilla-enigmail.org/forum/viewtopic.php?f=4&t=425 Seems to be an open problem still :-( Thanks anyways... - - Martin Martin Fluch wrote: > Do I interprete this right when I say it seems to be a problem of the > Exchange server? Is such a problem known in general? Is it a > missconfiguration of the Exchange server or a non-alterable problem on > the site of the Exchange server? -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iD8DBQFIXMsheYN9CDg6e2IRAoa0AKCi6vMHkIUrsEAuSlbHaWnfwLRXZQCfWmPC qmxvIsXxDIWp4OBJBWXclTs= =15RW -----END PGP SIGNATURE----- From mlisten at hammernoch.net Sat Jun 21 03:04:31 2008 From: mlisten at hammernoch.net (=?ISO-8859-1?Q?Ludwig_H=FCgelsch=E4fer?=) Date: Sat, 21 Jun 2008 12:04:31 +0200 Subject: [Enigmail] Problems with decrypting PGP/MIME messages In-Reply-To: <485CCB21.2050001@soton.ac.uk> References: <485C285D.9030605@soton.ac.uk> <485C3D8B.3060809@bellsouth.net> <485C3FD1.5090704@soton.ac.uk> <485C4177.7050009@bellsouth.net> <485C4229.8070905@soton.ac.uk> <485C95A6.3060208@mozilla-enigmail.org> <485CC9B3.5060704@soton.ac.uk> <485CCB21.2050001@soton.ac.uk> Message-ID: <485CD22F.6090507@hammernoch.net> Martin Fluch wrote on 21.06.2008 11:34 Uhr: > > I just found the relevant thread on the EnigMail forum: > > http://mozilla-enigmail.org/forum/viewtopic.php?f=4&t=425 > > Seems to be an open problem still :-( First thought: what should enigmail do about if the server messes with the message body wrapping the PGP/MIME content into other attachements? You should ask your server's administrator whether the update has been done recently and if it correlates to the beginning of your troubles. You should also say that this makes a lot of difficulties for you as a user. You're probably not the only one. Maybe you should also file a bug at Microsoft. Do you have a message filtering rule that downloads that message to your local folders? If not, try to set one and try decrypting the message locally. If all doesn't help, you and your contacts are forced to omit PGP/MIME and stick to inline encrypted messages. Greetings Ludwig -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 542 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080621/845c593a/attachment-0001.bin From m.fluch at soton.ac.uk Sat Jun 21 03:32:34 2008 From: m.fluch at soton.ac.uk (Martin Fluch) Date: Sat, 21 Jun 2008 11:32:34 +0100 Subject: [Enigmail] Problems with decrypting PGP/MIME messages In-Reply-To: <485CD22F.6090507@hammernoch.net> References: <485C285D.9030605@soton.ac.uk> <485C3D8B.3060809@bellsouth.net> <485C3FD1.5090704@soton.ac.uk> <485C4177.7050009@bellsouth.net> <485C4229.8070905@soton.ac.uk> <485C95A6.3060208@mozilla-enigmail.org> <485CC9B3.5060704@soton.ac.uk> <485CCB21.2050001@soton.ac.uk> <485CD22F.6090507@hammernoch.net> Message-ID: <485CD8C2.3040001@soton.ac.uk> Hi! Ludwig H?gelsch?fer wrote: > First thought: what should enigmail do about if the server messes with > the message body wrapping the PGP/MIME content into other attachements? I totaly agree here. The mess is created by the Microsoft Exchange Server 2007. Apparently this server converts every message it gets its hand on to its internal MAPI format (bugger, I just lost the reference to it). > You should ask your server's administrator whether the update has been > done recently and if it correlates to the beginning of your troubles. Just did it. > Do you have a message filtering rule that downloads that message to your > local folders? If not, try to set one and try decrypting the message > locally. Saving the attachments localy on the hard drive makes it possible to decrypt it manualy. But then again this makes the whole process cumbersome. :-/ > If all doesn't help, you and your contacts are forced to omit PGP/MIME > and stick to inline encrypted messages. This is probably one of two sensible solutions. The other is to look for an other e-mail service which provide a IMAP server which does not crible the PGP/MIME messages. Thanks for the suggestions, - Martin PS: Why am I not surprised that it happens with an M$ product again that things get cribled?? From jasonbartel at deepwaterstudios.com Sat Jun 21 11:44:02 2008 From: jasonbartel at deepwaterstudios.com (Jason Bartel) Date: Sat, 21 Jun 2008 13:44:02 -0500 Subject: [Enigmail] A noob test of Enigmail. Can you hear me now? Message-ID: <485D4BF2.4090906@deepwaterstudios.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I'm hollerin' into the void of the interwebs ;) hoping to verify my brand spanking new encryption technology. Anybody there? -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkhdS/IACgkQ7+PH16VIugy6wwCgvuxiFehKqUntqmPhFIbUGgzS jgAAnAynYTZcbgAHcCz/y+IrhjaBPIRQ =OupX -----END PGP SIGNATURE----- From jmoore3rd at bellsouth.net Sat Jun 21 11:54:33 2008 From: jmoore3rd at bellsouth.net (John W. Moore III) Date: Sat, 21 Jun 2008 14:54:33 -0400 Subject: [Enigmail] A noob test of Enigmail. Can you hear me now? In-Reply-To: <485D4BF2.4090906@deepwaterstudios.com> References: <485D4BF2.4090906@deepwaterstudios.com> Message-ID: <485D4E69.6070606@bellsouth.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Jason Bartel wrote: > I'm hollerin' into the void of the interwebs ;) hoping to verify my > brand spanking new encryption technology. Anybody there? There's _always_ Somebody here! :-D UNTRUSTED Good signature from Jason Bartel (Who was right? And when?) Key ID: 0xA548BA0C / Signed on: 6/21/2008 2:44 PM Key fingerprint: 8FD2 A260 82A1 65D6 82A9 A018 EFE3 C7D7 A548 BA0C JOHN ;) Timestamp: Saturday 21 Jun 2008, 14:53 --400 (Eastern Daylight Time) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.5.0-svn4754: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIXU5mAAoJEBCGy9eAtCsP7lkH/0PK4Xz122fCad6Nlq81BGhO i88ymuiZNnFALvuvvpKby80mc+u4fGkIEh4CB1xa0DDA+v1tABSxGDX3NfAhrHnE 9Dkw4/FPB4l/T/v/eL+1xAKv6pDBBqeKtAhKh4b8QeT+UY2kiHnEunBdZANAnjGO R15H8EBlLLBhLWF6D4deWpGvB2cw7RT1Dwa7F8GpMtJbQvWzvQ4D8iZQzjXNpdlE LuzrfF9XWtq5NO+2jg2462niPk21iZHKEK9X5dwZG5ZSw2b5vtCzO2sWSSfy8t22 ttS80dOWdxV5Fn0FOOSk4mjwW2boZLYCumbWWHrD+/YqfIPPWdQnBBOVkUlalTI= =JCrx -----END PGP SIGNATURE----- From alaric at metrocast.net Sat Jun 21 11:55:05 2008 From: alaric at metrocast.net (Phil Stracchino) Date: Sat, 21 Jun 2008 14:55:05 -0400 Subject: [Enigmail] A noob test of Enigmail. Can you hear me now? In-Reply-To: <485D4BF2.4090906@deepwaterstudios.com> References: <485D4BF2.4090906@deepwaterstudios.com> Message-ID: <485D4E89.6080100@metrocast.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Jason Bartel wrote: > I'm hollerin' into the void of the interwebs ;) hoping to verify my > brand spanking new encryption technology. Anybody there? OpenPGP Security Info UNTRUSTED Good signature from Jason Bartel (Who was right? And when?) Looks to be working fine so far. :) Feel free to send me an encrypted test off-list. - -- Phil Stracchino, CDK#2 DoD#299792458 ICBM: 43.5607, -71.355 alaric at caerllewys.net alaric at metrocast.net phil at co.ordinate.org Renaissance Man, Unix ronin, Perl hacker, Free Stater It's not the years, it's the mileage. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEAREIAAYFAkhdTokACgkQ0DfOju+hMkntuwCgi9dswQQsxg1+DWAbrt6NZ+fg h5AAnRajcjwEq6MrM2BPJgkyk6iee2bf =AHUw -----END PGP SIGNATURE----- From stephen at inbuildingprojects.com Sat Jun 21 19:58:48 2008 From: stephen at inbuildingprojects.com (Stephen@In Building Projects) Date: Sun, 22 Jun 2008 10:58:48 +0800 Subject: [Enigmail] new user Message-ID: <485DBFE8.6020505@inbuildingprojects.com> An HTML attachment was scrubbed... URL: http://www.mozdev.org/pipermail/enigmail/attachments/20080622/a1c241d3/attachment.html From olav at mozilla-enigmail.org Sun Jun 22 03:26:17 2008 From: olav at mozilla-enigmail.org (Olav Seyfarth) Date: Sun, 22 Jun 2008 12:26:17 +0200 Subject: [Enigmail] new user In-Reply-To: <485DBFE8.6020505@inbuildingprojects.com> References: <485DBFE8.6020505@inbuildingprojects.com> Message-ID: <485E28C9.9090402@mozilla-enigmail.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Hi Stephen, > try to use pgp enigmail. > UNTRUSTED Good signature from Stephen at In Building Projects looks fine, you may test encryption sending a message to me OFF LIST. Olav -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Diese ist eine Digitale Signatur nach OpenPGP-Standard Comment: Weitere Informationen: http://privat.seyfarth.de/olav/schluessel.html iEYEAREIAAYFAkheKMgACgkQL/NBt8fdKe1XRACffM9NzooklwmgV68BR+Z994tZ tzUAnRj8uZpcIYym9a0EsQDYQG8GyxFA =ynfi -----END PGP SIGNATURE----- From bjtasker at btasker.me.uk Sun Jun 22 03:32:07 2008 From: bjtasker at btasker.me.uk (Bernard Tasker) Date: Sun, 22 Jun 2008 11:32:07 +0100 Subject: [Enigmail] new user In-Reply-To: <485DBFE8.6020505@inbuildingprojects.com> References: <485DBFE8.6020505@inbuildingprojects.com> Message-ID: <485E2A27.20406@btasker.me.uk> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Signature OK here; thus: OpenPGP Security Info UNTRUSTED Good signature from Stephen at In Building Projects Key ID: 0x08187919 / Signed on: 22/06/2008 03:58 Key fingerprint: 28B7 FEEF 51AD 9BFA 9E17 4502 1878 E90C 0818 7919 - ------------------------------------------------------- Bernard OpenPGP public key 0x7E4FCF7 available on keyservers e.g.: http://wwwkeys.nl.pgp.net Text block at http://tinyurl.com/yp3gsu - ------------------------------------------------------- Stephen at In Building Projects wrote: > hi i am new. > > try to use pgp enigmail. > > hello world god bless you. > > ss - ------------------------------------------------------------------------ _______________________________________________ Enigmail mailing list Enigmail at mozdev.org https://www.mozdev.org/mailman/listinfo/enigmail -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkheKiYACgkQqPQ3uX5O/PddMQCeOGcCbqrN74+xNNNYjgF5OA/a ni0AnRhKlRhwVZMi7lmJHVUpYTV2rzbZ =gRBe -----END PGP SIGNATURE----- From mlisten at hammernoch.net Sun Jun 22 04:19:02 2008 From: mlisten at hammernoch.net (=?UTF-8?B?THVkd2lnIEjDvGdlbHNjaMOkZmVy?=) Date: Sun, 22 Jun 2008 13:19:02 +0200 Subject: [Enigmail] new user In-Reply-To: <485DBFE8.6020505@inbuildingprojects.com> References: <485DBFE8.6020505@inbuildingprojects.com> Message-ID: <485E3526.9080305@hammernoch.net> Hi, Stephen at In Building Projects wrote on 22.06.2008 4:58 Uhr: > hi i am new. > > try to use pgp enigmail. Your setup seems to work: UNTRUSTED Good signature from Stephen at In Building Projects Key ID: 0x08187919 / Signed on: 22.06.2008 4:58 Uhr Key fingerprint: 28B7 FEEF 51AD 9BFA 9E17 4502 1878 E90C 0818 7919 Welcome to the community! Don't hesitate to ask if there's anything unclear. You might want to subscribe to the mailinglist you have written to at https://www.mozdev.org/mailman/listinfo/enigmail so that your questions don't need to pass moderation and you can directly receive the answers. Greetings Ludwig -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 542 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080622/806557c3/attachment.bin From alaric at metrocast.net Sun Jun 22 09:06:01 2008 From: alaric at metrocast.net (Phil Stracchino) Date: Sun, 22 Jun 2008 12:06:01 -0400 Subject: [Enigmail] new user In-Reply-To: <485DBFE8.6020505@inbuildingprojects.com> References: <485DBFE8.6020505@inbuildingprojects.com> Message-ID: <485E7869.7020902@metrocast.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Stephen at In Building Projects wrote: > hi i am new. > > try to use pgp enigmail. > > hello world god bless you. > > ss As reported by others, your signature is working. However, you appear to be sending HTML mail, and your signature verifies only when I strip the HTML and view your message as plain text. You may want to make sure that you send all encrypted/signed mail as plain text in future, as HTML and encryption do not really get along well together. - -- Phil Stracchino, CDK#2 DoD#299792458 ICBM: 43.5607, -71.355 alaric at caerllewys.net alaric at metrocast.net phil at co.ordinate.org Renaissance Man, Unix ronin, Perl hacker, Free Stater It's not the years, it's the mileage. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEAREIAAYFAkheeGgACgkQ0DfOju+hMknNEwCfRM8rARec1wmhPLpdioshi9gh yawAoL56xeOI1ajhiZRAqQoEgE4M7Fby =ZXPF -----END PGP SIGNATURE----- From faramir.cl at gmail.com Sun Jun 22 16:13:30 2008 From: faramir.cl at gmail.com (Faramir) Date: Sun, 22 Jun 2008 19:13:30 -0400 Subject: [Enigmail] new user In-Reply-To: <485E7869.7020902@metrocast.net> References: <485DBFE8.6020505@inbuildingprojects.com> <485E7869.7020902@metrocast.net> Message-ID: <485EDC9A.8060705@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Phil Stracchino escribi?: > Stephen at In Building Projects wrote: >> hi i am new. > >> try to use pgp enigmail. > >> hello world god bless you. > >> ss > > > As reported by others, your signature is working. However, you appear > to be sending HTML mail, and your signature verifies only when I strip > the HTML and view your message as plain text. You may want to make sure > that you send all encrypted/signed mail as plain text in future, as HTML > and encryption do not really get along well together. How can I strip the HTML? I couldn't get a "valid signature" from Stephen's message, and since a lot of people could do it, there is something in my config that can be improved, I think... Regards -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEcBAEBAgAGBQJIXtyaAAoJEMV4f6PvczxA0hoIAJH62hTvnzw+nlYHlMMsWdAb rzgmKmZysCzvSssdDUPTX10Q5O2u8WYEBRPflXFf4FqtyisZMmTaldgqAPWYgF3s J38cnx8ajV6AFdYcC7058+vAvm0RY5o4GFfp1J1gaoJi2S5Q4J2tG4yYlM908G9h vU8ABA1vM0vNvD8VZAO1nl2MUC2uZITmlZjz0NDWRQKH5r0X2eCDneyOi+ArvfF+ Abtiagr44jPVxQXJDNp5JCO28oeMIFVpkso74wVesAGGyscNLY3Jacs2yj2TOFP6 Xj5U0wUTG8Qf2VcNeuN6TmClzaIGe2CkM2MXPrywp8QgXiI1JF2hYaEXilAl05A= =qOJ2 -----END PGP SIGNATURE----- From jmoore3rd at bellsouth.net Sun Jun 22 16:18:38 2008 From: jmoore3rd at bellsouth.net (John W. Moore III) Date: Sun, 22 Jun 2008 19:18:38 -0400 Subject: [Enigmail] new user In-Reply-To: <485EDC9A.8060705@gmail.com> References: <485DBFE8.6020505@inbuildingprojects.com> <485E7869.7020902@metrocast.net> <485EDC9A.8060705@gmail.com> Message-ID: <485EDDCE.3080902@bellsouth.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Faramir wrote: > How can I strip the HTML? I couldn't get a "valid signature" from > Stephen's message, and since a lot of people could do it, there is > something in my config that can be improved, I think... - From the Open Message toolbar: View > Message Body as > Plaintext. That'll strip out _all_ HTML coding within the Message. JOHN ;) Timestamp: Sunday 22 Jun 2008, 19:18 --400 (Eastern Daylight Time) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.5.0-svn4754: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIXt3MAAoJEBCGy9eAtCsPzG8H/AguIkzLNGJ9Fh652u90rsw7 b0mtqINk+3z9lhn7pmggiOOdDUBfZJSATw2nb0wOo6TXTsktoM7UK5UfziPeYnTs iFzE88O20Z74d0LpreHFr5qL9o5O7HvzMASlCAv8diiYU7/6ZLFjNzTldeNSurIO PXc8mZUuw9mykfhQZppuuZXsyydgQTH2GPN5dJZwlpfINEzmEefk2IiydJrFdnbo Ufmz/DhJh1qreRrocpFh7F1KNF8bmVAOpvtgZIY1lgv4jRJCAWzJNXLhMKswfQbT gINHr4spbPWOxeUC/dmEPyuEdgQRPdwHCQ5xs5GoM7ieAWHeVCAMmXkXUibipcc= =V+md -----END PGP SIGNATURE----- From faramir.cl at gmail.com Sun Jun 22 16:36:31 2008 From: faramir.cl at gmail.com (Faramir) Date: Sun, 22 Jun 2008 19:36:31 -0400 Subject: [Enigmail] new user In-Reply-To: <485EDDCE.3080902@bellsouth.net> References: <485DBFE8.6020505@inbuildingprojects.com> <485E7869.7020902@metrocast.net> <485EDC9A.8060705@gmail.com> <485EDDCE.3080902@bellsouth.net> Message-ID: <485EE1FF.1070905@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 John W. Moore III escribi?: > Faramir wrote: > >> How can I strip the HTML? I couldn't get a "valid signature" from >> Stephen's message, and since a lot of people could do it, there is >> something in my config that can be improved, I think... > > From the Open Message toolbar: > > View > Message Body as > Plaintext. > > That'll strip out _all_ HTML coding within the Message. Thanks, it did the trick ;) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEcBAEBAgAGBQJIXuH/AAoJEMV4f6PvczxA7JQIAJQi8eOLeWFXm6Gaa8pEfmQs 5eAs6BCG55IqKnnGkA2YKa/wHyXWb0ivXke1zcwKrtHryZrUFpl2Wme9CHs4KOU6 zwXNd5f37hpaQE47++92Q4/IFCAzMufW3tebsAerPWN9NVbBhk+Cia2i/zfeFzTq 2voh1d666OxigClI+ziafSm0tvSLz2h1HykoDjptWIA+4R7ioRYajqBDM5vODPJI 2NPpUeFYNj/pm8ehJ8Ku1uBLuMQWcQmsMCXaFfgsb/p5VsbQtnx9bx/ecSvbz2B6 mM4BvegF493vUQk36UNnlCL8Ng1tiPuEH0aUhJJIr2xZAy5VEITqqMPjzCCvVfg= =93VX -----END PGP SIGNATURE----- From shavital at mac.com Mon Jun 23 03:09:38 2008 From: shavital at mac.com (Charly Avital) Date: Mon, 23 Jun 2008 06:09:38 -0400 Subject: [Enigmail] Setting which Hash Algorithm Message-ID: <485F7662.6060100@mac.com> Hi, In prefs.js, it is possible to edit the line: 'user_pref("extensions.enigmail.mimeHashAlgorithm",[digit]);' What is the result of changing the digit (0, 1, 2, 3)? I would like Enigmail to use the digest-algo [value] I set in gpg.conf. I have now digit 3, and it *seems* (I stress *seems*) that Enigmail is using, by default, SHA256, in spite of the fact that I have set in gpg.conf digest-algo SHA1. For test purposes, I'd like to be able to force Enigmail to use SHA1, because SHA256 is not accepted when I use an OpenPGP card (SMC 331 USB card reader), e.g. when signing an e-mail. I have read a post by John W. Moore III, indicating that setting that digit to 0 (zero) will make Enigmail honor gpg.conf settings. In a different MUA+plugin configuration, Apple's Mail+GPGMail.bundle d53 works correctly. When asking to sign a message, the pinentry-mac that is invoked requests the PIN (not the passphrase). Thanks in advance, Charly From rjh at sixdemonbag.org Mon Jun 23 09:52:25 2008 From: rjh at sixdemonbag.org (Robert J. Hansen) Date: Mon, 23 Jun 2008 11:52:25 -0500 Subject: [Enigmail] Setting which Hash Algorithm In-Reply-To: <485F7662.6060100@mac.com> References: <485F7662.6060100@mac.com> Message-ID: <485FD4C9.7080509@sixdemonbag.org> Charly Avital wrote: > I would like Enigmail to use the digest-algo [value] I set in > gpg.conf. Enigmail has no influence over your cipher and algorithm settings. We use what you've told GnuPG to use. The only exception to this is .mimeHashAlgorithm, which is only used for PGP/MIME messages. Most of the time when people want SHA-1 but are getting SHA-256, it's the result of a DSA2 signing key which requires more than a 160-bit hash algorithm for signing. From shavital at mac.com Mon Jun 23 10:23:57 2008 From: shavital at mac.com (Charly Avital) Date: Mon, 23 Jun 2008 13:23:57 -0400 Subject: [Enigmail] Setting which Hash Algorithm In-Reply-To: <485FD4C9.7080509@sixdemonbag.org> References: <485F7662.6060100@mac.com> <485FD4C9.7080509@sixdemonbag.org> Message-ID: <485FDC2D.403@mac.com> Robert J. Hansen wrote the following on 6/23/08 12:52 PM: > Charly Avital wrote: >> I would like Enigmail to use the digest-algo [value] I set in >> gpg.conf. > > Enigmail has no influence over your cipher and algorithm settings. We > use what you've told GnuPG to use. I must have misunderstood a previous statement: 'Enigmail knows *nothing* of the options in gpg.conf.' > The only exception to this is > .mimeHashAlgorithm, which is only used for PGP/MIME messages. > Most of the time when people want SHA-1 but are getting SHA-256, it's > the result of a DSA2 signing key which requires more than a 160-bit hash > algorithm for signing. > The key that I had set in TB+EM Accounts Settings/OpenPGP Security, and that I was trying to use is a 1024 bits RSA key: $ gpg --edit-key 94FD1621 gpg (GnuPG) 1.4.9; Copyright (C) 2008 Free Software Foundation, Inc. This is free software: you are free to change and redistribute it. There is NO WARRANTY, to the extent permitted by law. Secret key is available. pub 1024R/94FD1621 created: 2006-11-25 expires: 2010-06-22 usage: SC trust: ultimate validity: ultimate sub 1024R/142CF1A3 created: 2006-11-25 expires: 2010-06-22 usage: E [ultimate] (1). Charly Avital (Test2) That key is correctly selected and used with the OpenPGP card, when I use Apple's Mail+GPGMail.bundle. TB+EM does not, apparently. Thank you for your feedback. Charly Charly From rjh at sixdemonbag.org Mon Jun 23 10:40:24 2008 From: rjh at sixdemonbag.org (Robert J. Hansen) Date: Mon, 23 Jun 2008 12:40:24 -0500 Subject: [Enigmail] Setting which Hash Algorithm In-Reply-To: <485FDC2D.403@mac.com> References: <485F7662.6060100@mac.com> <485FD4C9.7080509@sixdemonbag.org> <485FDC2D.403@mac.com> Message-ID: <485FE008.7010004@sixdemonbag.org> Charly Avital wrote: > I must have misunderstood a previous statement: > 'Enigmail knows *nothing* of the options in gpg.conf.' No, you've understood it correctly. Enigmail doesn't know anything about your gpg.conf. Enigmail doesn't make any choices about hash algorithms. If something needs to be hashed, Enigmail gives it to GnuPG and says "here, hash this, you figure out what algorithms to use." If something needs to be signed, Enigmail gives it to GnuPG and says "here, sign this, here's the key ID to use, you figure out what algorithms to use." Etc., etc. Thus, by handing everything off to GnuPG and letting _it_ worry about things, both statements are true. It is both true that: * Enigmail does whatever GnuPG does * Enigmail knows nothing about your gpg.conf file From shavital at mac.com Mon Jun 23 11:04:35 2008 From: shavital at mac.com (Charly Avital) Date: Mon, 23 Jun 2008 14:04:35 -0400 Subject: [Enigmail] Setting which Hash Algorithm In-Reply-To: <485FE008.7010004@sixdemonbag.org> References: <485F7662.6060100@mac.com> <485FD4C9.7080509@sixdemonbag.org> <485FDC2D.403@mac.com> <485FE008.7010004@sixdemonbag.org> Message-ID: <485FE5B3.5010800@mac.com> Robert J. Hansen wrote the following on 6/23/08 1:40 PM: > Charly Avital wrote: >> I must have misunderstood a previous statement: >> 'Enigmail knows *nothing* of the options in gpg.conf.' > > No, you've understood it correctly. > > Enigmail doesn't know anything about your gpg.conf. Enigmail doesn't > make any choices about hash algorithms. If something needs to be > hashed, Enigmail gives it to GnuPG and says "here, hash this, you figure > out what algorithms to use." > > If something needs to be signed, Enigmail gives it to GnuPG and says > "here, sign this, here's the key ID to use, you figure out what > algorithms to use." > > Etc., etc. Thus, by handing everything off to GnuPG and letting _it_ > worry about things, both statements are true. It is both true that: > > * Enigmail does whatever GnuPG does > * Enigmail knows nothing about your gpg.conf file Problem solved. In prefs.js, I edited the line: user_pref("extensions.enigmail.mimeHashAlgorithm", 3); to read user_pref("extensions.enigmail.mimeHashAlgorithm", 0); (as indicated by "John W. Moore III" in a previous post to this list). Now Enigmail uses digest-algo SHA1 (as set in gpg.conf - before the above change, Enigmail used SHA256, no matter what). It does so in *in-line* signed messages, as I have tested. And when I choose the account where I have set the smart card key, pinentry-mac is invoked, asking to enter the PIN (not the passphrase itself) for that key. I have learned from W. Koch that 2K OpenPGP cards should be available this fall. Till then, I shall be using SHA256, after I reset the required parameters. Using the card was for learning purposes only. Thanks again for the feedback. Charly From John at Mozilla-Enigmail.org Mon Jun 23 18:39:45 2008 From: John at Mozilla-Enigmail.org (John Clizbe) Date: Mon, 23 Jun 2008 20:39:45 -0500 Subject: [Enigmail] Setting which Hash Algorithm In-Reply-To: <485FDC2D.403@mac.com> References: <485F7662.6060100@mac.com> <485FD4C9.7080509@sixdemonbag.org> <485FDC2D.403@mac.com> Message-ID: <48605061.3000602@Mozilla-Enigmail.org> Charly Avital wrote: > Robert J. Hansen wrote the following on 6/23/08 12:52 PM: >> Charly Avital wrote: >>> I would like Enigmail to use the digest-algo [value] I set in >>> gpg.conf. >> >> Enigmail has no influence over your cipher and algorithm settings. We >> use what you've told GnuPG to use. > > I must have misunderstood a previous statement: > 'Enigmail knows *nothing* of the options in gpg.conf.' I'd be sorry if you did. It was a pretty direct statement without room for ambiguity to sneak in. I think Rob {sh,c}ould have added "...unless you've instructed Enigmail to override GnuPG, in which case, things are passed on the command line. >> The only exception to this is >> .mimeHashAlgorithm, which is only used for PGP/MIME messages. Explained below. The values for mimeHashAlgorithm are (from enigmail.js): 0 null (default) 1 SHA-1 2 RIPEMD160 3 SHA-256 4 SHA-384 5 SHA-512 6 SHA-224 Anything other that the default case will get passed on Enigmail's command line with --digest-algo . From the beginning, PGP/MIME presented a problem in that it is necessary to know the digest algorithm *before* invoking GnuPG as part of constructing the messages MIME headers. If one looks at teh source of a PGP/MIME signed message, s/he'll see the MIME header: Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary=blah pgp-sha1 being MIME-speak for OpenPGP's SHA-1. The initial solution to this problem was to select a hash as part of Enigmail's preferences and then pass that to GnuPG, overriding whatever the key or gpg.conf said to use. Later, Patrick developed a solution that signs a small test message and examines that to determine the hash used, constructs the MIME header and passes things to GnuPG for signing and possibly encryption. Patrick, please whack my knuckles with a ruler and correct me if I've bungled this explanation. -- John P. Clizbe Inet: John (a) Mozilla-Enigmail.org You can't spell fiasco without SCO. PGP/GPG KeyID: 0x608D2A10/0x18BB373A "what's the key to success?" / "two words: good decisions." "what's the key to good decisions?" / "one word: experience." "how do i get experience?" / "two words: bad decisions." "Just how do the residents of Haiku, Hawai'i hold conversations?" -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 677 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080623/cf4311c8/attachment.bin From rjh at sixdemonbag.org Mon Jun 23 18:48:47 2008 From: rjh at sixdemonbag.org (Robert J. Hansen) Date: Mon, 23 Jun 2008 20:48:47 -0500 Subject: [Enigmail] Setting which Hash Algorithm In-Reply-To: <48605061.3000602@Mozilla-Enigmail.org> References: <485F7662.6060100@mac.com> <485FD4C9.7080509@sixdemonbag.org> <485FDC2D.403@mac.com> <48605061.3000602@Mozilla-Enigmail.org> Message-ID: <4860527F.3010908@sixdemonbag.org> John Clizbe wrote: > I'd be sorry if you did. It was a pretty direct statement without > room for ambiguity to sneak in. > > I think Rob {sh,c}ould have added "...unless you've instructed > Enigmail to override GnuPG, in which case, things are passed on the > command line. I'm actually going to defend this one, albeit weakly. If you override .mimeHashAlgorithm, then Enigmail is still ignorant of your gpg.conf file -- it just passes an override. > [PGP/MIME is e]xplained below. > > [good stuff snipped] As I understand it, part of Charly's problem stems from the fact that by setting his .mimeHashAlgorithm the digest-algo choice was being applied even to non-PGP/MIME emails. If so, should this be filed as a bug? Also, given that I can't imagine a use case for .mimeHashAlgorithm, Patrick's hack seeming to be a much better solution, should we talk about removing it altogether? From shavital at mac.com Mon Jun 23 20:45:38 2008 From: shavital at mac.com (Charly Avital) Date: Mon, 23 Jun 2008 23:45:38 -0400 Subject: [Enigmail] Setting which Hash Algorithm In-Reply-To: <48605061.3000602@Mozilla-Enigmail.org> References: <485F7662.6060100@mac.com> <485FD4C9.7080509@sixdemonbag.org> <485FDC2D.403@mac.com> <48605061.3000602@Mozilla-Enigmail.org> Message-ID: <48606DE2.5000506@mac.com> John Clizbe wrote the following on 6/23/08 9:39 PM: [...] > Explained below. > > The values for mimeHashAlgorithm are (from enigmail.js): > > 0 null (default) > 1 SHA-1 > 2 RIPEMD160 > 3 SHA-256 > 4 SHA-384 > 5 SHA-512 > 6 SHA-224 > > Anything other that the default case will get passed on Enigmail's command line > with --digest-algo . [...] The above would have, and is more than sufficient and unambiguous. Thank you. Charly From shavital at mac.com Mon Jun 23 20:55:02 2008 From: shavital at mac.com (Charly Avital) Date: Mon, 23 Jun 2008 23:55:02 -0400 Subject: [Enigmail] Setting which Hash Algorithm In-Reply-To: <4860527F.3010908@sixdemonbag.org> References: <485F7662.6060100@mac.com> <485FD4C9.7080509@sixdemonbag.org> <485FDC2D.403@mac.com> <48605061.3000602@Mozilla-Enigmail.org> <4860527F.3010908@sixdemonbag.org> Message-ID: <48607016.4020502@mac.com> Robert J. Hansen wrote the following on 6/23/08 9:48 PM: [...] > > I'm actually going to defend this one, albeit weakly. I appreciate it. > If you override > .mimeHashAlgorithm, then Enigmail is still ignorant of your gpg.conf > file -- it just passes an override. > >> [PGP/MIME is e]xplained below. >> >> [good stuff snipped] Really good stuff. I have copied and filed it. > > As I understand it, part of Charly's problem stems from the fact that by > setting his .mimeHashAlgorithm the digest-algo choice was being applied > even to non-PGP/MIME emails. It is indeed applied to non-PGP/MIME emails, as I have tested it. > > If so, should this be filed as a bug? I'll leave that to the experts in this forum. > > Also, given that I can't imagine a use case for .mimeHashAlgorithm, > Patrick's hack seeming to be a much better solution, should we talk > about removing it altogether? In a previous release of Enigmail, I can' remember which, there was an option (GUI) in OpenPGP Preferences to set manually the hash algorithm. This option came together or under the tab of PGP/MIME. I must have set it, at that time, to SHA256, and it is possible that it "stuck" along further releases of Enigmail. Thanks, Charly From patrick at mozilla-enigmail.org Tue Jun 24 02:57:29 2008 From: patrick at mozilla-enigmail.org (Patrick Brunschwig) Date: Tue, 24 Jun 2008 11:57:29 +0200 Subject: [Enigmail] Setting which Hash Algorithm In-Reply-To: <48605061.3000602@Mozilla-Enigmail.org> References: <485F7662.6060100@mac.com> <485FD4C9.7080509@sixdemonbag.org> <485FDC2D.403@mac.com> <48605061.3000602@Mozilla-Enigmail.org> Message-ID: <4860C509.8080802@mozilla-enigmail.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 John Clizbe wrote: > Charly Avital wrote: >> Robert J. Hansen wrote the following on 6/23/08 12:52 PM: >>> Charly Avital wrote: >>>> I would like Enigmail to use the digest-algo [value] I set in >>>> gpg.conf. >>> Enigmail has no influence over your cipher and algorithm settings. We >>> use what you've told GnuPG to use. >> I must have misunderstood a previous statement: >> 'Enigmail knows *nothing* of the options in gpg.conf.' > > I'd be sorry if you did. It was a pretty direct statement without room for > ambiguity to sneak in. > > I think Rob {sh,c}ould have added "...unless you've instructed Enigmail to > override GnuPG, in which case, things are passed on the command line. > >>> The only exception to this is >>> .mimeHashAlgorithm, which is only used for PGP/MIME messages. > > Explained below. > > The values for mimeHashAlgorithm are (from enigmail.js): > > 0 null (default) > 1 SHA-1 > 2 RIPEMD160 > 3 SHA-256 > 4 SHA-384 > 5 SHA-512 > 6 SHA-224 > > Anything other that the default case will get passed on Enigmail's command line > with --digest-algo . > > From the beginning, PGP/MIME presented a problem in that it is necessary to know > the digest algorithm *before* invoking GnuPG as part of constructing the > messages MIME headers. If one looks at teh source of a PGP/MIME signed message, > s/he'll see the MIME header: > Content-Type: multipart/signed; micalg=pgp-sha1; > protocol="application/pgp-signature"; > boundary=blah > > pgp-sha1 being MIME-speak for OpenPGP's SHA-1. > > The initial solution to this problem was to select a hash as part of Enigmail's > preferences and then pass that to GnuPG, overriding whatever the key or gpg.conf > said to use. > > Later, Patrick developed a solution that signs a small test message and examines > that to determine the hash used, constructs the MIME header and passes things to > GnuPG for signing and possibly encryption. > > Patrick, please whack my knuckles with a ruler and correct me if I've bungled > this explanation. Not at all -- your explanation is 100% correct :-) Patrick -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQEVAwUBSGDFCHcOpHodsOiwAQJ2/gf8DLcZgRw8EVH+jlsiwA3c+ijWxCZZBNwD lfa8g4AWhOA9nMB1Hb0V6jSTuQg1P6QDXFBGgKryorSQXA1mSq0z2+JwMIUwkD5g MQWjnIQPQXe5FgmuJ+YU0kF9ZFtP66uqYLF7Y5MwYhx37SIaP7xdHVp7Pt+mTcYJ PTJKywb14bBJbUzOv0QiE2W9UeAJmGV3lkf3+S1UTeHKJbA3BzwPjAbMvykFFU7L CrySLywkxqsjNjwCCMVH8jawz7czJuvjUvYcbhcIjp7641FVZjQ2us9EDznMu4xy HvQV1hjkQ4jo1oB13K+jHH5Ek0V8r5iLAD+1/HFCV+h/VGgjHXmv5w== =+STP -----END PGP SIGNATURE----- From shynewkoraa at yahoo.com Tue Jun 24 06:45:46 2008 From: shynewkoraa at yahoo.com (koraa shynew) Date: Tue, 24 Jun 2008 06:45:46 -0700 (PDT) Subject: [Enigmail] editing the look of a PGP signed message Message-ID: <40011.58456.qm@web55906.mail.re3.yahoo.com> I want to leave out the entries "Version" and "Comment" under PGP SIGNITURE of a PGP signed message. HOw can I do that? -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.mozdev.org/pipermail/enigmail/attachments/20080624/6ce62b7b/attachment.html From rjh at sixdemonbag.org Tue Jun 24 09:10:09 2008 From: rjh at sixdemonbag.org (Robert J. Hansen) Date: Tue, 24 Jun 2008 11:10:09 -0500 Subject: [Enigmail] editing the look of a PGP signed message In-Reply-To: <40011.58456.qm@web55906.mail.re3.yahoo.com> References: <40011.58456.qm@web55906.mail.re3.yahoo.com> Message-ID: <48611C61.2050606@sixdemonbag.org> koraa shynew wrote: > I want to leave out the entries "Version" and "Comment" under PGP > SIGNITURE of a PGP signed message. HOw can I do that? "OpenPGP Preferences --> Advanced --> Add Enigmail Comment...". Make sure that box is not checked. Under "Additional parameters for GnuPG", add "--no-emit-version". From darkrenegade80 at hotmail.com Tue Jun 24 09:25:59 2008 From: darkrenegade80 at hotmail.com (Barry Jefferson) Date: Tue, 24 Jun 2008 16:25:59 +0000 Subject: [Enigmail] TNew User, Testing Enigmail and PGP - Help Needed Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi Guys, Just thought i would post this messege first of all to say hello and secondly to test if signing a message digtitally works as very new to all of this and have to start from somewhere to learn how to do things, so if possibly some of you guys could help me by emailing me using the encrypt features that would be great Thanks, Barry -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFIYR/6U2dptUHpjcQRAgsNAJwK6ykPcWIosiLLYBEGHBjMIlu00gCeJ8V+ Qg8t+2EmrqxVVIETiNcHZTg= =kDsf -----END PGP SIGNATURE----- _________________________________________________________________ Introducing Live Search cashback . It's search that pays you back! http://search.live.com/cashback/?&pkw=form=MIJAAF/publ=HMTGL/crea=introsrchcashback -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.mozdev.org/pipermail/enigmail/attachments/20080624/5e2fea0b/attachment.html From jmoore3rd at bellsouth.net Tue Jun 24 09:35:39 2008 From: jmoore3rd at bellsouth.net (John W. Moore III) Date: Tue, 24 Jun 2008 12:35:39 -0400 Subject: [Enigmail] TNew User, Testing Enigmail and PGP - Help Needed In-Reply-To: References: Message-ID: <4861225B.4070609@bellsouth.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Barry Jefferson wrote: > Just thought i would post this messege first of all to say hello and > secondly to test if signing a message digtitally works as very new to > all of this and have to start from somewhere to learn how to do things, > so if possibly some of you guys could help me by emailing me using the > encrypt features that would be great Well, without Your Key I [and neither can anyone else] cannot verify Your Sig. Please Upload it to a Keyserver so that everyone can access it. I recommend: hkp://pool.sks-keyservers.net Please continue to Post Question here and I do hope that You have subscribed to this Mailing List so that You may easily receive Answers. JOHN ;) Timestamp: Tuesday 24 Jun 2008, 12:35 --400 (Eastern Daylight Time) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.5.0-svn4754: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIYSJZAAoJEBCGy9eAtCsPgrUIAIfCuLpp62Wn3VLeXSlqLgjW qlrHKcrDKgbQGQx+C7pHhEIxxesAX1B0QlR5C3wki6oYryqlO4KJK7nk5nQxhHBa j9jlPYn1a5k4fqcf3BFZEf15t0pZ3dIYcv1sz1LyN59dFZtFKUyuQJ4UL3YGDPjO 1rT0fjWLhmkwixFUzbxyucazsEbKnuaObHFbEnh3nPjIlHGNLARG6HKxgejnfAuP LaQ4Q0myRk2NN0+UPX+zCzyUd+mfJ7nIuSyb22VMJLkXInltRdYFpFZ54T3NoFqn EyLBCRLpB35Y9tsNp/d4tWib9Lek446QnN2zpqI08wuOg/8ZXwFv1Q3djGNssYI= =yYTm -----END PGP SIGNATURE----- From rjh at sixdemonbag.org Tue Jun 24 09:37:53 2008 From: rjh at sixdemonbag.org (Robert J. Hansen) Date: Tue, 24 Jun 2008 11:37:53 -0500 Subject: [Enigmail] TNew User, Testing Enigmail and PGP - Help Needed In-Reply-To: References: Message-ID: <486122E1.7060700@sixdemonbag.org> Barry Jefferson wrote: > Just thought i would post this messege first of all to say hello and > secondly to test if signing a message digtitally works as very new to > all of this and have to start from somewhere to learn how to do things, > so if possibly some of you guys could help me by emailing me using the > encrypt features that would be great First, shut off HTML mail, please. Second, upload your key to the keyserver network. That will go a long way to making things easier to use. :) From jkosin at beta.intcomgrp.com Tue Jun 24 09:49:45 2008 From: jkosin at beta.intcomgrp.com (James Kosin) Date: Tue, 24 Jun 2008 12:49:45 -0400 Subject: [Enigmail] TNew User, Testing Enigmail and PGP - Help Needed In-Reply-To: <486122E1.7060700@sixdemonbag.org> References: <486122E1.7060700@sixdemonbag.org> Message-ID: <486125A9.6060408@beta.intcomgrp.com> Robert J. Hansen wrote: > Barry Jefferson wrote: > >> Just thought i would post this messege first of all to say hello and >> secondly to test if signing a message digtitally works as very new to >> all of this and have to start from somewhere to learn how to do things, >> so if possibly some of you guys could help me by emailing me using the >> encrypt features that would be great >> > > First, shut off HTML mail, please. > > Second, upload your key to the keyserver network. > > That will go a long way to making things easier to use. :) > _______________________________________________ > I don't think he can. This is probably because he is using a HOTMAIL account that is automatically adding the HTML content. James -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 258 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080624/de867eac/attachment-0001.bin From darkrenegade80 at hotmail.com Tue Jun 24 10:03:38 2008 From: darkrenegade80 at hotmail.com (Barry Jefferson) Date: Tue, 24 Jun 2008 17:03:38 +0000 Subject: [Enigmail] TNew User, Testing Enigmail and PGP - Help Needed Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Robert J. Hansen wrote: | Barry Jefferson wrote: |> Just thought i would post this messege first of all to say hello and |> secondly to test if signing a message digtitally works as very new to |> all of this and have to start from somewhere to learn how to do things, |> so if possibly some of you guys could help me by emailing me using the |> encrypt features that would be great | | First, shut off HTML mail, please. | | Second, upload your key to the keyserver network. | | That will go a long way to making things easier to use. :) | _______________________________________________ | Enigmail mailing list | Enigmail at mozdev.org | https://www.mozdev.org/mailman/listinfo/enigmail | | | Hi Robert, Thanks for your help I have set to plain text and uploaded my key Thanks, Baz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFIYSk1U2dptUHpjcQRAoxgAJ9gvNKxEChpr0Jvk+Q/LR1uEYOdtwCeITb3 HV4diA+E/YXZAgWaIVsDppo= =hgby -----END PGP SIGNATURE----- _________________________________________________________________ Earn cashback on your purchases with Live Search - the search that pays you back! http://search.live.com/cashback/?&pkw=form=MIJAAF/publ=HMTGL/crea=earncashback -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.mozdev.org/pipermail/enigmail/attachments/20080624/bd89651f/attachment.html From darkrenegade80 at hotmail.com Tue Jun 24 10:19:38 2008 From: darkrenegade80 at hotmail.com (Barry Jefferson) Date: Tue, 24 Jun 2008 17:19:38 +0000 Subject: [Enigmail] TNew User, Testing Enigmail and PGP - Help Needed Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 John W. Moore III wrote: | Barry Jefferson wrote: | |> Just thought i would post this messege first of all to say hello and |> secondly to test if signing a message digtitally works as very new to |> all of this and have to start from somewhere to learn how to do things, |> so if possibly some of you guys could help me by emailing me using the |> encrypt features that would be great | Well, without Your Key I [and neither can anyone else] cannot verify | Your Sig. Please Upload it to a Keyserver so that everyone can access | it. I recommend: hkp://pool.sks-keyservers.net | | Please continue to Post Question here and I do hope that You have | subscribed to this Mailing List so that You may easily receive Answers. | | JOHN ;) | Timestamp: Tuesday 24 Jun 2008, 12:35 --400 (Eastern Daylight Time) Hi John, I have selected that server and have uploaded my key it does seem to work even tho i'm not understanding all the different settings quite yet but i will get there Thanks, Baz ~ _______________________________________________ Enigmail mailing list Enigmail at mozdev.org https://www.mozdev.org/mailman/listinfo/enigmail -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFIYSz1U2dptUHpjcQRAlToAJ4oeavvCwMaC1/tFr5bGpXEDUmscACdF6sm azceNfrOhvRGXzNzCPHxSro= =Yp4n -----END PGP SIGNATURE----- _________________________________________________________________ The other season of giving begins 6/24/08. Check out the i?m Talkathon. http://www.imtalkathon.com?source=TXT_EML_WLH_SeasonOfGiving -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.mozdev.org/pipermail/enigmail/attachments/20080624/bb0aa195/attachment.html From bluejonah at gmail.com Mon Jun 23 22:50:53 2008 From: bluejonah at gmail.com (Joseph) Date: Tue, 24 Jun 2008 01:50:53 -0400 Subject: [Enigmail] Newbie Message-ID: <48608B3D.7000001@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello, ~ My name is bluejonah. I am new to enigma and was wondering if anyone would be willing to help me test my new enigma installation. I tried uploading my key but it wouldn't work. I think its because I am behind a firewall. BlueJonah -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org iD8DBQFIYIs94XnBVqpMfAMRAvTcAJ9XTpNC43YYHx18nAeydTh5ULpaFACcDcY9 6mEh4gyfsy9c6R3VcEwKM0o= =TJ7G -----END PGP SIGNATURE----- From sean at rima.ws Tue Jun 24 11:48:42 2008 From: sean at rima.ws (Sean Rima) Date: Tue, 24 Jun 2008 19:48:42 +0100 Subject: [Enigmail] Moving per receipant rules Message-ID: <4861418A.7010701@rima.ws> I am moving from one laptop to another, what is the easiest way to move my p-r rules as I have a lot of them Seab -- Sean Thawte, GSWoT and CaCert WOT Assurer I believe that every human has a finite number of heartbeats. I don't intend to waste any of mine running around doing exercises. - Neil Armstrong -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 318 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080624/66de42ec/attachment.bin From olav at mozilla-enigmail.org Tue Jun 24 12:27:24 2008 From: olav at mozilla-enigmail.org (Olav Seyfarth) Date: Tue, 24 Jun 2008 21:27:24 +0200 Subject: [Enigmail] Newbie In-Reply-To: <48608B3D.7000001@gmail.com> References: <48608B3D.7000001@gmail.com> Message-ID: <48614A9C.3000904@mozilla-enigmail.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Hi BlueJonah, > I am new to enigma and was wondering if anyone would be willing to help me > test my new enigma installation. sure, that is what this list (also) is for. > I tried uploading my key but it wouldn't work. I think its because I am > behind a firewall. If it is not a firewall where you can influence rules for outgoing traffic, then using a webinterface is a good alternative: you may use any PGP.net web interface, this is just one that I found to be very reliable: http://pgpkeys.pca.dfn.de/ To import/export, you may use Enigmail's Key Management Edit menu features "Import Keys From Clipboard" and "Copy Public Keys to Clipboard". Once you uploaded your key, we can verify your signature. But your message body looks fine so far. Olav -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Diese ist eine Digitale Signatur nach OpenPGP-Standard Comment: Weitere Informationen: http://privat.seyfarth.de/olav/schluessel.html iEYEAREIAAYFAkhhSpoACgkQL/NBt8fdKe0/RQCcDG7HK/tPkoNfA30XkKrztffS eqoAoJyiS2OYuqkZ1oTez5Tx9l8te3jF =4OGb -----END PGP SIGNATURE----- From olav at mozilla-enigmail.org Tue Jun 24 12:31:55 2008 From: olav at mozilla-enigmail.org (Olav Seyfarth) Date: Tue, 24 Jun 2008 21:31:55 +0200 Subject: [Enigmail] Moving per receipant rules In-Reply-To: <4861418A.7010701@rima.ws> References: <4861418A.7010701@rima.ws> Message-ID: <48614BAB.7060504@mozilla-enigmail.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Hi Sean, > I am moving from one laptop to another, what is the easiest > way to move my p-r rules as I have a lot of them they are all stored in one separate file "pgprules.xml" in your profile direcory (on Win XP something like "c:\Documents and Settings\Sean\Application Data\Thunderbird\Profiles\sean\"). Just copy that file to your new laptop's TB profile. There are no paths in this file that would need to be adjusted. But all keys referenced there shoud be present in your new laptop's keyring aswell ... Olav -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Diese ist eine Digitale Signatur nach OpenPGP-Standard Comment: Weitere Informationen: http://privat.seyfarth.de/olav/schluessel.html iEYEAREIAAYFAkhhS6sACgkQL/NBt8fdKe1hYwCgvS5EPKGwt6hZbaS0NmM7Alow 4PwAoLTpSpt51fEeYHqPiemJrA3RYDbT =m5Vg -----END PGP SIGNATURE----- From jmoore3rd at bellsouth.net Tue Jun 24 12:38:25 2008 From: jmoore3rd at bellsouth.net (John W. Moore III) Date: Tue, 24 Jun 2008 15:38:25 -0400 Subject: [Enigmail] TNew User, Testing Enigmail and PGP - Help Needed In-Reply-To: <486125A9.6060408@beta.intcomgrp.com> References: <486122E1.7060700@sixdemonbag.org> <486125A9.6060408@beta.intcomgrp.com> Message-ID: <48614D31.8010908@bellsouth.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 James Kosin wrote: > I don't think he can. This is probably because he is using a HOTMAIL > account that is automatically adding the HTML content. Within Yahoo & Hotmail/MSN there are configuration Settings that can be manipulated to disable HTML. Far easier is to just retrieve Mail from those Accounts into Thunderbird/SeaMonkey where the User has a lot of options. [Yes, this can be done for FREE] JOHN ;) Timestamp: Tuesday 24 Jun 2008, 15:37 --400 (Eastern Daylight Time) - -- A taxpayer voting for Obama is like a chicken voting for Col. Sanders. :( -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.5.0-svn4754: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIYU0vAAoJEBCGy9eAtCsP8KMIAIUYJy4HyH3KekoGU8TYH4vC wo0k7qyGzJvkJ993p66i5ehI5t1fyTaAWReRhlskRbKQ4XQEpQOcVjIyFGr/g/Rk iIVt/SrzH//TDoB984aM170kOQJm8y+9WVq7b09Zt/T/fgkIsnqfNghmGDbkw6/o EDbpPwBa08uqTFLBmrN5dJboYOrZEbmbLvHZ0ttJxNDPrePbHum/aOlcisJpaA7e ds5NzVq8il+oYFCceErfJuvUFVI2L+mv0W2/inERlXz0m85aQGz6ku6IiCdYdZ8s ckNdNePij3p/76RPYNwYoahUyg1ZjuUs23F+8/PZH80COTvDA5DOIlT8znKEVTU= =HkpE -----END PGP SIGNATURE----- From olav at mozilla-enigmail.org Tue Jun 24 12:40:18 2008 From: olav at mozilla-enigmail.org (Olav Seyfarth) Date: Tue, 24 Jun 2008 21:40:18 +0200 Subject: [Enigmail] TNew User, Testing Enigmail and PGP - Help Needed In-Reply-To: References: Message-ID: <48614DA2.1070704@mozilla-enigmail.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Hi Barry, > Thanks for your help > > I have set to plain text and uploaded my key > > Thanks, > Baz the sig of THIS message above was good, all others weren't. Make sure that you COMPOSE messages as plain text right away, not convert them to be sent as plain text upon sending them. You should not edit them using TB's HTML editor at all. Olav -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Diese ist eine Digitale Signatur nach OpenPGP-Standard Comment: Weitere Informationen: http://privat.seyfarth.de/olav/schluessel.html iEYEAREIAAYFAkhhTaEACgkQL/NBt8fdKe1vqACfYoOK/Vvx8ZCeTFQVkSNdFAi8 T5EAnRyj3T6EJUTooBLFtRTbsXIxT/RR =605F -----END PGP SIGNATURE----- From sean at rima.ws Tue Jun 24 12:42:05 2008 From: sean at rima.ws (Sean Rima) Date: Tue, 24 Jun 2008 20:42:05 +0100 Subject: [Enigmail] Moving per receipant rules In-Reply-To: <48614BAB.7060504@mozilla-enigmail.org> References: <4861418A.7010701@rima.ws> <48614BAB.7060504@mozilla-enigmail.org> Message-ID: <48614E0D.1060405@rima.ws> Olav Seyfarth wrote: > Hi Sean, > >> I am moving from one laptop to another, what is the easiest >> way to move my p-r rules as I have a lot of them > > they are all stored in one separate file "pgprules.xml" in > your profile direcory (on Win XP something like > "c:\Documents and Settings\Sean\Application Data\Thunderbird\Profiles\sean\"). > > > Just copy that file to your new laptop's TB profile. There are > no paths in this file that would need to be adjusted. But all > keys referenced there shoud be present in your new laptop's > keyring aswell ... > > Olav Thanks for that, missed it completely. Main laptop is off to Toshiba for the second time in a month :( Sean -- Sean Thawte, GSWoT and CaCert WOT Assurer I believe that every human has a finite number of heartbeats. I don't intend to waste any of mine running around doing exercises. - Neil Armstrong -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 318 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080624/397fe7f5/attachment.bin From jmoore3rd at bellsouth.net Tue Jun 24 12:42:37 2008 From: jmoore3rd at bellsouth.net (John W. Moore III) Date: Tue, 24 Jun 2008 15:42:37 -0400 Subject: [Enigmail] TNew User, Testing Enigmail and PGP - Help Needed In-Reply-To: References: Message-ID: <48614E2D.1090406@bellsouth.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Barry Jefferson wrote: > I have selected that server and have uploaded my key it does seem to > work even tho i'm not understanding all the different settings quite yet > but i will get there You're doing Great! I've now got Your Public Key and I'm certain others do as well. You're next 'issue' is gonna be "Can I Encrypt/Decrypt?" and for that You will need to Email anyone on this List direct. I'm available; so is R.J. Hansen [the Spy for the Russians :-D ] and Charly; actually, anyone whose message is before You can be and will be happy to work with You. JOHN ;) Timestamp: Tuesday 24 Jun 2008, 15:42 --400 (Eastern Daylight Time) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.5.0-svn4754: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIYU4rAAoJEBCGy9eAtCsPbr0IAKRwzheaq7oJMM01B4NPLonL U1Qj/a/SGtZMPhkhwGAnGFn+Rx9hTFetd0ddcMo5Z5MH/iP+tb7whuVDYOj35sRs tC3iLAmx8y4NQM88INwKrvPGwZA/3Z4wXMJgNnXeYj9UVJmDY6pA9xqRw8YDGXCG uSAdqInGM0yzVLy2PEyoKugqthemeacn8g0QIpVglnnE1cKQCvkicEJTLVvVkjPi 7gSP2aelqNBag7klnLI/rs92DJvh3cMhfHTePaU9S0pdu0Q1c53nEfBjLQNpIB1N /WbAwMNkAxR6KH0ghosqWV+GkAYJJzaO44r5+tpMJ9Cz4C114T7wyq603Qm2Td4= =kLaK -----END PGP SIGNATURE----- From jmoore3rd at bellsouth.net Tue Jun 24 12:44:07 2008 From: jmoore3rd at bellsouth.net (John W. Moore III) Date: Tue, 24 Jun 2008 15:44:07 -0400 Subject: [Enigmail] Moving per receipant rules In-Reply-To: <4861418A.7010701@rima.ws> References: <4861418A.7010701@rima.ws> Message-ID: <48614E87.9050300@bellsouth.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Sean Rima wrote: > I am moving from one laptop to another, what is the easiest way to move > my p-r rules as I have a lot of them Copy/Paste Your 'Profile' from one installation to the other. \ JOHN ;) Timestamp: Tuesday 24 Jun 2008, 15:43 --400 (Eastern Daylight Time) - -- A taxpayer voting for Obama is like a chicken voting for Col. Sanders. :( -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.5.0-svn4754: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIYU6FAAoJEBCGy9eAtCsP2doH/jQVUfL2WoKcCQ8N6GuTFfPt YBSny6PW/GDEjGYPaGhdqpTEjDxYI0SU49QE4BW6PfNN40EhWrHkURyeGCeQapCU 9NJkggBkjERG+ijLPvc9eZdSDCrXUg2Efplu25x0ujz18rXeStjdc4IFfCp47qXV PxD/I3dKVJwxJQ4wzamztctSZ+QfJnqKQ1yeqXDqa6nMUbmqnzPLOcsHgKKt53Aa LdpJvw2XphvJ24/ndjZJyLHezaTTLziirTN06zGyGWxUULmVm45kz1XBSruQ23Pp 7wD7je6gOvyfftsSTuzMN0VZY6zcnKE7X19BS0VReBTuZYyblbwNvQ2NFU36mT0= =TA2A -----END PGP SIGNATURE----- From John at Mozilla-Enigmail.org Tue Jun 24 12:44:27 2008 From: John at Mozilla-Enigmail.org (John Clizbe) Date: Tue, 24 Jun 2008 14:44:27 -0500 Subject: [Enigmail] Moving per receipant rules In-Reply-To: <48614BAB.7060504@mozilla-enigmail.org> References: <4861418A.7010701@rima.ws> <48614BAB.7060504@mozilla-enigmail.org> Message-ID: <48614E9B.9070507@Mozilla-Enigmail.org> Olav Seyfarth wrote: > Hi Sean, > >> I am moving from one laptop to another, what is the easiest >> way to move my p-r rules as I have a lot of them > > they are all stored in one separate file "pgprules.xml" in > your profile directory (on Win XP something like > "c:\Documents and Settings\Sean\Application Data\Thunderbird\Profiles\sean\"). > > > Just copy that file to your new laptop's TB profile. There are > no paths in this file that would need to be adjusted. But all > keys referenced there should be present in your new laptop's > keyring as well ... And the easiest way to guarantee that is to copy the three keyring files (pubring.gpg, secring.gpg, trustdb.gpg) from one machine to the other. Using Olav's example from above, they would go into "C:\Documents and Settings\Sean\Application Data\GnuPG\". On *nix systems, the default location is the much easier to type ~/.gnupg. -- John P. Clizbe Inet: John (a) Mozilla-Enigmail.org You can't spell fiasco without SCO. PGP/GPG KeyID: 0x608D2A10/0x18BB373A "what's the key to success?" / "two words: good decisions." "what's the key to good decisions?" / "one word: experience." "how do i get experience?" / "two words: bad decisions." "Just how do the residents of Haiku, Hawai'i hold conversations?" -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 677 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080624/4c7d0ad3/attachment.bin From sean at rima.ws Tue Jun 24 12:45:22 2008 From: sean at rima.ws (Sean Rima) Date: Tue, 24 Jun 2008 20:45:22 +0100 Subject: [Enigmail] Moving per receipant rules In-Reply-To: <48614E87.9050300@bellsouth.net> References: <4861418A.7010701@rima.ws> <48614E87.9050300@bellsouth.net> Message-ID: <48614ED2.9050706@rima.ws> John W. Moore III wrote: > Sean Rima wrote: >> I am moving from one laptop to another, what is the easiest way to move >> my p-r rules as I have a lot of them > > Copy/Paste Your 'Profile' from one installation to the other. Would not work as the other lappie os Linux based Sean -- Sean Thawte, GSWoT and CaCert WOT Assurer I believe that every human has a finite number of heartbeats. I don't intend to waste any of mine running around doing exercises. - Neil Armstrong -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 318 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080624/0cf7360b/attachment.bin From faramir.cl at gmail.com Tue Jun 24 12:48:15 2008 From: faramir.cl at gmail.com (Faramir) Date: Tue, 24 Jun 2008 15:48:15 -0400 Subject: [Enigmail] Moving per receipant rules In-Reply-To: <48614E0D.1060405@rima.ws> References: <4861418A.7010701@rima.ws> <48614BAB.7060504@mozilla-enigmail.org> <48614E0D.1060405@rima.ws> Message-ID: <48614F7F.2030305@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Sean Rima escribi?: > Olav Seyfarth wrote: >> Hi Sean, >> >>> I am moving from one laptop to another, what is the easiest >>> way to move my p-r rules as I have a lot of them >> >> they are all stored in one separate file "pgprules.xml" in >> your profile direcory (on Win XP something like >> "c:\Documents and Settings\Sean\Application >> Data\Thunderbird\Profiles\sean\"). >> >> >> Just copy that file to your new laptop's TB profile. There are >> no paths in this file that would need to be adjusted. But all >> keys referenced there shoud be present in your new laptop's >> keyring aswell ... >> >> Olav > > Thanks for that, missed it completely. Main laptop is off to Toshiba for > the second time in a month :( > > Sean Maybe you should copy the whole TB profile, from the failing laptop to the good one... Dont forget to copy your keyrings too... -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEcBAEBCAAGBQJIYU9/AAoJEMV4f6PvczxAqEoH+wfWcNOXF+huIuCfwqYHgyxu WsRzvVOp3ZgLZO+KSlNUmxiJBCkX5lZDdk3CEMXV4xX/wVawWNVWw4ClFL0CmC6J l9DcRiGiwgvLbWqMX6db3Al1NiZVT/glBThQMJtB2iO8JbiCxuB8u11RHE8y8UDX 0TZjA6GvrOx1nm6W1eb//CbQt2eKE7HbCEz1C5j27vrszbpm5MxH0EZCwMdV+8S2 +piulBP3TmWQURNjW0hlcKcvFSv9K3asmn3timhUDuR/LG7Zx/AAAGL51SyXgEdw r0sZVi9ZoLW8MpMr7WCp0U4Cxy5F0LM7B5gkLQfrQn+U7SzTmGQ94NvjcJ4PxIA= =ahnu -----END PGP SIGNATURE----- From sean at rima.ws Tue Jun 24 12:51:18 2008 From: sean at rima.ws (Sean Rima) Date: Tue, 24 Jun 2008 20:51:18 +0100 Subject: [Enigmail] Moving per receipant rules In-Reply-To: <48614E9B.9070507@Mozilla-Enigmail.org> References: <4861418A.7010701@rima.ws> <48614BAB.7060504@mozilla-enigmail.org> <48614E9B.9070507@Mozilla-Enigmail.org> Message-ID: <48615036.7010906@rima.ws> John Clizbe wrote: > Olav Seyfarth wrote: >> Hi Sean, >> >>> I am moving from one laptop to another, what is the easiest >>> way to move my p-r rules as I have a lot of them >> they are all stored in one separate file "pgprules.xml" in >> your profile directory (on Win XP something like >> "c:\Documents and Settings\Sean\Application Data\Thunderbird\Profiles\sean\"). >> >> >> Just copy that file to your new laptop's TB profile. There are >> no paths in this file that would need to be adjusted. But all >> keys referenced there should be present in your new laptop's >> keyring as well ... > > And the easiest way to guarantee that is to copy the three keyring files > (pubring.gpg, secring.gpg, trustdb.gpg) from one machine to the other. > Using Olav's example from above, they would go into > "C:\Documents and Settings\Sean\Application Data\GnuPG\". On *nix systems, the > default location is the much easier to type ~/.gnupg. > Yeah, I have those backed up automatically to 2 remote hard drives on my lan :) Will add the pgprules to it as well -- Sean Thawte, GSWoT and CaCert WOT Assurer I believe that every human has a finite number of heartbeats. I don't intend to waste any of mine running around doing exercises. - Neil Armstrong -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 318 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080624/c5788c56/attachment-0001.bin From sean at rima.ws Tue Jun 24 12:53:21 2008 From: sean at rima.ws (Sean Rima) Date: Tue, 24 Jun 2008 20:53:21 +0100 Subject: [Enigmail] Moving per receipant rules In-Reply-To: <48614F7F.2030305@gmail.com> References: <4861418A.7010701@rima.ws> <48614BAB.7060504@mozilla-enigmail.org> <48614E0D.1060405@rima.ws> <48614F7F.2030305@gmail.com> Message-ID: <486150B1.2050308@rima.ws> Faramir wrote: > Sean Rima escribi?: >> Olav Seyfarth wrote: >>> Hi Sean, >>> >>>> I am moving from one laptop to another, what is the easiest >>>> way to move my p-r rules as I have a lot of them >>> they are all stored in one separate file "pgprules.xml" in >>> your profile direcory (on Win XP something like >>> "c:\Documents and Settings\Sean\Application >>> Data\Thunderbird\Profiles\sean\"). >>> >>> >>> Just copy that file to your new laptop's TB profile. There are >>> no paths in this file that would need to be adjusted. But all >>> keys referenced there shoud be present in your new laptop's >>> keyring aswell ... >>> >>> Olav >> Thanks for that, missed it completely. Main laptop is off to Toshiba for >> the second time in a month :( > >> Sean > > Maybe you should copy the whole TB profile, from the failing laptop to > the good one... Dont forget to copy your keyrings too... IT is not failing as such, there is a problem with the ribbon between the motherboard and the LCD but they re seated the inverter the last time for some reason Sean -- Sean Thawte, GSWoT and CaCert WOT Assurer I believe that every human has a finite number of heartbeats. I don't intend to waste any of mine running around doing exercises. - Neil Armstrong -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 318 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080624/65ef2064/attachment.bin From rjh at sixdemonbag.org Tue Jun 24 14:36:45 2008 From: rjh at sixdemonbag.org (Robert J. Hansen) Date: Tue, 24 Jun 2008 16:36:45 -0500 Subject: [Enigmail] TNew User, Testing Enigmail and PGP - Help Needed In-Reply-To: <48614E2D.1090406@bellsouth.net> References: <48614E2D.1090406@bellsouth.net> Message-ID: <486168ED.8060109@sixdemonbag.org> John W. Moore III wrote: > You're next 'issue' is gonna be "Can I Encrypt/Decrypt?" and for that > You will need to Email anyone on this List direct. I'm available; so is > R.J. Hansen [the Spy for the Russians :-D ] and Charly; actually, > anyone whose message is before You can be and will be happy to work with > You. Just so people here are aware of what's going on -- I happen to share a name with a lot of unpleasant people. There's an Alaskan serial killer named Robert Christian Hansen (he and I are actually from the same neck of the woods!), and a Russian spy named Robert Philip Hanssen. In my day job I'm a government researcher studying the security of electronic voting machines: not a serial killer, not a spy for the Russians. :) John is making a joke, nothing more. From jmoore3rd at bellsouth.net Tue Jun 24 16:12:46 2008 From: jmoore3rd at bellsouth.net (John W. Moore III) Date: Tue, 24 Jun 2008 19:12:46 -0400 Subject: [Enigmail] TNew User, Testing Enigmail and PGP - Help Needed In-Reply-To: <486168ED.8060109@sixdemonbag.org> References: <48614E2D.1090406@bellsouth.net> <486168ED.8060109@sixdemonbag.org> Message-ID: <48617F6E.1020803@bellsouth.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Robert J. Hansen wrote: > In my day job I'm a government researcher studying the security of > electronic voting machines: not a serial killer, not a spy for the > Russians. :) John is making a joke, nothing more. It is a delicious 'Joke' however because using any Web Search Engine for Your UID [w/o Email address] yields such fascinating results. Of Course, qualifying Yourself as a "government researcher" is also spooky, Do You agree with the philosophy that only if "They" die did something go wrong? In counter-point I have to admit that I have released the wrist-to-wrist hold on several folks with the retort; "Wrong Answer". So, NO, I am not an Angel; I'm just like a lot of You, nobody You'd like to live next door to but the type of individual all of Us have occasionally wished We could unleash. Robert's "Cool" but only 'Local Sign the Key. Same with Mine. This simple action will change the Enigmail Bar from 'Blue' to 'Green' and remove the "Untrusted" tag. JOHN ;) Timestamp: Tuesday 24 Jun 2008, 19:12 --400 (Eastern Daylight Time) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.5.0-svn4754: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIYX9sAAoJEBCGy9eAtCsPy0gH/iacgCB0UU00ycvRrX1/IP/C awK07tzk04twhWXAF22JsCwKFaSonDf0QbkjK6rufGb9DQG4iai0rSoKf9p/h4IR qeV5eGYLDabwqlFrX2P50+tafZLo4ayYJSbd3+hD2gQz6XELSiutdwuwqi3ZZaV4 5Xy5RZpa2VXztMF1u1oKnYMklGnnwtlIL6+sLOPiuWf1K2TXjHK5lkG7jnJFHSte qpPyjpskuKfzmp43FKdiFxBg3zPpdPSfyO3drLt+RUuqL6NsJQwbfcu7heASzA2l TM7fbEHmiZQVKHBIQxLHpMcYvrHfJ0PGdo93qaAxegJfRYxbZRKqkSRnS/+dTcM= =pZyA -----END PGP SIGNATURE----- From John at Mozilla-Enigmail.org Tue Jun 24 16:11:48 2008 From: John at Mozilla-Enigmail.org (John Clizbe) Date: Tue, 24 Jun 2008 18:11:48 -0500 Subject: [Enigmail] Newbie In-Reply-To: <48608B3D.7000001@gmail.com> References: <48608B3D.7000001@gmail.com> Message-ID: <48617F34.7090009@Mozilla-Enigmail.org> Joseph wrote: > ~ My name is bluejonah. I am new to _Enigmail_ and was wondering if anyone > would be willing to help me test my new _Enigmail_ installation. Hello Joseph, that's a function of why the list exists, as well as it primary purpose, answering questions. > I tried uploading my key but it wouldn't work. I think its because I am > behind a firewall. A good number of SKS keyservers also listen and operate on port 80, the standard HTTP port and should be able to negotiate a firewall. Here's a sample: http://pgpkeys.pca.dfn.de http://ice.mudshark.org http://keyserver.pramberger.at http://pgp.srv.ualberta.ca http://pgp.surfnet.nl Peter Pramberger has a more complete listing at http://www.pramberger.at/peter/services/keyserver/network/ Just look for the ball and (80) after the version column. If you still have trouble reaching a keyserver, you can still communicate with the keyservers via email (see the EKP column) Just send a message with the subject HELP to the address that displays when your mouse hovers over the ball in the EKP column. I need to update my server's address, until then, clicking this link should open a blank email, mailto:pgp-public-keys at gingerbear.net?subject=HELP Just click send and the EKP server will return an email with instructions. *HELP NEEDED*: there is currently help available in English (EN) and German (DE) - if anyone is willing to translate the one page file into another language, email me off-list. Thank you. -- John P. Clizbe Inet: John (a) Mozilla-Enigmail.org You can't spell fiasco without SCO. PGP/GPG KeyID: 0x608D2A10/0x18BB373A "what's the key to success?" / "two words: good decisions." "what's the key to good decisions?" / "one word: experience." "how do i get experience?" / "two words: bad decisions." "Just how do the residents of Haiku, Hawai'i hold conversations?" -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 677 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080624/7b00216f/attachment.bin From rjh at sixdemonbag.org Tue Jun 24 16:23:18 2008 From: rjh at sixdemonbag.org (Robert J. Hansen) Date: Tue, 24 Jun 2008 18:23:18 -0500 Subject: [Enigmail] TNew User, Testing Enigmail and PGP - Help Needed In-Reply-To: <48617F6E.1020803@bellsouth.net> References: <48614E2D.1090406@bellsouth.net> <486168ED.8060109@sixdemonbag.org> <48617F6E.1020803@bellsouth.net> Message-ID: <486181E6.1050406@sixdemonbag.org> John W. Moore III wrote: > Of Course, qualifying Yourself as a "government researcher" is also > spooky, Do You agree with the philosophy that only if "They" die did > something go wrong? I work in keeping elections safe and secure. I work for the National Science Foundation. I have no connections with any election machine vendor -- it's pure research. My research has no potential to make things worse (they're already about as bad as they can get); it has potential to make things a lot better. So yeah, I sleep well at night. :) From jmoore3rd at bellsouth.net Tue Jun 24 16:30:08 2008 From: jmoore3rd at bellsouth.net (John W. Moore III) Date: Tue, 24 Jun 2008 19:30:08 -0400 Subject: [Enigmail] TNew User, Testing Enigmail and PGP - Help Needed In-Reply-To: <486181E6.1050406@sixdemonbag.org> References: <48614E2D.1090406@bellsouth.net> <486168ED.8060109@sixdemonbag.org> <48617F6E.1020803@bellsouth.net> <486181E6.1050406@sixdemonbag.org> Message-ID: <48618380.8050404@bellsouth.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Robert J. Hansen wrote: > John W. Moore III wrote: >> Of Course, qualifying Yourself as a "government researcher" is also >> spooky, Do You agree with the philosophy that only if "They" die did >> something go wrong? > > I work in keeping elections safe and secure. I work for the National > Science Foundation. I have no connections with any election machine > vendor -- it's pure research. My research has no potential to make > things worse (they're already about as bad as they can get); it has > potential to make things a lot better. > > So yeah, I sleep well at night. :) *LMAO* GOTCHA! Another 'spit mark' on the Wall growing mold. JOHN ;) Timestamp: Tuesday 24 Jun 2008, 19:30 --400 (Eastern Daylight Time) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.5.0-svn4754: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIYYN+AAoJEBCGy9eAtCsP7TUIAKL5Nt9XWvc/dbuvZoV0u/YZ KfdUtvHZm7BtCVxQhDdiNCu234FvABb5w1o7n75QrtP9s6GhzuvzzMSRO+B26Vfs T+L/lWq7fiwBhTw2iuyU0r1288DMlPw3SEJEUujFaHPDTNb7w9tVpYOt/Rbfi1Cv UUvySvxFhAS6cA5c6gAjubHlc3LEGcLp8WFnXXPNvBsgIqhjW+i69gUlVSlOqWyF qB85R3i9JAvUr1DHAoT9EHXUoluLEU88KsLT9nJ29764192Bw1C1Pn4yynIZ+Nou HGg/ITYBDHKl9N/hKyi1fdGvZ3gmoFlhXG7sYjEny+ot4pBf3G5G56+k2Bl4ccM= =T3lG -----END PGP SIGNATURE----- From ayush.cena at gmail.com Tue Jun 24 16:36:59 2008 From: ayush.cena at gmail.com (Ayush Sharma) Date: Wed, 25 Jun 2008 05:06:59 +0530 Subject: [Enigmail] TNew User, Testing Enigmail and PGP - Help Needed In-Reply-To: <486181E6.1050406@sixdemonbag.org> References: <48614E2D.1090406@bellsouth.net> <486168ED.8060109@sixdemonbag.org> <48617F6E.1020803@bellsouth.net> <486181E6.1050406@sixdemonbag.org> Message-ID: <4861851B.7010000@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 > I work in keeping elections safe and secure. I work for the National > Science Foundation. I have no connections with any election machine > vendor -- it's pure research. My research has no potential to make > things worse (they're already about as bad as they can get); it has > potential to make things a lot better. > > So yeah, I sleep well at night. :) Hello Robert, If you don't mind me asking, is the National Science Foundation Affiliated to the US Government? Warm Regards, - -Ayush -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkhhhRsACgkQX85fnujYCQZB+gCePPSEzjfvGMJc0D+sy5JoqNYo vTwAnjo0ro5Mtt3XkEexkI3I/nALqvra =9Owo -----END PGP SIGNATURE----- From jmoore3rd at bellsouth.net Tue Jun 24 16:48:02 2008 From: jmoore3rd at bellsouth.net (John W. Moore III) Date: Tue, 24 Jun 2008 19:48:02 -0400 Subject: [Enigmail] TNew User, Testing Enigmail and PGP - Help Needed In-Reply-To: <4861851B.7010000@gmail.com> References: <48614E2D.1090406@bellsouth.net> <486168ED.8060109@sixdemonbag.org> <48617F6E.1020803@bellsouth.net> <486181E6.1050406@sixdemonbag.org> <4861851B.7010000@gmail.com> Message-ID: <486187B2.8090204@bellsouth.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Ayush Sharma wrote: > >> I work in keeping elections safe and secure. I work for the National >> Science Foundation. I have no connections with any election machine >> vendor -- it's pure research. My research has no potential to make >> things worse (they're already about as bad as they can get); it has >> potential to make things a lot better. > >> So yeah, I sleep well at night. :) > Hello Robert, > If you don't mind me asking, is the National Science > Foundation Affiliated to the US Government? > Warm Regards, Please allow Me to 'jump in' here; the NSF is a Bureaucratic Agency created by the U.S. Government to 'redistribute' wealth to 'worthy causes' as defined by the U.S. Congress. Election Fairness is well worth exploration, particularly since the Presidential Election of 2000. Robert will dispute My feelings that all taxpayer dollars are 'wasted' but what makes "America" GREAT, IMHO, is that We are all born with the right to disagree. So, A-Dogg, feel free to explore this with Me directly via IM at Your leisure. JOHN ;) Timestamp: Tuesday 24 Jun 2008, 19:47 --400 (Eastern Daylight Time) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.5.0-svn4754: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIYYevAAoJEBCGy9eAtCsPmfMIAIMENCeHpuak0WInzzvX1b0h x8OSC6b+yNWXlCZb59nLFAx4Z3LWN0HPd3uz79O6jN6yNVUmN+l6bLtkfsjmFHlP MrcP/oi6mk4unoFfkSpoMwUX64vsYFG6/P6z9RWBn8T2Q2VhKzyZDTwyW4l84iPb UYcrWGBwdhABs+n7ebNjBefsW3LzkNpozlxgfncjT+A0vJwqHMXQsal3lwbrjYhW 3jRgZugYpt+cpJIcixUE9mZPVDpoI9deNdWbRirtqFyoqByUspocpiauB8kDOglX GZcOQSHzwv1I0sYRi9NEdTSv3UKe9t67cHMvNzyu4Ar05aZuux0/OE1JaMHpu/E= =/zcg -----END PGP SIGNATURE----- From rjh at sixdemonbag.org Tue Jun 24 17:57:31 2008 From: rjh at sixdemonbag.org (Robert J. Hansen) Date: Tue, 24 Jun 2008 19:57:31 -0500 Subject: [Enigmail] TNew User, Testing Enigmail and PGP - Help Needed In-Reply-To: <4861851B.7010000@gmail.com> References: <48614E2D.1090406@bellsouth.net> <486168ED.8060109@sixdemonbag.org> <48617F6E.1020803@bellsouth.net> <486181E6.1050406@sixdemonbag.org> <4861851B.7010000@gmail.com> Message-ID: <486197FB.8090407@sixdemonbag.org> Ayush Sharma wrote: > If you don't mind me asking, is the National Science > Foundation Affiliated to the US Government? The NSF is a U.S. government agency that supports R&D into non-medical science and engineering. It is apolitical and is not connected to any intelligence, law-enforcement or military agency. I do not work for the NSF directly (my paychecks come from the University of Iowa), but the NSF funds my research. I have never had any contact with intelligence, law-enforcement or military personnel in connection with my work; my advisor, who is on the same project, has had some contact with various law-enforcement groups who are investigating election irregularities. I am not an NSF spokesman and none of my remarks here should be taken as being on behalf of the NSF. I am only speaking of my experience with them. Since this is very far afield of Enigmail, these will be my final remarks on my employment. I am only speaking about it because I know some Enigmail users are deeply suspicious of world governments, and may be unduly alarmed by the superficial similarities between the acronyms NSA and NSF. From faramir.cl at gmail.com Wed Jun 25 00:35:09 2008 From: faramir.cl at gmail.com (Faramir) Date: Wed, 25 Jun 2008 03:35:09 -0400 Subject: [Enigmail] TNew User, Testing Enigmail and PGP - Help Needed In-Reply-To: <486168ED.8060109@sixdemonbag.org> References: <48614E2D.1090406@bellsouth.net> <486168ED.8060109@sixdemonbag.org> Message-ID: <4861F52D.8000508@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Robert J. Hansen escribi?: > John W. Moore III wrote: >> You're next 'issue' is gonna be "Can I Encrypt/Decrypt?" and for that >> You will need to Email anyone on this List direct. I'm available; so is >> R.J. Hansen [the Spy for the Russians :-D ] and Charly; actually, > I happen to share a name with a lot of unpleasant people. There's an > Alaskan serial killer named Robert Christian Hansen (he and I are > actually from the same neck of the woods!), and a Russian spy named > Robert Philip Hanssen. You forgot about the basketball player, "Bob Hansen" ;) (yes, I searched it in wikipedia :P ) Best Regards -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEcBAEBCAAGBQJIYfUtAAoJEMV4f6PvczxA57IH/2jpMZ8DSxa5Xg2cijdh3CRM Q+bQLVzmY1qmWl/h6Uu57/hyewItVaZkToe1ycFrb+IF/DNMcTYFYlKqry9xYW/7 /VI71V5ZtguKdOYv8jiOEgpVudYZGwl3ognTiLqe8acdBWLuiHNezVhAPWTZ156N PJ1dhtHgIdv8h9lS7BUnxqnN9nwUh5BbjKkNwWyO49qy8/s10CU96yKoTihAHgEn 6jKyJfneZnnWOcgSIQCpnqDGf3/VNyg8LJfJP9lHnGjOiPTr47As+c6QyLPVUmin BnLNtxYJyfPQ/drJ6ugkZ/zRKKj4ICRIT2ltKYqg/yv4DqKgq/gafkJBUT/xYBg= =YqLH -----END PGP SIGNATURE----- From rjh at sixdemonbag.org Wed Jun 25 00:52:55 2008 From: rjh at sixdemonbag.org (Robert J. Hansen) Date: Wed, 25 Jun 2008 02:52:55 -0500 Subject: [Enigmail] TNew User, Testing Enigmail and PGP - Help Needed In-Reply-To: <4861F52D.8000508@gmail.com> References: <48614E2D.1090406@bellsouth.net> <486168ED.8060109@sixdemonbag.org> <4861F52D.8000508@gmail.com> Message-ID: <4861F957.9030605@sixdemonbag.org> Faramir wrote: > You forgot about the basketball player, "Bob Hansen" ;) I know Bob Hansen. Met him once many years ago, when he was still going by Bobby. He and I are both University of Iowa alumni. I imagine it's only a matter of time before he and I get each other's nametags at a Homecoming. From faramir.cl at gmail.com Wed Jun 25 03:46:24 2008 From: faramir.cl at gmail.com (Faramir) Date: Wed, 25 Jun 2008 06:46:24 -0400 Subject: [Enigmail] TNew User, Testing Enigmail and PGP - Help Needed In-Reply-To: <4861F957.9030605@sixdemonbag.org> References: <48614E2D.1090406@bellsouth.net> <486168ED.8060109@sixdemonbag.org> <4861F52D.8000508@gmail.com> <4861F957.9030605@sixdemonbag.org> Message-ID: <48622200.1020108@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Robert J. Hansen escribi?: > Faramir wrote: >> You forgot about the basketball player, "Bob Hansen" ;) > > I know Bob Hansen. Met him once many years ago, when he was still going > by Bobby. > > He and I are both University of Iowa alumni. I imagine it's only a > matter of time before he and I get each other's nametags at a Homecoming. Well... just to let you know you are not alone... in a small university, I found there were 3 other people named like me... thanks God here we have 2 last names, once from each parent, and also, since it is mandatory to carry the government issued ID card, most records use the ID number... if not... Regards -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEcBAEBCAAGBQJIYiIAAAoJEMV4f6PvczxAln4IAKSeLp4mYPhavo4A1E7sKOzS tyIc9BYdMJ3ikCpy0v1pVCmhomRmuVTOZD2FTWNB1f59Ja0yi6tc9exRdL5Qx5Ig +wMptMoTpgtjBHrYXcS9cLcjdtZQDiCKg5WQLMpc5g3yaQEA/x4bsoubjToYcDB0 Yvvt5R8UljLmJk+L5Ashq2LWx3DX1mIKH+3mUR0pUODjq0VidVCH/XkgASC/7x1w b41HVDUKXt8yI0eb2vEkgasV96IofjGL8VnS8U5p/wcbI7gCOO4h38F0oKVQ63+S t8uYftcI53db/WRW6XJfE4Z50/QXcAV1+VoOjecG55ySZkzbBNVA//B59a5fJb4= =I8sf -----END PGP SIGNATURE----- From darkrenegade80 at hotmail.com Thu Jun 26 03:23:00 2008 From: darkrenegade80 at hotmail.com (Barry Jefferson) Date: Thu, 26 Jun 2008 10:23:00 +0000 Subject: [Enigmail] PGP, Encryption and general help - Barry H Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi Ebveryone, I have a question if a key has been revoked and i have updated the keyserver to show this change can i delete the related files like the rev cert as i have already created a new key and updated the keyserver with my new contact info? Thanks, Baz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFIY25NvjsYKQ5Ju1cRAtiRAJ4qVy2U6aoJpDHldB3tcN0eVLxEfQCbBbiz j5xMWbhtd/e4zu8SgV0bnOI= =DoAL -----END PGP SIGNATURE----- _________________________________________________________________ The other season of giving begins 6/24/08. Check out the i?m Talkathon. http://www.imtalkathon.com?source=TXT_EML_WLH_SeasonOfGiving -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.mozdev.org/pipermail/enigmail/attachments/20080626/2ee0ca37/attachment.html From faramir.cl at gmail.com Thu Jun 26 03:36:01 2008 From: faramir.cl at gmail.com (Faramir) Date: Thu, 26 Jun 2008 06:36:01 -0400 Subject: [Enigmail] PGP, Encryption and general help - Barry H In-Reply-To: References: Message-ID: <48637111.9020805@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Barry Jefferson escribi?: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Hi Ebveryone, > > I have a question if a key has been revoked and i have updated the > keyserver to show this change can i delete the related files like the > rev cert as i have already created a new key and updated the keyserver > with my new contact info? > > Thanks, > Baz Well, if you revoked the key, then the revocation certificate is no longer needed... just check if the revoked status of the key has propagated through the key servers, and if it did, you can delete the rev cert. But I advice to not delete the revoked key from your keyring, since if you do that, you won't be able to decrypt messages/files encrypted to that key... A last word: wait for advice from other members of this list, I am not an expert, so... In other words, some members say about themselves "I can be wrong". In my case, "I can be right... maybe". Regards -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEcBAEBCAAGBQJIY3ERAAoJEMV4f6PvczxAzewIAKxI/4evCPEL5u+JaK5XrHYu AbTmIF7XtUK+k8cZR022zaBmTj2/CZpbBwhhFXx43VT80zqqLVl3lKr+qyBa+Jlk hRFGTucbbvKiUqs/lffJcBmuYiLxAQoe+UhoKG9aoA1NZpQPXlMpu/IkMoMgTQSb XXRYEYZC6EVsIJxPIicNNISe2AfDwTGu3ie63+pvNnF5tixt63IUrPTQ7JTkLs9l r1XyDZMcZFzl1gfp4VmXoVk+FcUhzDL6ByKKzFF1U5VVabdw2rLWLRIRXk3m7+nK mrUbIMY6OL/rQ+WS2rFtwfp4XyCwZd14E+diIowiu7OWMfONkQlTHTPx7Eu7ajQ= =YtX9 -----END PGP SIGNATURE----- From simon at simonloewen.com Thu Jun 26 03:41:30 2008 From: simon at simonloewen.com (Simon Loewen) Date: Thu, 26 Jun 2008 12:41:30 +0200 Subject: [Enigmail] PGP, Encryption and general help - Barry H In-Reply-To: <48637111.9020805@gmail.com> References: <48637111.9020805@gmail.com> Message-ID: <4863725A.1060200@simonloewen.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I would keep the key until you are certain that no one will send me any messages using the old key. - -- "...so we made her confess, then burned her at the stake. Feedback is that people accept that this is the sort of operation that is necessary and reasonable for the welfare of communities." No legitimate reason to know, no legitimate reason to ask. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (MingW32) iD8DBQFIY3JaKTaqpMPqlXYRAlunAKCDO9NmAa58VDt4u8is+sDcTDvmjgCgquuT xkzu3zOaDercn4GbgUxgMEQ= =7n4S -----END PGP SIGNATURE----- From darkrenegade80 at hotmail.com Thu Jun 26 03:42:45 2008 From: darkrenegade80 at hotmail.com (Barry Jefferson) Date: Thu, 26 Jun 2008 10:42:45 +0000 Subject: [Enigmail] PGP, Encryption and general help - Barry H Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Faramir wrote: | Barry Jefferson escribi?: |> -----BEGIN PGP SIGNED MESSAGE----- |> Hash: SHA1 | |> Hi Ebveryone, | |> I have a question if a key has been revoked and i have updated the |> keyserver to show this change can i delete the related files like the |> rev cert as i have already created a new key and updated the keyserver |> with my new contact info? | |> Thanks, |> Baz | | Well, if you revoked the key, then the revocation certificate is no | longer needed... just check if the revoked status of the key has | propagated through the key servers, and if it did, you can delete the | rev cert. But I advice to not delete the revoked key from your keyring, | since if you do that, you won't be able to decrypt messages/files | encrypted to that key... | | A last word: wait for advice from other members of this list, I am not | an expert, so... In other words, some members say about themselves "I | can be wrong". In my case, "I can be right... maybe". | | Regards Hi, I see no reason to keep the old key related things as i havent started encrypting messages until i updated to a newer key after i accidently revoked my old one just trying things Thanks Baz ~ _______________________________________________ Enigmail mailing list Enigmail at mozdev.org https://www.mozdev.org/mailman/listinfo/enigmail -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFIY3LpvjsYKQ5Ju1cRAu+1AJ9m/EKYIatgypnu6KHtF4Sgt+j9FQCgh1TJ BaJZT8i2Yjk9i3m3SsToU+c= =QR7Q -----END PGP SIGNATURE----- _________________________________________________________________ Need to know now? Get instant answers with Windows Live Messenger. http://www.windowslive.com/messenger/connect_your_way.html?ocid=TXT_TAGLM_WL_Refresh_messenger_062008 -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.mozdev.org/pipermail/enigmail/attachments/20080626/1c96f112/attachment.html From mlisten at hammernoch.net Thu Jun 26 03:46:13 2008 From: mlisten at hammernoch.net (=?UTF-8?B?THVkd2lnIEjDvGdlbHNjaMOkZmVy?=) Date: Thu, 26 Jun 2008 12:46:13 +0200 Subject: [Enigmail] PGP, Encryption and general help - Barry H In-Reply-To: <4863725A.1060200@simonloewen.com> References: <48637111.9020805@gmail.com> <4863725A.1060200@simonloewen.com> Message-ID: <48637375.1030806@hammernoch.net> Hi, On 26.06.2008 12:41, Simon Loewen wrote: > I would keep the key until you are certain that no one will send me any > messages using the old key. Well, that's virtually forever. You cannot be shure that everyone updates his keys. One reason to never ever delete a private key: You cannot be shure that some day some old encrypted backup pops up, it's encrypted to your old key and you desperately need a file from it. HTH Ludwig From ayush.cena at gmail.com Thu Jun 26 03:47:32 2008 From: ayush.cena at gmail.com (Ayush Sharma) Date: Thu, 26 Jun 2008 16:17:32 +0530 Subject: [Enigmail] PGP, Encryption and general help - Barry H In-Reply-To: References: Message-ID: <486373C4.2080206@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 > I see no reason to keep the old key related things as i havent started > encrypting messages until i updated to a newer key after i accidently > revoked my old one just trying things Hi Barry, Another word of caution. Make sure that if you had uploaded your *old and revoked key* to any keyserver, it either shows that your old key has been revoked, or at least shows a listing of your new key, so that anyone wanting to send an encrypted message to you, may not accidentally encrypt a message using your old key. Regards, - -Ayush -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkhjc8QACgkQX85fnujYCQZPBwCgjHAdLKg1P3DImQB8vZKzMvrL XBQAnRXP4ktjGK9OGyAC4EfOHGKykYDs =hbbk -----END PGP SIGNATURE----- From shavital at mac.com Thu Jun 26 04:18:16 2008 From: shavital at mac.com (Charly Avital) Date: Thu, 26 Jun 2008 07:18:16 -0400 Subject: [Enigmail] PGP, Encryption and general help - Barry H In-Reply-To: References: Message-ID: <48637AF8.7040204@mac.com> Barry Jefferson wrote the following on 6/26/08 6:42 AM: [...] > Hi, > > I see no reason to keep the old key related things as i havent started > encrypting messages until i updated to a newer key after i accidently > revoked my old one just trying things > > Thanks > Baz Hi Barry, 1. Your signature does not verify: -----BEGIN GPG OUTPUT----- gpg: Signature made Thu Jun 26 06:43:53 2008 EDT using DSA key ID 0E49BB57 gpg: BAD signature from "Barry H " -----END GPG OUTPUT----- I believe the reason is that you are composing your messages in HTML format. Better, much better use plain text. 2. Re your key 41E98DC4, from the server: This key was revoked on 2008-06-24 by DSA key 41E98DC4 Barry pub 1024D/41E98DC4 created: 2008-06-24 revoked: 2008-06-24 usage: SCA trust: unknown validity: revoked This key was revoked on 2008-06-24 by DSA key 41E98DC4 Barry sub 2048g/305ACAD1 created: 2008-06-24 revoked: 2008-06-24 usage: E [ revoked] (1). Barry 3. Re your key 0E49BB57 pub 1024D/0E49BB57 created: 2008-06-26 expires: 2013-06-25 usage: SCA trust: unknown validity: unknown sub 2048g/F5E7471A created: 2008-06-26 expires: 2013-06-25 usage: E (1). Barry H Going strong, but you have surely been careful to generate and file a revocation certificate. 4. Ayush Sharma wrote the following on 6/26/08 6:47 AM: > Hi Barry, > Another word of caution. Make sure that if you had uploaded > your *old and revoked key* to any keyserver, it either shows that your > old key has been revoked, or at least shows a listing of your new key, > so that anyone wanting to send an encrypted message to you, may not > accidentally encrypt a message using your old key. > Regards, > -Ayush I believe it is not possible to encrypt to a revoked key (revoked encryption subkey). Baz, take care, Charly MacOS 10.5.3 - MacBook Intel C2Duo - GnuPG 1.4.9 - GPG2 2.0.9 - Thunderbird 2.0.0.14 - Enigmail 0.96a GPGMail d53. From darkrenegade80 at hotmail.com Thu Jun 26 06:44:51 2008 From: darkrenegade80 at hotmail.com (Barry Jefferson) Date: Thu, 26 Jun 2008 13:44:51 +0000 Subject: [Enigmail] PGP, Encryption and general help - Barry Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Charly Avital wrote: | Barry Jefferson wrote the following on 6/26/08 6:42 AM: | [...] | |> Hi, |> |> I see no reason to keep the old key related things as i havent started |> encrypting messages until i updated to a newer key after i accidently |> revoked my old one just trying things |> |> Thanks |> Baz | | Hi Barry, | | 1. Your signature does not verify: | -----BEGIN GPG OUTPUT----- | gpg: Signature made Thu Jun 26 06:43:53 2008 EDT using DSA key ID 0E49BB57 | gpg: BAD signature from "Barry H " | -----END GPG OUTPUT----- | | | I believe the reason is that you are composing your messages in HTML | format. Better, much better use plain text. | | 2. Re your key 41E98DC4, from the server: | | This key was revoked on 2008-06-24 by DSA key 41E98DC4 Barry | | pub 1024D/41E98DC4 created: 2008-06-24 revoked: 2008-06-24 usage: SCA | trust: unknown validity: revoked | This key was revoked on 2008-06-24 by DSA key 41E98DC4 Barry | | sub 2048g/305ACAD1 created: 2008-06-24 revoked: 2008-06-24 usage: E | [ revoked] (1). Barry | | | 3. Re your key 0E49BB57 | pub 1024D/0E49BB57 created: 2008-06-26 expires: 2013-06-25 usage: SCA | trust: unknown validity: unknown | sub 2048g/F5E7471A created: 2008-06-26 expires: 2013-06-25 usage: E | (1). Barry H | | Going strong, but you have surely been careful to generate and file a | revocation certificate. | | 4. Ayush Sharma wrote the following on 6/26/08 6:47 AM: |> Hi Barry, |> Another word of caution. Make sure that if you had uploaded |> your *old and revoked key* to any keyserver, it either shows that your |> old key has been revoked, or at least shows a listing of your new key, |> so that anyone wanting to send an encrypted message to you, may not |> accidentally encrypt a message using your old key. |> Regards, |> -Ayush | | I believe it is not possible to encrypt to a revoked key (revoked | encryption subkey). | | Baz, take care, | | | Charly | MacOS 10.5.3 - MacBook Intel C2Duo - GnuPG 1.4.9 - GPG2 2.0.9 - | Thunderbird 2.0.0.14 - Enigmail 0.96a | GPGMail d53. | | | | _______________________________________________ | Enigmail mailing list | Enigmail at mozdev.org | https://www.mozdev.org/mailman/listinfo/enigmail | | Hi, I made sure to update and refresh keys on keyserver and create a new revocation certificate, can i delete my old key things as i never really started using that key to encrypt messages, it was properly started from when i made a new key. My main problem is settings in thunderbird as i don't know how to change to make plain text permanent when composing messages. Thanks, Baz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFIY52cvjsYKQ5Ju1cRApGQAJ0e0GkY22plhzfOucatEOSMTqBePQCfRjS0 mZje53xXs6eLdP2JdywpCOU= =vlIL -----END PGP SIGNATURE----- _________________________________________________________________ The i?m Talkathon starts 6/24/08.? For now, give amongst yourselves. http://www.imtalkathon.com?source=TXT_EML_WLH_LearnMore_GiveAmongst -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.mozdev.org/pipermail/enigmail/attachments/20080626/071edda4/attachment.html From martin.fluch at gmail.com Thu Jun 26 06:51:26 2008 From: martin.fluch at gmail.com (Martin Fluch) Date: Thu, 26 Jun 2008 14:51:26 +0100 Subject: [Enigmail] PGP, Encryption and general help - Barry In-Reply-To: References: Message-ID: <48639EDE.3050201@gmail.com> > My main problem is settings in thunderbird as i don't know how to > change to make plain text permanent when composing messages. You can change this behaviour in the Account Settings and there Composition & Addressing. - Martin -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 257 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080626/db4dfb5b/attachment-0001.bin From darkrenegade80 at hotmail.com Thu Jun 26 06:58:46 2008 From: darkrenegade80 at hotmail.com (Barry Jefferson) Date: Thu, 26 Jun 2008 13:58:46 +0000 Subject: [Enigmail] PGP, Encryption and general help - Barry Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Martin Fluch wrote: | |> My main problem is settings in thunderbird as i don't know how to |> change to make plain text permanent when composing messages. | | You can change this behaviour in the Account Settings and there | Composition & Addressing. | | - Martin | | | ------------------------------------------------------------------------ | | _______________________________________________ | Enigmail mailing list | Enigmail at mozdev.org | https://www.mozdev.org/mailman/listinfo/enigmail Thanks, Martin -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFIY6DVvjsYKQ5Ju1cRAlNwAJ4pfzJXEIn3lBFJBFsmtTljEtw7CwCdEab7 gPKO6arCoG64V6r8lPSBCak= =Z5Ym -----END PGP SIGNATURE----- _________________________________________________________________ The other season of giving begins 6/24/08. Check out the i?m Talkathon. http://www.imtalkathon.com?source=TXT_EML_WLH_SeasonOfGiving -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.mozdev.org/pipermail/enigmail/attachments/20080626/d42c6be3/attachment.html From shavital at mac.com Thu Jun 26 07:29:14 2008 From: shavital at mac.com (Charly Avital) Date: Thu, 26 Jun 2008 10:29:14 -0400 Subject: [Enigmail] PGP, Encryption and general help - Barry In-Reply-To: References: Message-ID: <4863A7BA.6070509@mac.com> Barry Jefferson wrote the following on 6/26/08 9:44 AM: [...] > | Hi, > I made sure to update and refresh keys on keyserver and create a new > revocation certificate, can i delete my old key things as i never really > started using that key to encrypt messages, it was properly started from > when i made a new key. In that case, I believe you can delete your revoked key from your key ring. Just be careful not to delete the new one :-) > My main problem is settings in thunderbird as i > don't know how to change to make plain text permanent when composing > messages. That question has been answered by martin.fluch at gmail.com: > You can change this behaviour in the Account Settings and there > Composition & Addressing. Just *unmark* the small square button 'Compose messages in HTML format' Baz, a friendly suggestion: when posting to a list, it's considered good practice to edit the quoted text, leaving only the relevant part or parts. It makes for easier reading, and it might even save broadband usage. Charly From John at Mozilla-Enigmail.org Thu Jun 26 17:21:38 2008 From: John at Mozilla-Enigmail.org (John Clizbe) Date: Thu, 26 Jun 2008 19:21:38 -0500 Subject: [Enigmail] PGP, Encryption and general help - Barry H In-Reply-To: <48637AF8.7040204@mac.com> References: <48637AF8.7040204@mac.com> Message-ID: <48643292.6@Mozilla-Enigmail.org> Charly Avital wrote: > > I believe it is not possible to encrypt to a revoked key (revoked > encryption subkey). It /actually/ is possible. One has to remove the revocation first. Details are left as a exercise for the reader. -- John P. Clizbe Inet: John (a) Mozilla-Enigmail.org You can't spell fiasco without SCO. PGP/GPG KeyID: 0x608D2A10/0x18BB373A "what's the key to success?" / "two words: good decisions." "what's the key to good decisions?" / "one word: experience." "how do i get experience?" / "two words: bad decisions." "Just how do the residents of Haiku, Hawai'i hold conversations?" -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 677 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080626/a65892e5/attachment.bin From shavital at mac.com Thu Jun 26 20:11:10 2008 From: shavital at mac.com (Charly Avital) Date: Thu, 26 Jun 2008 23:11:10 -0400 Subject: [Enigmail] PGP, Encryption and general help - Barry H In-Reply-To: <48643292.6@Mozilla-Enigmail.org> References: <48637AF8.7040204@mac.com> <48643292.6@Mozilla-Enigmail.org> Message-ID: <48645A4E.9000300@mac.com> John Clizbe wrote the following on 6/26/08 8:21 PM: > Charly Avital wrote: >> I believe it is not possible to encrypt to a revoked key (revoked >> encryption subkey). > > It /actually/ is possible. One has to remove the revocation first. > Details are left as a exercise for the reader. > Exercise for the reader: >From GnuPG's Guide "If you forget your passphrase or if your private key is compromised or lost, this revocation certificate may be published to notify others that the public key should no longer be used. *A revoked public key can still be used to verify signatures made by you in the past*, *but it cannot be used to encrypt future messages to you*. It also *does not affect your ability to decrypt messages sent to you in the past if you still do have access to the private key*." From faramir.cl at gmail.com Thu Jun 26 20:36:58 2008 From: faramir.cl at gmail.com (Faramir) Date: Thu, 26 Jun 2008 23:36:58 -0400 Subject: [Enigmail] PGP, Encryption and general help - Barry H In-Reply-To: <48645A4E.9000300@mac.com> References: <48637AF8.7040204@mac.com> <48643292.6@Mozilla-Enigmail.org> <48645A4E.9000300@mac.com> Message-ID: <4864605A.3070004@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Charly Avital escribi?: > John Clizbe wrote the following on 6/26/08 8:21 PM: >> Charly Avital wrote: >>> I believe it is not possible to encrypt to a revoked key (revoked >>> encryption subkey). >> It /actually/ is possible. One has to remove the revocation first. >> Details are left as a exercise for the reader. >> > > Exercise for the reader: > >>From GnuPG's Guide > > "If you forget your passphrase or if your private key is compromised or > lost, this revocation certificate may be published to notify others that > the public key should no longer be used. *A revoked public key can still > be used to verify signatures made by you in the past*, *but it cannot be > used to encrypt future messages to you*. It also *does not affect your > ability to decrypt messages sent to you in the past if you still do have > access to the private key*." Yes... but remember there are some commands to force gpg to do things you usually should not do... I don't *know* if there is a command to force it to encrypt to a revoked key, but I *bet* there is such command... However, I get what Charly means... gpg won't do that using the normal settings... it won't happen by mistake... at least, not unless you have really messed the config file (I am talking about "happening by mistake", in such context, it would be a messed config file... if it is done on purpose, that is "hacking and testing" :) ). Regards -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEcBAEBCAAGBQJIZGBaAAoJEMV4f6PvczxAP30IAJ/GEcRddTbnfnnlDW1Mik37 OlAulMvgcEii/93eiHND7MX2cppe6/oEf7hytjaxXzZiOMqvKFUPVsmFLeqEzLm7 x+LIdw4f99kS/MG95VbIXIY8OOgcDEVZ+Oe5yogLdzOgplXH+l5NEUxrUUpKfOXS pZiVM2/8ZrHpDH/FomUhRhaDLv0PSBlUaNOnFlg/R4Ib0X27x4j/nRBa64biVec5 bvQKD28EyalU2JoViFQn9WPhM0T9LLqip4ZzaSmbev6GGq36sppar5oaMZpngjZP cyiHbQ5G04457fAlNfCa6qzWfypMXzYnvtYmBPoRb5guMtsfXqNtf7SYwwTtxpc= =NLpz -----END PGP SIGNATURE----- From rjh at sixdemonbag.org Thu Jun 26 20:47:50 2008 From: rjh at sixdemonbag.org (Robert J. Hansen) Date: Thu, 26 Jun 2008 22:47:50 -0500 Subject: [Enigmail] PGP, Encryption and general help - Barry H In-Reply-To: <48645A4E.9000300@mac.com> References: <48637AF8.7040204@mac.com> <48643292.6@Mozilla-Enigmail.org> <48645A4E.9000300@mac.com> Message-ID: <486462E6.8050504@sixdemonbag.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Charly Avital wrote: >From GnuPG's Guide ... John is right. OpenPGP is a big and complex standard, and it's not possible to accurately and completely sum up all the behaviors of as complex a subsystem as key revocation in a single paragraph. As far as 99% of GnuPG users are concerned, the manual explanation is sufficient. For people who really need a way to do this, one exists, but it's obnoxious and the people who know how to do it are within our rights to say "it's possible, but you don't want to do it and I'm not going to hold your hand through it." -----BEGIN PGP SIGNATURE----- Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iFYEAREIAAYFAkhkYuUACgkQf2XByo0Cu7MqbQDgj0m5DM+ZAvgaBbYKkAF+4cp6 KFppe8BBFDJdjgDfeXHmPY7pVDtGx67g/Twx2u/BdgP4zBJBp4WS74kBHAQBAQgA BgUCSGRi5QAKCRC3APSC/q+BCRLxCADlMT9/Rxi97w4n2YLmDaJ55dgQCwz6w0JD MvrjBHrt/ZNkzV3znLNEjOUIzR/msYVMrmodRd/lIiK2/lbWKQJr4WHgPISplN2d +yBhdEs1iL+woU3f8Ue94ZtnePeHxCbKBv3SfHwhX/j9YyeqNyE5DeGP4PJ0uQpy 26kwCWvBlHtwqAbyUP6TOlB50yi+EsAXaBX/9RtLa8PBsl6V3SbpQAhLcAyFGo6j hPPpRQl/FCZ/nIVFUvbJ1lBOc9tCen2omahumJif5rv3IN7heDVOVZWK9CeVGeKq KZ6gcZeEHYdrNAuZOO9ItP35USiamTvhwvR7FmbeUJoJaq5rhN0K =QV8M -----END PGP SIGNATURE----- From shavital at mac.com Thu Jun 26 21:31:52 2008 From: shavital at mac.com (Charly Avital) Date: Fri, 27 Jun 2008 00:31:52 -0400 Subject: [Enigmail] Revoked keys - was: PGP, Encryption and general help - Barry H In-Reply-To: <486462E6.8050504@sixdemonbag.org> References: <48637AF8.7040204@mac.com> <48643292.6@Mozilla-Enigmail.org> <48645A4E.9000300@mac.com> <486462E6.8050504@sixdemonbag.org> Message-ID: <48646D38.3010607@mac.com> Robert J. Hansen wrote the following on 6/26/08 11:47 PM: [...] > As far as 99% of GnuPG users are concerned, the manual explanation is > sufficient. For people who really need a way to do this, one exists, > but it's obnoxious and the people who know how to do it are within our > rights to say "it's possible, but you don't want to do it and I'm not > going to hold your hand through it." A revocation certificate is uploaded to a keyserver. The key (+subkeys as it may apply) is/are revoked. Everywhere I could read about keyservers, a user can add information or components (?) to his/her key, but cannot remove anything from the server. Does this apply also to a revocation certificate? Is it possible to remove the revocation from a revoked key that is already in the keyservers? If it is possible, I don't want to know about it, and I really don't want anybody to hold my hand through the process, if there is such a process. Charly From shavital at mac.com Thu Jun 26 21:35:47 2008 From: shavital at mac.com (Charly Avital) Date: Fri, 27 Jun 2008 00:35:47 -0400 Subject: [Enigmail] PGP, Encryption and general help - Barry H In-Reply-To: <4864605A.3070004@gmail.com> References: <48637AF8.7040204@mac.com> <48643292.6@Mozilla-Enigmail.org> <48645A4E.9000300@mac.com> <4864605A.3070004@gmail.com> Message-ID: <48646E23.4080600@mac.com> Faramir wrote the following on 6/26/08 11:36 PM: [...] > > Yes... but remember there are some commands to force gpg to do things > you usually should not do... Such as? > I don't *know* if there is a command to > force it to encrypt to a revoked key, but I *bet* there is such command... You bet. > > However, I get what Charly means... gpg won't do that using the normal > settings... it won't happen by mistake... at least, not unless you have > really messed the config file (I am talking about "happening by > mistake", in such context, it would be a messed config file... if it is > done on purpose, that is "hacking and testing" :) ). If hacking and testing can force gpg to do things one usually shouldn't do, then what's the good of GnuPG? Charly From John at Mozilla-Enigmail.org Thu Jun 26 21:58:31 2008 From: John at Mozilla-Enigmail.org (John Clizbe) Date: Thu, 26 Jun 2008 23:58:31 -0500 Subject: [Enigmail] Revoked keys - was: PGP, Encryption and general help - Barry H In-Reply-To: <48646D38.3010607@mac.com> References: <48637AF8.7040204@mac.com> <48643292.6@Mozilla-Enigmail.org> <48645A4E.9000300@mac.com> <486462E6.8050504@sixdemonbag.org> <48646D38.3010607@mac.com> Message-ID: <48647377.8060601@Mozilla-Enigmail.org> Charly Avital wrote: > Everywhere I could read about keyservers, a user can add information or > components (?) to his/her key, but cannot remove anything from the server. You can't. I can "remove" a key from my keyserver, but it'll be back the next reconciliation cycle. > Does this apply also to a revocation certificate? > > Is it possible to remove the revocation from a revoked key that is > already in the keyservers? Absolutely. I got the key below from my keyserver > If it is possible, I don't want to know about it, and I really don't > want anybody to hold my hand through the process, if there is such a > process. I met Rob online a couple years *after* this key was revoked and about a year after I got involved w/ OpenPGP. There is not a chance I have an nonrevoked copy of this key pigeon-holed somewhere. jpclizbe at Yogi ~/test $ gpg --list-key 0x4CC810B9 pub 2048R/4CC810B9 2001-10-12 [revoked: 2002-05-02] uid Robert J. Hansen jpclizbe at Yogi ~/test $ gpg --export --no-armor 0x4CC810B9 > 0x4CC810B9.gpg *Magic incantations uttered* jpclizbe at Yogi ~/test $ gpg --delete-key 0x4CC810B9 pub 2048R/4CC810B9 2001-10-12 Robert J. Hansen Delete this key from the keyring? (y/N) y jpclizbe at Yogi ~/test $ gpg --import 0x4CC810B9.gpg gpg: key 4CC810B9: public key "Robert J. Hansen " imported gpg: Total number processed: 1 gpg: imported: 1 (RSA: 1) jpclizbe at Yogi ~/test $ gpg --list-key 0x4CC810B9 pub 2048R/4CC810B9 2001-10-12 uid Robert J. Hansen Buwahahahaha. Just kidding. Create a key, don't send it to any keyserver. Revoke it. Now send it to a keyserver and send me the key ID. I'll send you a message encrypted with the key. Fair enough? -- John P. Clizbe Inet: John (a) Mozilla-Enigmail.org You can't spell fiasco without SCO. hkp://keyserver.gingerbear.net or mailto:pgp-public-keys at gingerbear.net?subject=HELP Q:"Just how do the residents of Haiku, Hawai'i hold conversations?" A:"An odd melody / island voices on the winds / surplus of vowels" -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 677 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080626/e5c3b1a3/attachment.bin From John at Mozilla-Enigmail.org Thu Jun 26 22:04:13 2008 From: John at Mozilla-Enigmail.org (John Clizbe) Date: Fri, 27 Jun 2008 00:04:13 -0500 Subject: [Enigmail] Revoked keys - was: PGP, Encryption and general help - Barry H In-Reply-To: <48647377.8060601@Mozilla-Enigmail.org> References: <48637AF8.7040204@mac.com> <48643292.6@Mozilla-Enigmail.org> <48645A4E.9000300@mac.com> <486462E6.8050504@sixdemonbag.org> <48646D38.3010607@mac.com> <48647377.8060601@Mozilla-Enigmail.org> Message-ID: <486474CD.80504@Mozilla-Enigmail.org> John Clizbe wrote: > Charly Avital wrote: >> >> Is it possible to remove the revocation from a revoked key that is >> already in the keyservers? > > Absolutely. I got the key below from my keyserver > OOOOOOPPPPPPSSSSS I forgot to add, "... but the keyserver network copy stays revoked." -- John P. Clizbe Inet: John (a) Mozilla-Enigmail.org You can't spell fiasco without SCO. hkp://keyserver.gingerbear.net or mailto:pgp-public-keys at gingerbear.net?subject=HELP Q:"Just how do the residents of Haiku, Hawai'i hold conversations?" A:"An odd melody / island voices on the winds / surplus of vowels" -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 677 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080627/570da597/attachment.bin From shavital at mac.com Thu Jun 26 22:15:18 2008 From: shavital at mac.com (Charly Avital) Date: Fri, 27 Jun 2008 01:15:18 -0400 Subject: [Enigmail] Revoked keys - was: PGP, Encryption and general help - Barry H In-Reply-To: <48647377.8060601@Mozilla-Enigmail.org> References: <48637AF8.7040204@mac.com> <48643292.6@Mozilla-Enigmail.org> <48645A4E.9000300@mac.com> <486462E6.8050504@sixdemonbag.org> <48646D38.3010607@mac.com> <48647377.8060601@Mozilla-Enigmail.org> Message-ID: <48647766.4070906@mac.com> John Clizbe wrote the following on 6/27/08 12:58 AM: [...] > Create a key, don't send it to any keyserver. Revoke it. Now send it to a > keyserver and send me the key ID. I'll send you a message encrypted with the > key. Fair enough? Fair enough. Are there any other magic incantations, that Puzzle Palace is aware of? Charly From John at Mozilla-Enigmail.org Thu Jun 26 22:48:38 2008 From: John at Mozilla-Enigmail.org (John Clizbe) Date: Fri, 27 Jun 2008 00:48:38 -0500 Subject: [Enigmail] Revoked keys - was: PGP, Encryption and general help - Barry H In-Reply-To: <48647766.4070906@mac.com> References: <48637AF8.7040204@mac.com> <48643292.6@Mozilla-Enigmail.org> <48645A4E.9000300@mac.com> <486462E6.8050504@sixdemonbag.org> <48646D38.3010607@mac.com> <48647377.8060601@Mozilla-Enigmail.org> <48647766.4070906@mac.com> Message-ID: <48647F36.5030008@Mozilla-Enigmail.org> Charly Avital wrote: > John Clizbe wrote the following on 6/27/08 12:58 AM: > [...] > >> Create a key, don't send it to any keyserver. Revoke it. Now send it to a >> keyserver and send me the key ID. I'll send you a message encrypted with the >> key. Fair enough? > > Fair enough. > > Are there any other magic incantations, that Puzzle Palace is aware of? I wouldn't know; have never had any personal involvement with any of them. And if I did, I still couldn't tell you that I had. You'd have to ask someone in crypto who worked there. But then, they wouldn't tell you either. As hacks go, this one isn't all that difficult if you think hard about it. Might earn one the Scary Devil Monastery[1] BOFH[2] Leatherman[3]. -John [1] http://en.wikipedia.org/wiki/Alt.sysadmin.recovery [2] http://scarydevilmonastery.net/ (Note: buy the Abbot a beer for this) [3] http://www.leatherman.com/ -- John P. Clizbe Inet: John (a) Mozilla-Enigmail.org You can't spell fiasco without SCO. hkp://keyserver.gingerbear.net or mailto:pgp-public-keys at gingerbear.net?subject=HELP Q:"Just how do the residents of Haiku, Hawai'i hold conversations?" A:"An odd melody / island voices on the winds / surplus of vowels" -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 677 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080627/6b67684b/attachment-0001.bin From faramir.cl at gmail.com Fri Jun 27 02:04:46 2008 From: faramir.cl at gmail.com (Faramir) Date: Fri, 27 Jun 2008 05:04:46 -0400 Subject: [Enigmail] PGP, Encryption and general help - Barry H In-Reply-To: <48646E23.4080600@mac.com> References: <48637AF8.7040204@mac.com> <48643292.6@Mozilla-Enigmail.org> <48645A4E.9000300@mac.com> <4864605A.3070004@gmail.com> <48646E23.4080600@mac.com> Message-ID: <4864AD2E.9010405@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Charly Avital escribi?: > Faramir wrote the following on 6/26/08 11:36 PM: > [...] > >> Yes... but remember there are some commands to force gpg to do things >> you usually should not do... > > Such as? I am sure I saw a weird thing somewhere... but now I checked the manual, and just found the option to be able to sign a revoked key... ok, it is silly, but not dangerous... Manuals insist in making fun of me... some days they say something, and other days the same manual doesn't say that anymore XD >> I don't *know* if there is a command to >> force it to encrypt to a revoked key, but I *bet* there is such command... > > You bet. This time I lost... > If hacking and testing can force gpg to do things one usually shouldn't > do, then what's the good of GnuPG? Well, I figure it is like a safebelt... if you use it as it is intended, is useful, but if you "close" it before sitting (so it would be behind your back instead of in front of you), it would be really useless. Now, I don't know if it is possible to do something like that with gpg... I am *just* supposing. But actually, I can do stupid things with gpg... like sending you a file encrypted to my own key... Regards -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEcBAEBCAAGBQJIZK0uAAoJEMV4f6PvczxABFQH/RpMe6JTduIb9MeMN9mgRtgy 859irvnqJJGk6r5iIyMN2yjPSjC67blLRHljL9TMhD+XqfAqTXajA927dAnsklUQ LSjPm+8BLcQ704ymTqovTg5+4aaAwrN7uSUSqehvOr4CGzIQMu3QFRJJE7Rz+PZL XXMlLLA/ofM7WSIKxa7vpHbLwy0Byxe0Db4VfLsg9qjF+emJ/z8asxEn7BLvKxn7 38GY1LC01MG06LpmbfWs0ajQtPzBCooAVd7NnSHM9tNSxlsfBp7VQCaw6Sub+XMT an7sqVWxtp7hao0ARKp3p8t+8BgGbyI99FbTRpnWo456oFVa9cojHG8NATMJ5yA= =D3u4 -----END PGP SIGNATURE----- From csmith at artsci.wustl.edu Fri Jun 27 09:14:29 2008 From: csmith at artsci.wustl.edu (C E Smith) Date: Fri, 27 Jun 2008 12:14:29 -0400 Subject: [Enigmail] hello world Message-ID: <486511E5.3070602@artsci.wustl.edu> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 testing enigmail for the first time cheers -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkhlEeUACgkQ4EZLkrY228tn4ACeL9rI168CQ3v0OYIo82iwjm3E 3UsAmwZkctCYpEYr4wfSrTp+YybQp1bA =T7Ti -----END PGP SIGNATURE----- From John at Mozilla-Enigmail.org Fri Jun 27 12:46:25 2008 From: John at Mozilla-Enigmail.org (John Clizbe) Date: Fri, 27 Jun 2008 14:46:25 -0500 Subject: [Enigmail] hello world In-Reply-To: <486511E5.3070602@artsci.wustl.edu> References: <486511E5.3070602@artsci.wustl.edu> Message-ID: <48654391.3050902@Mozilla-Enigmail.org> C E Smith wrote: > testing Enigmail for the first time It /looks/ like Enigmail is working. 'Looks' is the best anyone can tell you at the moment. It appears that you have not sent your key to the keyservers. Had you sent your key to the keyservers, folks could've verified the signature you had on this last message. Until then, ie until it is available: 1) See if the original message in your Sent folder verifies OK 2a) Send yourself a signed message and see if that verifies when you receive it. 2b) You can also send yourself an encrypted message. *Until your public key is available, there is nothing others can help you with* Within Enigmail, you may open the key management window, right click the key, and select "upload to key server"... pool.sks-keyservers.net is a great choice -- John P. Clizbe Inet: John (a) Mozilla-Enigmail.org You can't spell fiasco without SCO. hkp://keyserver.gingerbear.net or mailto:pgp-public-keys at gingerbear.net?subject=HELP Q:"Just how do the residents of Haiku, Hawai'i hold conversations?" A:"An odd melody / island voices on the winds / surplus of vowels" -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 677 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080627/17ee7a66/attachment.bin From olav at mozilla-enigmail.org Fri Jun 27 12:52:34 2008 From: olav at mozilla-enigmail.org (Olav Seyfarth) Date: Fri, 27 Jun 2008 21:52:34 +0200 Subject: [Enigmail] hello world In-Reply-To: <486511E5.3070602@artsci.wustl.edu> References: <486511E5.3070602@artsci.wustl.edu> Message-ID: <48654502.1020700@mozilla-enigmail.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Hi C E Smith, > testing enigmail for the first time Welcome! Your test partly worked. You managed to set up GnuPG, Thunderbird and Enigmail, create a key pair, subscribe to this list and send a signed message to us all. The gory details: However, a message signed with your private key can only be verified when the receipient is able to get hold of your public key. There are keyservers for that task where you may put it but you may also add a note to your email where receipients should download it or send your key along with each of your messages. In fact, the latter is what S/MIME (a similar but incompatible signing/encryption standard) does. Your test status: Since I could not locate your key, I could not verify the integrity of your message. But it looks like an inline signed PGP message, so your program setup most probably is OK. If you intend to use your key from now on, then upload it to a keyserver. You may use Enigmail's Key Management feature for that. A word of caution: Mind that keys uploaded cannot be deleted from a keyserver, just revoked. That means, that your UID (usually containing your Email address, necessary to be retrieved automatically by receipients) will be publicly visible as long as any of these (internetworked) servers remains. And that is assumed to be a loooong time. So be thoughtful what you do and don't ignore Enigmail's request to create a "Revocation Certificate", and store it at some safe place. Olav -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Diese ist eine Digitale Signatur nach OpenPGP-Standard Comment: Weitere Informationen: http://privat.seyfarth.de/olav/schluessel.html iEYEAREIAAYFAkhlRQAACgkQL/NBt8fdKe2iIwCfZX5LBJfjeBcG4CDH1Qw1WdRI t4AAn2485gezehuPtbtV1TzVr/7VBTD3 =EReN -----END PGP SIGNATURE----- From faramir.cl at gmail.com Fri Jun 27 12:53:21 2008 From: faramir.cl at gmail.com (Faramir) Date: Fri, 27 Jun 2008 15:53:21 -0400 Subject: [Enigmail] hello world In-Reply-To: <486511E5.3070602@artsci.wustl.edu> References: <486511E5.3070602@artsci.wustl.edu> Message-ID: <48654531.8030304@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 C E Smith escribi?: > testing enigmail for the first time > > cheers Did you upload you public key to a key server? I suggest using pool.sks-keyservers.net Regards -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEcBAEBCAAGBQJIZUUxAAoJEMV4f6PvczxALi0H/2LGEeXzD/1dkWNhjLpwdYiG IHMXFz3JcxFV5br164cruaqxJLWqosoSHnodIhF8FweYOPpNtAXqIrSmxJFUo3Vl sL3pyq+OAH5jnJunRnyCY/P1OJ7gkYX9rToKd5GjRGSbhBagitJYF6imnl7YMSTo utsASTdsOuspKvWSUHDJW0jd2DUw5kfHYMsQet/hd72vJYNYVZknnG3pDzLMtMyw SUQNK0OXfPtFHdKrNjQwzAQuZW7Qh0TgCToVYs99evK1e0O9GIheSKBfqWgnTXRR jzxT/t0M/kF4MlkUo79JWIrVTDZsM2Irw8jL4j9HIL6HgsrlSY66MF8xDdJ8LBs= =x/VQ -----END PGP SIGNATURE----- From rjh at sixdemonbag.org Fri Jun 27 20:55:47 2008 From: rjh at sixdemonbag.org (Robert J. Hansen) Date: Fri, 27 Jun 2008 22:55:47 -0500 Subject: [Enigmail] URL relocation Message-ID: <4865B643.3020300@sixdemonbag.org> For some years now I've kept a cryptography FAQ up at my home domain, as well as mirrored in a couple of other places. In the spirit of getting my house all in order, I've overhauled the pages and upgraded them to XHTML 1.1, the most recent revision of the HTML standard. This has necessitated a change in filename, so for those who have it bookmarked, update your bookmarks. :) http://sixdemonbag.org/cryptofaq.html ... is now ... http://sixdemonbag.org/cryptofaq.xhtml Unfortunately, Internet Explorer is no longer able to read the page. If that's all you care about, you can stop reading now. If you feel the burning, insistent need to know _why_ I'm barring >70% of browser users from viewing the page, the technical details are below. ===== XHTML has been around for eight years, ever since January of 2000. Internet Explorer still cannot read XHTML, not even in IE8 Beta 1; in fact, it looks as if XHTML will not be supported until IE9 in 2010 or so. There are two things I'm not interested in arguing about: (a) Microsoft's refusal to fully support internet standards eight years after their initial release (b) How evil I am for locking Internet Explorer users out of the FAQ. I am indifferent to all things Microsoft, so (a) is of zero interest to me. With respect to (b), I do not do this lightly, but I cannot any longer justify keeping my pages broken to accommodate IE users. After eight years I'm putting my foot down. For those who are interested in the technical nitty-gritty, XHTML 1.1 requires that pages be sent with a MIME type of application/xhtml+xml. IE cannot handle documents with this MIME type, and it will not even attempt to read them. From taum.hanlon at gmail.com Sun Jun 29 11:11:36 2008 From: taum.hanlon at gmail.com (Taum Hanlon) Date: Sun, 29 Jun 2008 14:11:36 -0400 Subject: [Enigmail] greetings Message-ID: <4867D058.70704@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I'm new to the list and to Enigmail. I've tried using encryption a few times over the years but it never lasted. Hopefully I can learn from the list how to use Enigmail effectively and incorporate it into daily usage. I'm sure I'll have the same stupid/silly questions that most users have over the next few days/weeks. Taum -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQIcBAEBAgAGBQJIZ9BYAAoJEGx5a+pIWOREQp4P/jvbeuZNmGjihloVzgc9wR9T MZo9akNnvWOj1ojy3MTyM/5ab0pBNfMTUTqxva3cvSgZ7zs+dzj6+MEm2g9OXCao uPZE/QsR5w0/6SI29jP8xsyDxsI7j0oFxWLTIzAbsa/brb03JU6nbxzs+pYUP4Wr yXGuxKqMXOhWuhCYL3w2vCQTf08q6mJ6qm7vzC5C/ucK4XDMCV0f9a2P7q+9OopM iuusyWqlLghY/g+tFGRAIG05GEjzsn895yeyyeih1jY7AKr2NFGY/qsU5hyGGA9K Q8WpQPWrS4OaUkYdkaECfghWXGlUbwK9xv/rD4UyznbNydu0ZXB7VJA4JAdlntaL J0Kv44MdzIwYdPGz+NyOKXggzIB6NgkbVo3pQPbp/b7aV87RHrIY3gCwFGLbbzJB VQzkEWiJcN1MsbbELrXpHw5FQmc9K/f4q4+5umESWViARp/tx+eObv18wuo8I++4 auS+yqm/CVl+l2TrP2xae3VNVApPZMgz9jLDtL6X1E4MPN7y3yf7SIiWJ5zDXQYV bOcy1BP0kwj+BBteMAiZ7rBb0ey18CzTAWptiZLKhf5KPdLGdPTxtbKHYST5Re8l mAQY0lV4/8UL1GoFp4ToNkBNMpyHN2beNIAGkSWNpqiyw9bJIu1KpAoE5ecASfZB d6+dQiQD+p0yWWJt9OOs =Uq2F -----END PGP SIGNATURE----- From jmoore3rd at bellsouth.net Sun Jun 29 11:56:02 2008 From: jmoore3rd at bellsouth.net (John W. Moore III) Date: Sun, 29 Jun 2008 14:56:02 -0400 Subject: [Enigmail] greetings In-Reply-To: <4867D058.70704@gmail.com> References: <4867D058.70704@gmail.com> Message-ID: <4867DAC2.9050803@bellsouth.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Taum Hanlon wrote: > I'm new to the list and to Enigmail. > I've tried using encryption a few times over the years but it never lasted. > Hopefully I can learn from the list how to use Enigmail effectively and > incorporate it into daily usage. > > I'm sure I'll have the same stupid/silly questions that most users have > over the next few days/weeks. Feel free to ask Questions at any time. The only 'stupid' Question is the one not asked. I am unable to verify Your Signature as I could not locate Your Public Key on any Keyserver. I suggest that You either Upload Your Public Key to a reliable Keyserver, include a Link to it in a Comment Line or use the Account Settings > OpenPGP area to have Enigmail include a Link to Your Key in Message Headers. :) JOHN ;) Timestamp: Sunday 29 Jun 2008, 14:55 --400 (Eastern Daylight Time) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.5.0-svn4754: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIZ9q/AAoJEBCGy9eAtCsPT3QH/2i1uOsOgYL9BACBn3D7tfju qKzWampcZ1zWsv8ZqinDO2J+q7S/Z2Fif29QObKrPYLQ4CN/KuesFDhfqu0o1KkF nphg2OnSmYWelzfV2O/S1qlDTA0iT9iFvMSWlWynGm0CTr25MTNuHJayZm1eV2jj w94xpENn+9K9qsgEGOGLBbIqnqHQESwVRRs4Ms4xpaVaywUBF3Ud3LjmbafU7Fmt 7ZggF7NO4r346kryycF9KQ2oHdKdNHa2Ska/IOnnpvy4SLs8NlZnVS1f/NazR4Lf EPNEhtwldjZzC6wzSbe0Nf2d4zYBDwrUb+3WxOptbCDJagJss4iTVuyUQLhvwQs= =UYF0 -----END PGP SIGNATURE----- From taum.hanlon at gmail.com Sun Jun 29 13:07:52 2008 From: taum.hanlon at gmail.com (Taum Hanlon) Date: Sun, 29 Jun 2008 16:07:52 -0400 Subject: [Enigmail] and for my first mistake... Message-ID: <4867EB98.5010408@gmail.com> I first generated a key using RSA 4096 and then read that I should use the default DSA/ElGamal ... so I got rid of it and generated the type recommended in the FAQ. ...and I published it to pool.sks-keyservers.net I have a question regarding setting owner trust and signing. If you trust somebody and sign their key, the manual says it is good etiquette to send them the new signed key and allow them to upload to a key server. Does this mean that everytime your key is signed you need to upload it to a key server to have that signture? Also, can a key be signed by multiple people before it is uploaded to a key server? (I'm wondering how 'key parties' work) From darkrenegade80 at hotmail.com Mon Jun 30 02:39:42 2008 From: darkrenegade80 at hotmail.com (Barry Jefferson) Date: Mon, 30 Jun 2008 09:39:42 +0000 Subject: [Enigmail] Help - Taum Tanlon Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi Taum, Welcome to the board first of all, enigmail can seem daunting at first but you will learn if you have patience and take your time. I have checked your Key ID: 0x4858E444 on the keyserver and it came back with no security data If i were you i would create a new id key by going to OpenPGP -> Key Management -> Generate -> New Key Pair Save the revocation cert if you ever update your key this is used to disable the old key and let others know when they search for you on the database. Make sure you always have an up to date copy of your key stored on the server and a backup of your current ID key go to key management screen you should see your key there once you have finished the new key pair wizard, now right click and select 'Upload Public Key to Keyserver' But the main problem i have had was learning that rules for the recipient had to be setup or every encrypted message wouldn't display. This is setup by right clicking the persons email and selecting 'Create OpenPGP Rule for this Address' and searching for their key from the server. Hope this kind of helps Baz _______________________________________________ Enigmail mailing list Enigmail at mozdev.org https://www.mozdev.org/mailman/listinfo/enigmail - -- - -----BEGIN PGP PUBLIC KEY BLOCK----- Version: GnuPG v1.4.7 (MingW32) mQGiBEhja7IRBADgf6ytTuVZZ6/+dC/2BCcIPcYfqbde+zF1mkKKiPo+6jnwTmhm a/BgJjhoKaPS2fbF/jq+TT32gvZ8vs0datY8GotydMBfUrhzkPnQqZ6rYqxea4Fi 1V5UvpEpDcRDV0Fu58Q+DXyLAUI77qSBnwdV+V2CHdWokWTRXzAey4FApwCgk3QB 42b433ic0ogKdpM+N7rQsV8D+wdXx3F8oHFtcx6KhyjEKXK5sLoXGYyZdWM0ojmn JN1JG52WQ8JQ6jSZiRmVKbMGLPazYszCjm/wsoCRA0I6EE9GBR7nJmAynC/MbeLO 3fs6QAPWlzmRUu2Lam2EobDJvlWo5uwBtqMpGCtHBiOZFiFmICE8PJbH8abuJ7/N ENe3A/993OhuQ89pHN74eyMboiyw25SlppE3igd4v5pnZeJ9XKP5yodwUTGy5OcB 8KsljeNQ/wZDvLWptM+pnayzg20i7fKrJlaP1S1IqNPZtefXg6uRTtR2/whOmAgP GPWSYIhjm3V6GfbiWjG0zrS+aFbUors7yle9qBPINzL0aqh71bQkQmFycnkgSCA8 ZGFya3JlbmVnYWRlODBAaG90bWFpbC5jb20+iGYEExECACYFAkhja7ICGyMFCQlm AYAGCwkIBwMCBBUCCAMEFgIDAQIeAQIXgAAKCRC+OxgpDkm7V3pvAJ9wXB9inPMZ xzyAMmS1bjcwetOiRgCeJYuHAA3X9w/7NgSJOZKOynKlmbi5Ag0ESGNrshAIAOps GRPsVL9AW0veydo8HTKyJiXQRVPqCVjQOtYorBYZvilZHz2/8FgBxu56EyGIS9Dt oXTWfwHXXkc+tOcVYnkuKfBioYXBUOFOIpGBaoNC9cBvRZUYKGkAnwXFOnxf7tnH /ZTxeomNnq8s0HFc8sDTp6GLQRKYWCC/Hmp/hQmuHkKLcVXql/B/j+7umYUQIlJN EOg+6zdZ+2Ml3Z+BgYac+jto3ydelDmKH6SI/HYPy05JZnwdcYrc6HYvE1xtukpN YOgcgGbgY7+LwunmezgZvQsmWpgwbFr8Xm4FJfQ3NpCaIUxmJdMHh7GrI2z4SiMb B4BnVxYAGaxClsNLjosAAwYIAKIFCJjpD+KXkZbX373J8g/cpbvq/K8FS/Uo4L4q 7c3eccPfDEPrpv7766WoXVhZYbGp9H7SFnogCPWZtJHY5TMRxzhjtI9OXZLsOm5F iquorG1NqLpHC5gYPztwKUkTiqB8U8eK4JSwIP4rdrsD3ClRBbbBgrFIOQ9C7WJO WolP0jp+zcVfS4GxBc3dFiup48Ly2qxXod9TbIVb8ZM4id7q36XGr+GPX2cs1b3R k9ec5Y26S/n6q5YV1QYhE7k/CVNxrjQp6vWgf5yfWyGqif+3ulizDHrpr616WTJn 4zLwJoAKS+VWL87rMp32GK3OHN1yPjLenGXqAB4orhn/LimITwQYEQIADwUCSGNr sgIbDAUJCWYBgAAKCRC+OxgpDkm7V8lQAJ9DPn+Lp6Ot3/dDYzcxZTFMu8pC4wCf S3tdvP+2iJsbpXtQpMd3owa36K0= =s1nu - -----END PGP PUBLIC KEY BLOCK----- - -----BEGIN PGP PRIVATE KEY BLOCK----- Version: GnuPG v1.4.7 (MingW32) lQHhBEhja7IRBADgf6ytTuVZZ6/+dC/2BCcIPcYfqbde+zF1mkKKiPo+6jnwTmhm a/BgJjhoKaPS2fbF/jq+TT32gvZ8vs0datY8GotydMBfUrhzkPnQqZ6rYqxea4Fi 1V5UvpEpDcRDV0Fu58Q+DXyLAUI77qSBnwdV+V2CHdWokWTRXzAey4FApwCgk3QB 42b433ic0ogKdpM+N7rQsV8D+wdXx3F8oHFtcx6KhyjEKXK5sLoXGYyZdWM0ojmn JN1JG52WQ8JQ6jSZiRmVKbMGLPazYszCjm/wsoCRA0I6EE9GBR7nJmAynC/MbeLO 3fs6QAPWlzmRUu2Lam2EobDJvlWo5uwBtqMpGCtHBiOZFiFmICE8PJbH8abuJ7/N ENe3A/993OhuQ89pHN74eyMboiyw25SlppE3igd4v5pnZeJ9XKP5yodwUTGy5OcB 8KsljeNQ/wZDvLWptM+pnayzg20i7fKrJlaP1S1IqNPZtefXg6uRTtR2/whOmAgP GPWSYIhjm3V6GfbiWjG0zrS+aFbUors7yle9qBPINzL0aqh71f4DAwICpQHwa1CM /2CeABppoEYxBmXlP7FL9H2gAMTWycTQZiUpj8YrWPms+s+TbIJLSgWt/kvSEKjX k9mfqrQkQmFycnkgSCA8ZGFya3JlbmVnYWRlODBAaG90bWFpbC5jb20+iGYEExEC ACYFAkhja7ICGyMFCQlmAYAGCwkIBwMCBBUCCAMEFgIDAQIeAQIXgAAKCRC+Oxgp Dkm7V3pvAJ9wXB9inPMZxzyAMmS1bjcwetOiRgCeJYuHAA3X9w/7NgSJOZKOynKl mbidAmMESGNrshAIAOpsGRPsVL9AW0veydo8HTKyJiXQRVPqCVjQOtYorBYZvilZ Hz2/8FgBxu56EyGIS9DtoXTWfwHXXkc+tOcVYnkuKfBioYXBUOFOIpGBaoNC9cBv RZUYKGkAnwXFOnxf7tnH/ZTxeomNnq8s0HFc8sDTp6GLQRKYWCC/Hmp/hQmuHkKL cVXql/B/j+7umYUQIlJNEOg+6zdZ+2Ml3Z+BgYac+jto3ydelDmKH6SI/HYPy05J ZnwdcYrc6HYvE1xtukpNYOgcgGbgY7+LwunmezgZvQsmWpgwbFr8Xm4FJfQ3NpCa IUxmJdMHh7GrI2z4SiMbB4BnVxYAGaxClsNLjosAAwYIAKIFCJjpD+KXkZbX373J 8g/cpbvq/K8FS/Uo4L4q7c3eccPfDEPrpv7766WoXVhZYbGp9H7SFnogCPWZtJHY 5TMRxzhjtI9OXZLsOm5FiquorG1NqLpHC5gYPztwKUkTiqB8U8eK4JSwIP4rdrsD 3ClRBbbBgrFIOQ9C7WJOWolP0jp+zcVfS4GxBc3dFiup48Ly2qxXod9TbIVb8ZM4 id7q36XGr+GPX2cs1b3Rk9ec5Y26S/n6q5YV1QYhE7k/CVNxrjQp6vWgf5yfWyGq if+3ulizDHrpr616WTJn4zLwJoAKS+VWL87rMp32GK3OHN1yPjLenGXqAB4orhn/ Lin+AwMCAqUB8GtQjP9gseOCg67gWKeQz3ozztRrq8TlM4xOqtEe1QBekZpkiOzW c2ojUpZOlT6RIoej4NicH075Ls1eU81+5hsjdC6eMOrbgcrbmQv34IhPBBgRAgAP BQJIY2uyAhsMBQkJZgGAAAoJEL47GCkOSbtXyVAAnA5YnZUW6/uz/o49y3FNpic4 d5KeAJ91tlgDgMG3oNfHqhwVLdyYYI4SSA== =iweL - -----END PGP PRIVATE KEY BLOCK----- -----BEGIN PGP SIGNATURE----- iD8DBQFIaKofvjsYKQ5Ju1cRAqteAJ9zjfNZBrmfT6H1xZmSZhWvDsceugCfdsog D8aZXQCFyv4obKshIYa9H0s= =e3km -----END PGP SIGNATURE----- _________________________________________________________________ Earn cashback on your purchases with Live Search - the search that pays you back! http://search.live.com/cashback/?&pkw=form=MIJAAF/publ=HMTGL/crea=earncashback -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.mozdev.org/pipermail/enigmail/attachments/20080630/4a6e27fb/attachment.html From shavital at mac.com Mon Jun 30 07:14:03 2008 From: shavital at mac.com (Charly Avital) Date: Mon, 30 Jun 2008 10:14:03 -0400 Subject: [Enigmail] Help - Taum Tanlon In-Reply-To: References: Message-ID: <4868EA2B.8070208@mac.com> Barry Jefferson wrote the following on 6/30/08 5:39 AM: > Hi Taum, > > Welcome to the board first of all, enigmail can seem daunting at first > but you will learn if you have patience and take your time. > > I have checked your Key ID: 0x4858E444 on the keyserver and it came back > with no security data I haven't been able to found key 4858E444 in seven different servers, all of them active at the time I searched. But when searching for Taum Hanlon I have found two keys: (1) Taum Hanlon 1024 bit DSA key 74DE64F6, created: 2008-06-29 (2) Taum Hanlon 1024 bit DSA key 985139C8, created: 1999-06-30 Taum, does key 74DE64F6 (created June 29, 2008) belongs to you? If it does, could you please post to the list a message signed that key? Thanks. Charly MacOS 10.5.3 - MacBook Intel C2Duo - GnuPG 1.4.9 - GPG2 2.0.9 - Thunderbird 2.0.0.14 - Enigmail 0.96a - Apple's Mail+GPGMail d53. From faramir.cl at gmail.com Mon Jun 30 09:13:45 2008 From: faramir.cl at gmail.com (Faramir) Date: Mon, 30 Jun 2008 12:13:45 -0400 Subject: [Enigmail] and for my first mistake... In-Reply-To: <4867EB98.5010408@gmail.com> References: <4867EB98.5010408@gmail.com> Message-ID: <48690639.5050507@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Taum Hanlon escribi?: > I first generated a key using RSA 4096 and then read that I should use > the default DSA/ElGamal ... so I got rid of it and generated the type > recommended in the FAQ. There is no problem using RSA keys, however, 4096 may be a bit too much... most people seem to think 2048 is good enough (in fact, some think 1024 is good enough). But it is your decision, these are standard keys, so all of them are valid (as far as I know). > ...and I published it to pool.sks-keyservers.net Good, that seems to be the most reliable servers... or that is what I understood reading this list (and GnuPG list) > I have a question regarding setting owner trust and signing. > If you trust somebody and sign their key, the manual says it is good > etiquette to send them the new signed key and allow them to upload to a > key server. > Does this mean that everytime your key is signed you need to upload it > to a key server to have that signture? Ehh... there are 2 ways to sing a key, local (non exportable) and "normal" (I don't know the name for that one). With local option, you sign the key to be able to send encrypted messages to that recipient, but you don't let other people know you trust that recipient. With the other option, you let people to see your signature... but for that, they need to access the key signed by you. If the key is hosted in a key server, like pool.sks-keyservers.net, you can export the public keys to that servers, and that way you will make yous sign to appear in the public key of your recipient. But if his/her public key is hosted only in a web site, then you would need to send him/her the signed key, in order he/she can update the hosted key file. Another option is to have the key in a web site _and_ in a keyserver... that way, people can download it from the website (and they can be more secure about that is the right key), and they can sign it, and export it to the keyserver. The key owner can retrieve his own public key form the keyserver, from time to time, (that way he/she would get the version with most signatures), and use it to update the webhosted keyfile. Or people can check the signatures from keyservers, and they would update the signatures in the key... > Also, can a key be signed by multiple people before it is uploaded to a > key server? (I'm wondering how 'key parties' work) For what I have read here, it is suggested to go to the 'key party' carrying a lot of pieces of paper with your key ID printed on it, and your ID card (you will need it to prove you really are you). Then, people see your ID card, see your face, compare them, and if they are convinced you are you, they take one of those pieces of papers and brind it home. Once at home, they take the papers, and begin to download and sign these keys, after that, they upload them to the keyserver, and that is all. Probably, other users will correct any mistake I may have done here... I am one of the less experienced people here, so don't trust too much what I say... Best Regards -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEcBAEBCAAGBQJIaQY5AAoJEMV4f6PvczxAu1AH/RzLYmn1GQc7GKvf1Ttwc+uI +z8rBNIZcmmHJnnNh7Q1ue19465XqX7r9a4RhiffbQcoqhUfiRe/U2jw7i0Gl+oP HX5NagvBSrTLeRY2cPsvgzwHjNZ8XhTbAkXhNrvUPKYcTu+WQfzzynUL1FRNYbO2 xxVNQnfsillzlUpSEOOotCU/BoL+iskA6ZqIOXSFVtOWRY9d/B+h9cs5GPx43JKl xgbqiNjNof6bf/VNkHorWqkKqKcg2hfK3MlcXkXBwT4gZL+QDACxdqfM/KlZcaSq 06q0zQUwN+L1gR1Gl7fGQHYwiQfDLyd2JPBHj36TruFfv7vX9YmW55JJPBCEO3g= =FlBG -----END PGP SIGNATURE----- From taum.hanlon at gmail.com Mon Jun 30 10:42:02 2008 From: taum.hanlon at gmail.com (Taum Hanlon) Date: Mon, 30 Jun 2008 13:42:02 -0400 Subject: [Enigmail] Help - Taum Tanlon In-Reply-To: <4868EA2B.8070208@mac.com> References: <4868EA2B.8070208@mac.com> Message-ID: <48691AEA.5060604@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 WOW.. that DGP key is still floating about (that was me as well). I messed up on my first key that I used to sign a message to the list... so I made another and uploaded it to the key server. The 74DE64F6 is the current key. Taum Charly Avital wrote: | Barry Jefferson wrote the following on 6/30/08 5:39 AM: |> Hi Taum, |> |> Welcome to the board first of all, enigmail can seem daunting at first |> but you will learn if you have patience and take your time. |> |> I have checked your Key ID: 0x4858E444 on the keyserver and it came back |> with no security data | | I haven't been able to found key 4858E444 in seven different servers, | all of them active at the time I searched. | | But when searching for Taum Hanlon I have found two keys: | | (1) Taum Hanlon | 1024 bit DSA key 74DE64F6, created: 2008-06-29 | (2) Taum Hanlon | 1024 bit DSA key 985139C8, created: 1999-06-30 | | Taum, does key 74DE64F6 (created June 29, 2008) belongs to you? If it | does, could you please post to the list a message signed that key? | | Thanks. | Charly | MacOS 10.5.3 - MacBook Intel C2Duo - GnuPG 1.4.9 - GPG2 2.0.9 - | Thunderbird 2.0.0.14 - Enigmail 0.96a - Apple's Mail+GPGMail d53. | _______________________________________________ | Enigmail mailing list | Enigmail at mozdev.org | https://www.mozdev.org/mailman/listinfo/enigmail -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkhpGukACgkQ+gEKxnTeZPYDlwCfSIYkEnelqi0DnjjjKMgSUYAM UW4AnRNRyrKIQHM3dhfpT4J3JYRsHtb7 =qHU5 -----END PGP SIGNATURE----- From mhtopper at yahoo.co.uk Sun Jun 29 15:39:18 2008 From: mhtopper at yahoo.co.uk (Mark Topper) Date: Mon, 30 Jun 2008 00:39:18 +0200 Subject: [Enigmail] test Message-ID: <48680F16.9070205@yahoo.co.uk> Hello World! This is a sample signed message. Please convince the world to also start using this by default! Furthermore hope to meet some friendly faces when I have questions.. Thanks From rjh at sixdemonbag.org Mon Jun 30 11:07:39 2008 From: rjh at sixdemonbag.org (Robert J. Hansen) Date: Mon, 30 Jun 2008 13:07:39 -0500 Subject: [Enigmail] and for my first mistake... In-Reply-To: <48690639.5050507@gmail.com> References: <4867EB98.5010408@gmail.com> <48690639.5050507@gmail.com> Message-ID: <486920EB.5070504@sixdemonbag.org> Faramir wrote: > There is no problem using RSA keys, however, 4096 may be a bit too > much... most people seem to think 2048 is good enough (in fact, some > think 1024 is good enough). But it is your decision, these are > standard keys, so all of them are valid (as far as I know). IMO, the only purpose for keys larger than 2kbit is to appease the tinfoil-hatters. Breaking 2kbit keys will require -- will absolutely _require_ -- one of these to be true: * Computers are built of something other than matter * Computers run on something other than energy * Computers operate in something other than time * Mathematics receives a quantum leap of a kind we can't imagine Anyone who says "I use 4kbit keys because 2kbit just isn't secure enough for me" is actually saying "while I believe 2kbit keys will soon fall to these science-fiction attacks, I believe 4kbit keys will do just fine." As for me, I'm a man of science. When you start assuming science-fiction attacks against my keys, I shrug and say "I dunno about that." >> ...and I published it to pool.sks-keyservers.net > > Good, that seems to be the most reliable servers... It is. :) > Ehh... there are 2 ways to sing a key, local (non exportable) and > "normal" (I don't know the name for that one). Exportable and nonexportable. > With local option, you sign the key to be able to send encrypted > messages to that recipient, but you don't let other people know you > trust that recipient. More or less. An exportable signature means "I'm convinced this email address really belongs to this person -- you can count on me." For instance, my signature is on key 0xF34F9073. This is really a statement to the world: "I'm convinced that [insert his email address here] really belongs to Tristan Thiede." It's an easy statement to make: I've known him for fifteen years, we have coffee once every couple of weeks, and he read his key fingerprint off his laptop screen to me. Thus, I'm convinced I (a) know Tristan and (b) have a correct copy of his key. Thus, if you need Tristan's key and you trust me, well, my signature on that key could be very useful to you. However, there are times when we don't want to vouch for someone's identity. For instance, I've known John Clizbe for a few years now, but only online. I've never met him in real life. I've never checked his driver's license, never seen a passport. For all I know his real name is Mortimer Snerd. Now, for all that, I think John is probably on the level, so I've given his key a local signature. This is my way of saying "yeah, as far as I'm concerned John is who he says he is, but I don't have much evidence to back that up, so please don't rely on this signature." > Another option is to have the key in a web site _and_ in a > keyserver... that way, people can download it from the website (and > they can be more secure about that is the right key) Not really. The way to make sure you have the right key is to check the key fingerprint. If the key fingerprint matches up, then you have a good copy of the key. It doesn't matter one whit from where you get it. I am not a fan of people hosting their own keys and asking they be kept off the keyservers. I have yet to hear a convincing argument for why this is superior. >> Also, can a key be signed by multiple people before it is uploaded >> to a key server? (I'm wondering how 'key parties' work) The answer to the question is 'yes'. :) > For what I have read here, it is suggested to go to the 'key party' > carrying a lot of pieces of paper with your key ID printed on it, and > your ID card (you will need it to prove you really are you). Then, > people see your ID card, see your face, compare them, and if they are > convinced you are you, they take one of those pieces of papers and > brind it home. Once at home, they take the papers, and begin to > download and sign these keys, after that, they upload them to the > keyserver, and that is all. That's about right. The only thing I would add is to bring more than one form of ID. An important step in the key signing process is not just showing ID, but the signer deciding whether to accept the ID. For instance, let's say we're at a keysigning party, and you present me with a driver's license. I get the impression you're from South America: Chile, Argentina, in there, although I don't think you've ever said so explicitly. I would hand the ID back to you. "Sorry. I don't know what a Chil?an driver's license looks like. I don't know if this is real. It would be easy enough to fake." So next, you hand me a passport with "Rep?blica de Chile" stamped on the cover. I visit the web site of the Chilean government, and check out to see what the passport should look like and how I can spot a forgery. Then I shake your hand, say "thank you very much," give you your passport back, take your slip of paper with the key ID, and sign it later. Passports are the gold standard for identity documents. Military ID comes in a pretty close second, driver's licenses and university ID distant third and fourth. From post at lespocky.de Mon Jun 30 11:27:48 2008 From: post at lespocky.de (Alexander Dahl) Date: Mon, 30 Jun 2008 20:27:48 +0200 Subject: [Enigmail] test In-Reply-To: <48680F16.9070205@yahoo.co.uk> References: <48680F16.9070205@yahoo.co.uk> Message-ID: <0ML2xA-1KDO6U23Ar-00067l@mrelayeu.kundenserver.de> > This is a sample signed message. It is not. 8-) Greets Alex -- ***** http://www.lespocky.de ******************************************* Those who would give up essential Liberty, to purchase a little temporary Safety, deserve neither Liberty nor Safety. (Benjamin Franklin) -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 258 bytes Desc: OpenPGP digital signature Url : http://www.mozdev.org/pipermail/enigmail/attachments/20080630/0560bd59/attachment-0001.bin From faramir.cl at gmail.com Mon Jun 30 12:21:52 2008 From: faramir.cl at gmail.com (Faramir) Date: Mon, 30 Jun 2008 15:21:52 -0400 Subject: [Enigmail] and for my first mistake... In-Reply-To: <486920EB.5070504@sixdemonbag.org> References: <4867EB98.5010408@gmail.com> <48690639.5050507@gmail.com> <486920EB.5070504@sixdemonbag.org> Message-ID: <48693250.6050409@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Robert J. Hansen escribi?: > Anyone who says "I use 4kbit keys because 2kbit just isn't secure enough > for me" is actually saying "while I believe 2kbit keys will soon fall to > these science-fiction attacks, I believe 4kbit keys will do just fine." The problem is most people don't really know (including me) how does encryption really work. I mean, we hear 64 bits WAP is easily broken, by just watching packages being transmitted. Then we have 128 bits WEP, and it is supposed to be better... but some people say it is still vulnerable... and people start thinking "ok... we have several available encryption stuff... and it seems none of them is unbreakable... but the longer the thing is, the hardest to break it is... and probably they include these 2048 keys for people using old 386 computers... I will use 4096 keys, while they make 16384 keys available...". Now, I *know* 1024 is strong enough, and WEP is different to OpenPGP... What I am trying to say is, talking about computers, usually we have something everybody use , something everybody used (but now it is outdated), and something everybody will use (but currently just a few people use). And all that changes each 2 or 5 years (like 386, 486, pentium, pentium 2, pentium 3... or windows 16 bits, windows xp, windows xp 64 bits...). So it is easy to see OpenPGP keys and "feel" it follows the same principle... I use 2048 because "it is not the weakest"... it's just my non-rational way to decide about these things :P > As for me, I'm a man of science. When you start assuming > science-fiction attacks against my keys, I shrug and say "I dunno about > that." And I accept your word about the subject... >>> ...and I published it to pool.sks-keyservers.net >> Good, that seems to be the most reliable servers... > > It is. :) Yes, once I read it is a network of servers, I understood why you said it was the most reliable. > That's about right. The only thing I would add is to bring more than > one form of ID. An important step in the key signing process is not > just showing ID, but the signer deciding whether to accept the ID. For > instance, let's say we're at a keysigning party, and you present me with > a driver's license. I get the impression you're from South America: > Chile, Argentina, in there, although I don't think you've ever said so > explicitly. I am from Chile (yes, Rep?blica de Chile). And you would do the right thing by rejecting my driver license. While they should be secure enough from the forgery point of view, they are not intended to be used for authentication. The only valid ID in Chile, is the Identity ID Card (C?dula Nacional de Identidad). But probably people outside Chile isn't familiar with that ID card, so it would be rejected too... > I would hand the ID back to you. "Sorry. I don't know what a Chil?an > driver's license looks like. I don't know if this is real. It would be > easy enough to fake." It is supposed to be hard to fake (if the person checking it knows what to check), but not so hard to fake as the ID card (which have a proper description about its security measures in the website of the "Servicio de Registro Civil e Identificacion" (Service of Civilian Registry and Identification). Well, I tell you this just in case you come to Chile and need to do business here... don't let people tell you they don't have their ID card, but they have "an equally valid ID thing". > So next, you hand me a passport with "Rep?blica de Chile" stamped on the > cover. I visit the web site of the Chilean government, and check out to > see what the passport should look like and how I can spot a forgery. > Then I shake your hand, say "thank you very much," give you your > passport back, take your slip of paper with the key ID, and sign it later. Tip: most "good ID documents" in Chile looks funny under an UV light. Money is not an exception to that (well, coins are an exception) > Passports are the gold standard for identity documents. Military ID > comes in a pretty close second, driver's licenses and university ID > distant third and fourth. Certainly, if I go to USA, I would be carrying a passport, but I don't know if USA citizens use to have a passport, if they have never travelled outside USA... in Chile, people only get a passport if they are planning to travel, and some countries like Argentina, accept out ID cards and don't require us to have a passport. I say this just to tell that in different countries, key parties can require different ID documents... I am not planning to go to USA, but... what ID document should I require in order to sign a key there? Best Regards -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEcBAEBCAAGBQJIaTJPAAoJEMV4f6PvczxABH8IAJTAZxNJxRVp+ODcQzfiQSIy lRioGD84cgxKfN//MhFUrOCKUi7eAqV79xRUmg7llpgWMDToSyJpoQ+sIK9zQry2 6bFew5RqcdCMG0SWl+vAkI0/pGJG0DqXUY1LNV5hi5YWas4yitcvT9b551jlTXw5 dg++ZK7kiatKiekq/9asU03M0VO3HY8e8mbGreYPzADTgQNiKLgG1wFgRuTFIlVq /ioDV6d03zanFucgTATTi6jeZld75qy/8dURCj9vv+8ieHPQg8iE/pzxZz3VNAUg 0v4k1s+7T7mLWKemaOG10nJbwpBpiGES8mNTp1htX7qz9ac6/Tyw5PKKJ9KDbRw= =r4zu -----END PGP SIGNATURE----- From shavital at mac.com Mon Jun 30 13:00:26 2008 From: shavital at mac.com (Charly Avital) Date: Mon, 30 Jun 2008 16:00:26 -0400 Subject: [Enigmail] Help - Taum Tanlon In-Reply-To: <48691AEA.5060604@gmail.com> References: <4868EA2B.8070208@mac.com> <48691AEA.5060604@gmail.com> Message-ID: <48693B5A.9040209@mac.com> Taum Hanlon wrote the following on 6/30/08 1:42 PM: > WOW.. that DGP key is still floating about (that was me as well). It will float in the servers forever. If you generated a revocation certificate when you generated that key, you might want to revoke it. > I messed up on my first key that I used to sign a message to the list... > so I made another and uploaded it to the key server. > The 74DE64F6 is the current key. Signature does not verify: Error - signature verification failed gpg: Signature made Mon Jun 30 13:42:01 2008 EDT using DSA key ID 74DE64F6 gpg: BAD signature from "Taum Hanlon " -----BEGIN GPG OUTPUT----- gpg: Signature made Mon Jun 30 13:42:01 2008 EDT using DSA key ID 74DE64F6 gpg: BAD signature from "Taum Hanlon " -----END GPG OUTPUT----- Regards, Charly From jmoore3rd at bellsouth.net Mon Jun 30 13:06:57 2008 From: jmoore3rd at bellsouth.net (John W. Moore III) Date: Mon, 30 Jun 2008 16:06:57 -0400 Subject: [Enigmail] and for my first mistake... In-Reply-To: <48693250.6050409@gmail.com> References: <4867EB98.5010408@gmail.com> <48690639.5050507@gmail.com> <486920EB.5070504@sixdemonbag.org> <48693250.6050409@gmail.com> Message-ID: <48693CE1.9050705@bellsouth.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Faramir wrote: > I am not planning to go to USA, but... what ID document should I > require in order to sign a key there? For Me; You Chilean ID Card/Passport would be absolutely necessary; accepting that I *won't* issue the Signature to You until I have educated Myself on what to look for. NO, I would _never_ ask You for a photocopy but it would be 'helpful' to You if I also saw Signatures on Your Key from those I personally 'trust' and could contact. Lemme put it this way; I wouldn't Sign Your Key without the same 'good vibes' I'd would require before purchasing "contraband" from You in a dark alley. My Signature is tantamount to Me broadcasting "I T-R-U-S-T this G.D.M.F." and that is an earned thing; not an automatic thing. 'Nuff Said? JOHN ;) Timestamp: Monday 30 Jun 2008, 16:06 --400 (Eastern Daylight Time) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.5.0-svn4754: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIaTzfAAoJEBCGy9eAtCsPAmUIAJ6vMDfg5ZTTjArsIQWF8T4Q OTnhshL1dlNAm1bZImwY5Qun76tQMcqcAZosSinweHzNur0zHUC91f/7c4AxqcH+ yJwxJ49rpfZInW/xjz/naik5i1ojv6oNmW44pHCTXYKusr/MkjWyGMYaFFwwF/OZ x0/TS4vPsgEZ4iDGScttJgUOESVJCypA5xMGNtLcomau+4APGjr2b5lQM2Wpsxq9 f+MXJhzuvdC+uf/cTucpL9CBLJH3ZqweY1Tk+D1zrkp0WRV1LcYquwN+ULAbKeQU T9AOsjbkWUnSPXRuySh7uOxLEktedWWbUa4uDi/M0sTKy5/36+msRrgp7eA/jig= =1uPh -----END PGP SIGNATURE----- From jmoore3rd at bellsouth.net Mon Jun 30 13:21:32 2008 From: jmoore3rd at bellsouth.net (John W. Moore III) Date: Mon, 30 Jun 2008 16:21:32 -0400 Subject: [Enigmail] and for my first mistake... In-Reply-To: <48690639.5050507@gmail.com> References: <4867EB98.5010408@gmail.com> <48690639.5050507@gmail.com> Message-ID: <4869404C.2040101@bellsouth.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Faramir wrote: > Taum Hanlon escribi?: >> I first generated a key using RSA 4096 and then read that I should use >> the default DSA/ElGamal ... so I got rid of it and generated the type >> recommended in the FAQ. > > There is no problem using RSA keys, however, 4096 may be a bit too > much... most people seem to think 2048 is good enough (in fact, some > think 1024 is good enough). But it is your decision, these are standard > keys, so all of them are valid (as far as I know). You "know" correctly. >> I have a question regarding setting owner trust and signing. >> If you trust somebody and sign their key, the manual says it is good >> etiquette to send them the new signed key and allow them to upload to a >> key server. >> Does this mean that everytime your key is signed you need to upload it >> to a key server to have that signture? > > Ehh... there are 2 ways to sing a key, local (non exportable) and > "normal" (I don't know the name for that one). With local option, you > sign the key to be able to send encrypted messages to that recipient, > but you don't let other people know you trust that recipient. With the > other option, you let people to see your signature... but for that, they > need to access the key signed by you. If the key is hosted in a key > server, like pool.sks-keyservers.net, you can export the public keys to > that servers, and that way you will make yous sign to appear in the > public key of your recipient. But if his/her public key is hosted only > in a web site, then you would need to send him/her the signed key, in > order he/she can update the hosted key file. OK, quick discussion of Netiquette as it applies to OpenPGP Keys; /always/ return the Key signed by You to the Key Owner. Common Courtesy [an oxymoron] dictates that they be allowed to maintain as much control over what is broadcast on or about their Key as possible. Here is a quick Example: Say I create a Key with the UID: Chilean Revolutionary Militia and then 'Trust Sign' Your Key with it. Do You really want Me to then Upload that to the Keyservers so that everyone for all time will think that You are a Revolutionary? Remember, the old saying about "a moment on the lips, forever on the hips" with regard to weight reduction. Once I tag Your Key with a Sig, desired or not, it is forever. :( > > Another option is to have the key in a web site _and_ in a > keyserver... that way, people can download it from the website (and they > can be more secure about that is the right key), and they can sign it, > and export it to the keyserver. The key owner can retrieve his own > public key form the keyserver, from time to time, (that way he/she would > get the version with most signatures), and use it to update the > webhosted keyfile. Or people can check the signatures from keyservers, > and they would update the signatures in the key... Another option is to utilize Big Lumber [www.biglumber.com] and maintain an 'Official Copy' of Your Key there. You have complete control of what appears on the Key [Sigs, Preferences, etc.] and can Publish the Link in either a Comment Line, Signature or within the Header. > >> Also, can a key be signed by multiple people before it is uploaded to a >> key server? (I'm wondering how 'key parties' work) Sure, You can Upload Your Key as often as You desire. > > For what I have read here, it is suggested to go to the 'key party' > carrying a lot of pieces of paper with your key ID printed on it, and > your ID card (you will need it to prove you really are you). Then, > people see your ID card, see your face, compare them, and if they are > convinced you are you, they take one of those pieces of papers and bring > it home. Once at home, they take the papers, and begin to download and > sign these keys, after that, they upload them to the keyserver, and that > is all. Again, 'Best Practice' would be to 'Sign those Keys & return them signed to the Key Owner. ;) JOHN 8-) Timestamp: Monday 30 Jun 2008, 16:19 --400 (Eastern Daylight Time) P.S. By un-Official agreement; JOHN [all CAPS] indicates Me and John or John C. indicates Mr. Clizbe. While We rarely disagree, it does happen and both of Us have Our fur rubbed the wrong way when 'quotes' are mis-represented. ;) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.5.0-svn4754: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIaUBLAAoJEBCGy9eAtCsP1xIIAKLYu/1C4Dr6cmEMc9DgZHJP V8RFuxt1ozys/qzzBaSvowllp6XgrlQO9pxxmvu6kmfVeoV9D4LScc9KxaZ8uPLc sNvXkAhhDSV5/dkz+pZCPp99VKa1ztiSkGXJBA9SgHz7vY5n+Dcw4my1MABdwWd9 tWzXUQqO6IDtyMKAIblewYm6Xyqn7KFBuNe6HSUMqpWf1U2ESU0x3QfnV5kWxo5d C+b0uiv7sSCwwa0aaUMoj7QABj36GRqS9YLPjvakE90oMvgsXTDgOYKzbgGFyUXl NJzHiOqdartdMgL1n740nk80Q/HcwEGelF1+qmeCoo5J+6JfLFRwI5xb+H7KTJY= =JpBd -----END PGP SIGNATURE----- From faramir.cl at gmail.com Mon Jun 30 13:33:07 2008 From: faramir.cl at gmail.com (Faramir) Date: Mon, 30 Jun 2008 16:33:07 -0400 Subject: [Enigmail] and for my first mistake... In-Reply-To: <48693CE1.9050705@bellsouth.net> References: <4867EB98.5010408@gmail.com> <48690639.5050507@gmail.com> <486920EB.5070504@sixdemonbag.org> <48693250.6050409@gmail.com> <48693CE1.9050705@bellsouth.net> Message-ID: <48694303.3060509@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 John W. Moore III escribi?: > Faramir wrote: > >> I am not planning to go to USA, but... what ID document should I >> require in order to sign a key there? > > For Me; You Chilean ID Card/Passport would be absolutely necessary; > accepting that I *won't* issue the Signature to You until I have > educated Myself on what to look for. NO, I would _never_ ask You for a > photocopy but it would be 'helpful' to You if I also saw Signatures on > Your Key from those I personally 'trust' and could contact. Ok, I understood that, and it is very reasonable. But, what do *I* have to ask from other people, in order to sign their keys? I don't know what kind of ID document is both trust worth and commonly used in USA. Best Regards -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEcBAEBCAAGBQJIaUMDAAoJEMV4f6PvczxAposH/0SWZxS3SVQrRsXxTmNYO2Rs +19v9pJya5SVizkEIt74UPNZHLKKzE7rMgHvVpHPfLrIbSiTvwArYIE0Q54XEdFM 9PqkpAi9QFVE0BowZQxaHcS6Q27Ltzx+ZlS/LuZN/w1NwlLFogvRWSgX/nUDuSpp U6HqUORVsniYKi9eK521qNEZ3JIyZhFsyOpNWCtABH9i9OIX4j4X03B9BkQe1+zi Brd/4eXatzcHFkYHJ8VdVRSQNPLnHYG6Rhnj8/9yKIUjaBiWtsTYXShKouUzCIpL 1M79HiWPZ8tWg6yQXBgrXi3S1FSmVlaHyp4TaL2G+PSQPqKXffNITiA8+2JUFEw= =g09m -----END PGP SIGNATURE----- From faramir.cl at gmail.com Mon Jun 30 13:49:58 2008 From: faramir.cl at gmail.com (Faramir) Date: Mon, 30 Jun 2008 16:49:58 -0400 Subject: [Enigmail] and for my first mistake... In-Reply-To: <4869404C.2040101@bellsouth.net> References: <4867EB98.5010408@gmail.com> <48690639.5050507@gmail.com> <4869404C.2040101@bellsouth.net> Message-ID: <486946F6.6010909@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 John W. Moore III escribi?: > Faramir wrote: >> Taum Hanlon escribi?: >>> I have a question regarding setting owner trust and signing. >>> If you trust somebody and sign their key, the manual says it is good >>> etiquette to send them the new signed key and allow them to upload to a >>> key server. > OK, quick discussion of Netiquette as it applies to OpenPGP Keys; > /always/ return the Key signed by You to the Key Owner. Common Courtesy > [an oxymoron] dictates that they be allowed to maintain as much control > over what is broadcast on or about their Key as possible. I didn't know that... what manual is it? It seems I have not read it. > Here is a quick Example: Say I create a Key with the UID: Chilean > Revolutionary Militia and then 'Trust Sign' Your Key with it. Do You > really want Me to then Upload that to the Keyservers so that everyone > for all time will think that You are a Revolutionary? Remember, the old > saying about "a moment on the lips, forever on the hips" with regard to > weight reduction. Once I tag Your Key with a Sig, desired or not, it is > forever. :( Well, that wouldn't be nice, but... what if somebody want to make a "joke" and do what you just said, and upload it to a server without my consent? I mean, if there is bad intention involved, I don't know any way to protect myself against that... Maybe I could sign you Revolutionary key with that "don't trust this key" option, as a way to "fight it back", but I wonder if there would be a better option... > Another option is to utilize Big Lumber [www.biglumber.com] and maintain > an 'Official Copy' of Your Key there. You have complete control of what > appears on the Key [Sigs, Preferences, etc.] and can Publish the Link in > either a Comment Line, Signature or within the Header. Interesting... I will visit it and bookmark it... > P.S. By un-Official agreement; JOHN [all CAPS] indicates Me and John or > John C. indicates Mr. Clizbe. While We rarely disagree, it does happen > and both of Us have Our fur rubbed the wrong way when 'quotes' are > mis-represented. ;) I am already confused with about 4 people in enigmail and GnuPG lists (it is a standard joke my memory plays to me). Is there a way to add a comment to a public key, just to have a hint about the owner identity? I mean, something like "the inventor of the dried water" or something like that... a non exportable memory hint... Best Regards -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEcBAEBCAAGBQJIaUb2AAoJEMV4f6PvczxAHgYH/iAgQNtPpns/j3ig9Iq3CDGV DNNECDKjrXNj8Te+W+8B7QBfQ/CS8KpvqSGJLl9rNqiujWIfRZ/a78l5+5pXN1jx TxSRH0Uq9dStQs/ui8A7X7oyQRftM1wX3ALBxgFvlLQ0vO6hB/mBOuGLTG4eeHQs oyLWGC5KdBzcw+GXust52cSZqlZxG1DiIvsN6hxDXdVw0n3r113mTBFoGi8ipFNg TaFEIVNjlmxL2KZhN43nxRdUx3ThOUq8GRQI0BiReBb0y8jxeC3fW0Y1zh6hdvzN lCJ4mhpxHMsIKEV1YrTIN1dRRLajkJd/oV5b+EWnn37Uc5KpQ8HunjbkGAsrGrQ= =PS3e -----END PGP SIGNATURE----- From jmoore3rd at bellsouth.net Mon Jun 30 13:53:41 2008 From: jmoore3rd at bellsouth.net (John W. Moore III) Date: Mon, 30 Jun 2008 16:53:41 -0400 Subject: [Enigmail] and for my first mistake... In-Reply-To: <48694303.3060509@gmail.com> References: <4867EB98.5010408@gmail.com> <48690639.5050507@gmail.com> <486920EB.5070504@sixdemonbag.org> <48693250.6050409@gmail.com> <48693CE1.9050705@bellsouth.net> <48694303.3060509@gmail.com> Message-ID: <486947D5.4070601@bellsouth.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Faramir wrote: > I don't know what kind of ID document is both trust worth and commonly > used in USA. Easy frame of Reference: 2 pieces of Government Issue ID with Picture. This includes all levels of Government; State & Federal. Most U.S. Citizens do not have a Passport but 96% have either a Driver's License or State ID Card. They may also have an Employer ID with photo but how do You tell. You don't know and this is currently a fiercely debated Topic on the CAcert-Policy List. My Opinion, You are /only/ Signing an OpenPGP Key so accept whatever You feel comfortable with. There is No Globally issued/accepted ID and I pray there never is. If You are that paranoid, A-S-K for whatever You feel comfortable with and if You are denied feel comfortable with walking away without exchanging Sigs. B4 You Ask; what do I require? Well, a 'Picture ID' I am comfortable with. I also do more than exchange business cards, slips of paper, etc. I require dialogs. Talk to Me. Who do We know in common?, How much do You know? I Ping Your Email address, if at a BoF Party, Who else is there that I know and You know? There is no R-U-S-H. Here's a 'Deal Breaker!' - You are 'In a Hurry' cause I _never_ Sign immediately unless it is a special occasion. If You are asking for a CAcert Assurance or a GSWoT Sig then I've got readily available Sources of authentication. If You're just a "Sig Fisher" then I've got all the time in the World to feel comfortable. Even if You Sign My Key then I am *not* obligated to Sign Yours. It is My Signature to give/issue. I love Robert J. Hansen's analogy; Would I loan You My car keys? Chances are, if I wouldn't trust You with My financial liability, I won't Sign Your key. JOHN ;) Timestamp: Monday 30 Jun 2008, 16:53 --400 (Eastern Daylight Time) P.S. This is just ME. Others May be 'round heeled' with their Sigs. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.5.0-svn4754: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIaUfSAAoJEBCGy9eAtCsPTHEH/33YOcWoCf0juENEiiZsFUf1 bsRGx91ZL22I9YoqES5WceBXndzGZeux3Nf0tQy2LxVLxjQ0mHBFHQ8y+nV1YWfW gCA44STUYE+DsEs8myHaLwIS7yP3JrPUU2nwNxtZKnTSq7LxXPtU9UD/dlvNtWBj +OdiEWYNJzoeXixYhM3q8dedtqPGum558+NuuvskCLC8n3fztUdgktnvEcd/3tza 8Dhfj7k/lbCU6TYeFirPypYhsp5NwXXzf9PeoYIgrz0ESk5yyhkQNEXEldbU5TKW E//g4jhevdmx9s6svgpSPiv5QvaUTceuxIZ/iVdqE+bPUwVuZeJTr8VkTszgbI0= =hP6i -----END PGP SIGNATURE----- From jmoore3rd at bellsouth.net Mon Jun 30 15:43:06 2008 From: jmoore3rd at bellsouth.net (John W. Moore III) Date: Mon, 30 Jun 2008 18:43:06 -0400 Subject: [Enigmail] and for my first mistake... In-Reply-To: <486946F6.6010909@gmail.com> References: <4867EB98.5010408@gmail.com> <48690639.5050507@gmail.com> <4869404C.2040101@bellsouth.net> <486946F6.6010909@gmail.com> Message-ID: <4869617A.20803@bellsouth.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Faramir wrote: >> OK, quick discussion of Netiquette as it applies to OpenPGP Keys; >> /always/ return the Key signed by You to the Key Owner. Common Courtesy >> [an oxymoron] dictates that they be allowed to maintain as much control >> over what is broadcast on or about their Key as possible. > > I didn't know that... what manual is it? It seems I have not read it. There is no Manual on Courtesy. Hence the term(s) Netiquette/Etiquette! > Well, that wouldn't be nice, but... what if somebody want to make a > "joke" and do what you just said, and upload it to a server without my > consent? I mean, if there is bad intention involved, I don't know any > way to protect myself against that... Maybe I could sign you > Revolutionary key with that "don't trust this key" option, as a way to > "fight it back", but I wonder if there would be a better option... There is NO option; this is a well know failing of the Keyserver system. > I am already confused with about 4 people in enigmail and GnuPG lists > (it is a standard joke my memory plays to me). Is there a way to add a > comment to a public key, just to have a hint about the owner identity? I > mean, something like "the inventor of the dried water" or something like > that... a non exportable memory hint... Sure there is a way; within Your gpg.conf File add the line: comment ??????????????????????????????????????????? This will appear at the top of every 'Block' be it a Signature or a Key Block. I only threw this out because there was a 'mis-quote' issue attributed to Clizbe recently that was something I said. JOHN ;) Timestamp: Monday 30 Jun 2008, 18:42 --400 (Eastern Daylight Time) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.5.0-svn4754: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIaWF4AAoJEBCGy9eAtCsPMoAH/jc0mtXV8KEsEY0bjdRRwxhF 8XlOyqy7+BFjPkSahV9iUqOAOIMc1DrGmVrdk827Nghnc73aEVFIX5hF+Vnsc0w9 LyGMWVDDpPHe32KxWDwx9COfIHw/FMzJyIkBms4cUg6ozz91ZaUIhl1iqY8E0G1g sl8udHSaLdOA0dGhNaSA6CCpO3j/XeUhowvop4kMiU/pn/Dlxt0bpIwiqEWG6TqO 5Zd5trUIj4xjHbgVKvys6VQtSoaWIRAzWS/tVj2v/CMme59ICy0RaxkM/SjDqtSH 3t7F1UoG3ndzIv3j7yzK7ZIxKwj/QGgx90gZnfUMlJQA66luCV7CyR/NcHPjpn0= =dUfa -----END PGP SIGNATURE----- From faramir.cl at gmail.com Mon Jun 30 16:19:48 2008 From: faramir.cl at gmail.com (Faramir) Date: Mon, 30 Jun 2008 19:19:48 -0400 Subject: [Enigmail] and for my first mistake... In-Reply-To: <486947D5.4070601@bellsouth.net> References: <4867EB98.5010408@gmail.com> <48690639.5050507@gmail.com> <486920EB.5070504@sixdemonbag.org> <48693250.6050409@gmail.com> <48693CE1.9050705@bellsouth.net> <48694303.3060509@gmail.com> <486947D5.4070601@bellsouth.net> Message-ID: <48696A14.9060009@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 John W. Moore III escribi?: > Faramir wrote: > >> I don't know what kind of ID document is both trust worth and commonly >> used in USA. > > Easy frame of Reference: 2 pieces of Government Issue ID with Picture. > This includes all levels of Government; State & Federal. Most U.S. > Citizens do not have a Passport but 96% have either a Driver's License > or State ID Card. They may also have an Employer ID with photo but how > do You tell. You don't know and this is currently a fiercely debated > Topic on the CAcert-Policy List. Well, in the Support section there is no debate, but I have seen some doubts about what will be the policy... but that's CAcert... > My Opinion, You are /only/ Signing an OpenPGP Key so accept whatever You > feel comfortable with. There is No Globally issued/accepted ID and I > pray there never is. If You are that paranoid, A-S-K for whatever You > feel comfortable with and if You are denied feel comfortable with > walking away without exchanging Sigs. Yes... that is true, and also, passports from different countries look different... But my question was focused in what is common use, and still widely available at USA, like the chilean ID Card is in Chile... > Even if You Sign My Key then I am *not* obligated to Sign Yours. It is Of course not, everybody has the right to decide about that... Best Regards -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEcBAEBCAAGBQJIaWoUAAoJEMV4f6PvczxAjFIH/3SB7LzsNsXZBocMmTn5h76R qHCkK1JgT663Cp4gMVyi2DgiRp+SV8JYsjJAHDYuid5KEFLOxYmu3rSsX6INMCEe 4l80cNYfgtL1aDB+vLpfQ9gbTSbCzv2hs8mThApAsCFu+8Y0MqHAf44wccAmEm71 QY0JjG+O2fXKThWtoYtkQ5RRc3qLI1yacTSiO/koku12J9fmU+0vdnavaBJ3hjby HuAs8pbTAjE96woxViZZMeG1Jaaa4VOEoUF4uThMB9W0LIttmE1h8K54ETqIoDrl Y5vR6a4MdjkWOyUQlsTnKBfd0f8EK2ba6TBZNfWZJTxLW+0PlD/zT0aV4LJZLL8= =f81S -----END PGP SIGNATURE----- From rjh at sixdemonbag.org Mon Jun 30 17:42:35 2008 From: rjh at sixdemonbag.org (Robert J. Hansen) Date: Mon, 30 Jun 2008 19:42:35 -0500 Subject: [Enigmail] and for my first mistake... In-Reply-To: <48693250.6050409@gmail.com> References: <4867EB98.5010408@gmail.com> <48690639.5050507@gmail.com> <486920EB.5070504@sixdemonbag.org> <48693250.6050409@gmail.com> Message-ID: <48697D7B.4090100@sixdemonbag.org> Faramir wrote: > The problem is most people don't really know (including me) how does > encryption really work. I mean, we hear 64 bits WAP is easily broken, > by just watching packages being transmitted. Then we have 128 bits > WEP, and it is supposed to be better... but some people say it is > still vulnerable... Those are protocols, not encryption algorithms. 64-bit WEP is easily broken because of mathematical weaknesses in the protocol. The underlying algorithm, RC4, is believed strong when used properly. WEP's problem is it doesn't use it properly. 128-bit WPA has its own problems -- problems of protocols, not algorithms. The OpenPGP protocol is fairly well-designed, even with its many warts and flaws. It uses encryption algorithms in ways that are unsurprising (save for the weird CFB mode) and extremely orthodox. RSA, DSA and Elgamal are encryption algorithms, not protocols. Used correctly, any of them in 2kbit strength is going to be a lot more than you need. > So it is easy to see OpenPGP keys and "feel" it follows the same > principle. Right, and this is my biggest problem with most forms of computer security. Computers are nothing more nor less than phenomenally capable engines of mathematics -- but the average person cannot think mathematically. Thus, rather than dealing with computers on the basis of facts and reasoned analysis, people deal with computers according to superstition. > Certainly, if I go to USA, I would be carrying a passport, but I > don't know if USA citizens use to have a passport, if they have never > travelled outside USA. Only about one American in six has a passport. Up until very recently, very few Americans needed one; we could travel in Canada and Mexico with just our driver's license for ID. That meant we could travel from Guam to Maine, from the North Pole down to Cozumel, without a passport. With that kind of access to the world, why bother filing for a passport? Since 2001, though, border controls have become much tighter. Passports will get you through borders much faster. Many more Americans are getting them nowadays, as compared to a decade ago. I've held once since 1993, when I was an exchange student in Germany. > I am not planning to go to USA, but... what ID document should I > require in order to sign a key there? A passport is the gold standard. In my experience, most people who attend keysigning parties will bring passports with them. You can require any form of ID you want. Looking through my wallet, I see... two credit cards, a University of Iowa ID, an Iowa driver's license, my Association for Computing Machinery membership card, and an Iowa Permit to Acquire Pistols and Revolvers. So that's three forms of government-issued identification (the University being government-funded). My own personal rules for identification: either a passport, or else two forms of government-issued ID which show your full name and have a photograph of you. From taum.hanlon at gmail.com Mon Jun 30 19:08:06 2008 From: taum.hanlon at gmail.com (Taum Hanlon) Date: Mon, 30 Jun 2008 22:08:06 -0400 Subject: [Enigmail] Help - Taum Tanlon In-Reply-To: <48693B5A.9040209@mac.com> References: <4868EA2B.8070208@mac.com> <48691AEA.5060604@gmail.com> <48693B5A.9040209@mac.com> Message-ID: <48699186.4000501@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 hmmm... now that I look at that sent message I can see 'signature verification failed'. So I sent a signed message to myself and it has a green pen and says 'good signature'. What could cause this? I'll sign this and then look at it and see if it's 'good' or 'bad' Taum Charly Avital wrote: | | Signature does not verify: | | Error - signature verification failed | gpg: Signature made Mon Jun 30 13:42:01 2008 EDT using DSA key ID 74DE64F6 | gpg: BAD signature from "Taum Hanlon " | | | -----BEGIN GPG OUTPUT----- | gpg: Signature made Mon Jun 30 13:42:01 2008 EDT using DSA key ID 74DE64F6 | gpg: BAD signature from "Taum Hanlon " | -----END GPG OUTPUT----- | | | Regards, | Charly | | _______________________________________________ | Enigmail mailing list | Enigmail at mozdev.org | https://www.mozdev.org/mailman/listinfo/enigmail -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkhpkYYACgkQ+gEKxnTeZPZIQgCeL1W6BCvkZ9JXktUV/NCq5v58 EjgAn3ATbguTnX3+/RLS4n8X1zbCQF3n =QDiw -----END PGP SIGNATURE----- From taum.hanlon at gmail.com Mon Jun 30 19:19:22 2008 From: taum.hanlon at gmail.com (Taum Hanlon) Date: Mon, 30 Jun 2008 22:19:22 -0400 Subject: [Enigmail] Help - Taum Tanlon In-Reply-To: <48699186.4000501@gmail.com> References: <4868EA2B.8070208@mac.com> <48691AEA.5060604@gmail.com> <48693B5A.9040209@mac.com> <48699186.4000501@gmail.com> Message-ID: <4869942A.3070505@gmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 That is also giving 'signature verification failed'. I followed the directions and simply created the new key pair, using the default type (but the longer bit length because I hadn't read Robert Hansen's explanation yet), and then I uploaded it to the key server by right clicking on the key to uploading to a keyserver. So what did I do wrong, and is there a way to remedy the situation or do I need to revoke the key I uploaded and make a new one? Taum Taum Hanlon wrote: | hmmm... now that I look at that sent message I can see 'signature verification failed'. | So I sent a signed message to myself and it has a green pen and says 'good signature'. | | What could cause this? | I'll sign this and then look at it and see if it's 'good' or 'bad' | | Taum | | | Charly Avital wrote: | | | | Signature does not verify: | | -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkhplCoACgkQ+gEKxnTeZPYRsQCdFL7beDmSXYwfRg+2+qlpPoGW BsMAn21uCidF4snir3sCK2hOTFwHdOtV =a2tX -----END PGP SIGNATURE----- From jmoore3rd at bellsouth.net Mon Jun 30 21:05:17 2008 From: jmoore3rd at bellsouth.net (John W. Moore III) Date: Tue, 01 Jul 2008 00:05:17 -0400 Subject: [Enigmail] and for my first mistake... In-Reply-To: <48697D7B.4090100@sixdemonbag.org> References: <4867EB98.5010408@gmail.com> <48690639.5050507@gmail.com> <486920EB.5070504@sixdemonbag.org> <48693250.6050409@gmail.com> <48697D7B.4090100@sixdemonbag.org> Message-ID: <4869ACFD.1020004@bellsouth.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Robert J. Hansen wrote: > Right, and this is my biggest problem with most forms of computer > security. Computers are nothing more nor less than phenomenally capable > engines of mathematics -- but the average person cannot think > mathematically. Thus, rather than dealing with computers on the basis > of facts and reasoned analysis, people deal with computers according to > superstition. All Computers are basically very large [comparatively] Calculators. I remember a High School Friend whose Father was a Southern Bell Attorney and He had a prototype LED screen calculator that would only support the functions of Add/Subtract. Very nifty and fascinating. Estimated cost of the simple unit Jack Berry had was $600 in 1969. Back then, when students in High School had to think 'mathematically' the scariest thing was a "word problem" on a Math Test. The 'math' was easy but the discerning of which words fit what part of the formula was where most failed. Math = Logic = Math. The calculator has killed logical thinking, IMlessthanHO!! GIGO applies more today than I've ever before seen. [GIGO = Garbage In, Garbage Out] >> Certainly, if I go to USA, I would be carrying a passport, but I >> don't know if USA citizens use to have a passport, if they have never >> travelled outside USA. > > Only about one American in six has a passport. Up until very recently, > very few Americans needed one; we could travel in Canada and Mexico with > just our driver's license for ID. That meant we could travel from Guam > to Maine, from the North Pole down to Cozumel, without a passport. With > that kind of access to the world, why bother filing for a passport? Actually it is 1 in 7 as of February 2008. Many in the U.S. can recall last Summer when it wasn't gasoline prices that disrupted Vacation Plans; it was not receiving Passports back from "State" in time to travel to places that recently only required /any/ government ID including a Voter Registration Card. Even today, the vast majority of U.S. Citizens do not require a $100 USD Passport. The U.S. is larger than Western Europe + the U.K. and You only need an ID when Your are 'stopped' for a traffic violation. > > I've held once since 1993, when I was an exchange student in Germany. Do You renew it every 5 years? >> I am not planning to go to USA, but... what ID document should I >> require in order to sign a key there? > > A passport is the gold standard. In my experience, most people who > attend keysigning parties will bring passports with them. Only if they have one. It really depends upon where the BoF Party is held and the context. In My experience, in the U.S. the most common form of Government Issued Picture ID is the Driver's License/State ID Card. Due to the prevalence of 'Identity Theft' Warnings even those folks who have Passports do not have them readily available; they are stored in Bank Deposit Boxes or Home Fireproof Safes. We are such a 'Free Nation' that We can travel 3000+ miles without having to display an ID unless We run afoul of a traffic stop. > You can require any form of ID you want. Looking through my wallet, I > see... two credit cards, a University of Iowa ID, an Iowa driver's > license, my Association for Computing Machinery membership card, and an > Iowa Permit to Acquire Pistols and Revolvers. So that's three forms of > government-issued identification (the University being government-funded). Of Course, Student ID Cards are *not* acceptable for purposes of ID 'proof' by most Certificate Authorities. [i.e. VeriSign/Thawte, CAcert and any other I can think of] Institutional Funding is hardly p[roof of Identity for all those who actually benefit from or spend the funds. Neither is a picture ID on a Bank issued Credit Card. These forms of ID are far too easy to obtain with enough 'on deposit'. > My own personal rules for identification: either a passport, or else two > forms of government-issued ID which show your full name and have a > photograph of you. Riddle Me This, Robert; how do You handle the MN/MI issue and designations of Title/Honor? [i.e. Dr., Esq., etc.] My Personal 'Rule of Thumb' is that I will not issue an Exportable Signature until I am comfortable that You are someone I'd be willing to purchase contraband from in a poorly lit back-alley. But now I'm dealing with the WoT on a very practical level which is what 'Trust' should be all about. I have NO interest in 'Sig-Fishers' and I also place more emphasis on 'Trust Sigs/Black Pencil Sigs' than on the common variety. But this is just My rule of thumb. JOHN ;) Timestamp: Tuesday 01 Jul 2008, 00:04 --400 (Eastern Daylight Time) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.5.0-svn4754: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIaaz4AAoJEBCGy9eAtCsPC9IH/3crUUVZ91ZGs9tqg9X9LgPK 5VgRe309A0A2SHEdsVPYn8zenojc5b6qhTbVGarGLjicGMv8LRzyjoVF9i1S2BG1 e6XVE+BEyx+ym23LM4yx2mTQ6Z+b+dz33Om+BDb7aMTa0MlbRAdi3cyQTTddGJLD OeJIW06mbitGDoVandlbK827ZebWgZ5dTaKPIS+sMuhUO5ZkJxVNhmQFrvYzh70g SoaVMSTNlxG8Qyaa8O0DvpV7gYzu8aQqw7rHOnJG4b0qmJ8h7vukvVUOyifl7j89 zdFOZfzTolBdtO7WVYiwlmKU0JKmAQQUoT/PHAGqn97FB04rva27d6DAIcUt89k= =h1Iv -----END PGP SIGNATURE----- From jmoore3rd at bellsouth.net Mon Jun 30 21:12:40 2008 From: jmoore3rd at bellsouth.net (John W. Moore III) Date: Tue, 01 Jul 2008 00:12:40 -0400 Subject: [Enigmail] Help - Taum Tanlon In-Reply-To: <4869942A.3070505@gmail.com> References: <4868EA2B.8070208@mac.com> <48691AEA.5060604@gmail.com> <48693B5A.9040209@mac.com> <48699186.4000501@gmail.com> <4869942A.3070505@gmail.com> Message-ID: <4869AEB8.2040606@bellsouth.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Taum Hanlon wrote: > That is also giving 'signature verification failed'. > So what did I do wrong, and is there a way to remedy the situation or do > I need to revoke the key I uploaded and make a new one? I cannot strongly enough encourage You to *not* Revoke/Re-Generate another Key. Work with this existing Key until You learn/discover the surrounding issues. This how My understanding of 'Learning' works. :-\ Encrypt something to Me [or anyone else] and see if the Message can be Read/Decrypted. Send the Key as an attachment or Link beforehand to make sure that the Key in in the Recipient's Keyring. JOHN ;) Timestamp: Tuesday 01 Jul 2008, 00:12 --400 (Eastern Daylight Time) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.5.0-svn4754: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: https://www.gswot.org Comment: Homepage: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJIaa62AAoJEBCGy9eAtCsPYeAH/jDnd7LXJp6Mi2Y1KlXXSZfY GyNpG1WiqRoHkqkFacyMk7vk/11tU4xqlRLmxXVTXY2CtmSMavEofhBlcnO4MZyQ qYZIBDkIb0wQj6ou9QE4IM0zLplO8Hj9auXPLIoBFVIBd7maONKKzDRVOQQAoOBb 2W1kjJT799xcgbN5yau0yok/gecauTgZjE4dhkmQifKYnPB7YkfOK5Q+316UFF7F ZGu67Ps/iky7FUgiOvPU/hvl3XGVPCa8UJ+Vf/3ZPDf0wTT6ASB7lbYXQjG6zjsy t7DnRLWdeURIo8OLSc8R2+48Ozaq2x4aZaUX1zaf/lhwAqkRc+hNqrOyjrGnLHI= =y6jb -----END PGP SIGNATURE-----