Page MenuHome GnuPG
Feed Advanced Search

Fri, Dec 20

werner closed T7466: gpg4win: Installer creates GnuPG dir regardless of chosen install target as Resolved.

Actually I would like to remove the option to install gpg4win at non-standard places because this is somewhat troublesome. However some users rely on this and thus we better don't remove i.

Fri, Dec 20, 3:54 PM · FAQ, Support, gpg4win

Oct 2 2024

werner triaged T7317: Update the gnupg.org FAQ as Normal priority.
Oct 2 2024, 8:48 AM · www.gnupg.org, FAQ

Sep 26 2024

werner closed T7305: epoch-value for component `libgcrypt` not queried properly as Invalid.

The Libgcrypt version you are using has not been build from git or a released tarballs. Only with a released tarball you would get no suffix. With git bou will see a -betaNNNN suffix.

Sep 26 2024, 11:34 AM · FAQ, Support

Aug 26 2024

bernhard added a comment to T7271: clarify tar format of gpgtar in documentation.

Because a user in https://mstdn.social/deck/@GnuPG/113011825339406300 did read the documentation, I had a look in the documentation and in other public definitions (e.g. https://www.gnu.org/software/tar/manual/html_node/Formats.html#Formats) and I can understand the questions of the user.

Aug 26 2024, 9:05 AM · FAQ, gpgtar, Documentation

Aug 24 2024

werner closed T7271: clarify tar format of gpgtar in documentation as Resolved.

gpgtar is compatible to PGP Desktop's format which they call ZIP. This is technically ustar with the most common extensions. Don't let us go into yet another TAR format discussion.

Aug 24 2024, 3:07 PM · FAQ, gpgtar, Documentation

Aug 23 2024

werner closed T7265: When "use_keyboxd" is configured --keyring option is ignored? as Resolved.

Good idea. Done for master and gnupg24

Aug 23 2024, 9:19 AM · keyboxd, gnupg, FAQ, Support

Aug 22 2024

janl added a comment to T7265: When "use_keyboxd" is configured --keyring option is ignored?.

Right, thanks for the information. Might I suggest printing a warning when --keyring is given?

Aug 22 2024, 10:55 AM · keyboxd, gnupg, FAQ, Support
werner edited projects for T7265: When "use_keyboxd" is configured --keyring option is ignored?, added: Support, FAQ, gnupg, keyboxd; removed Bug Report.

The --keyring option is deprecated and does not work at all if the keyboxd is used. This is the default for a new GnuPG 2.4 installation.

Aug 22 2024, 10:29 AM · keyboxd, gnupg, FAQ, Support

Jan 19 2023

werner removed a project from T3902: Use the term password instead of passphrase: gnupg (gpg23).
Jan 19 2023, 4:51 PM · gnupg24, FAQ, Documentation

Dec 5 2022

ikloecker edited projects for T3903: Kleopatra: Use the term password instead of passphrase, added: kleopatra; removed gnupg (gpg23).
Dec 5 2022, 8:27 AM · kleopatra, FAQ, Documentation

Jun 2 2022

werner closed T6009: bash pka helper tool as Resolved.

You may want to write gnupg-users@gnupg.org to tell about this tool. That seems to be a better place with a larger audience. Or you add it to wiki.gnupg.org.

Jun 2 2022, 8:59 AM · FAQ

Mar 16 2022

gniibe closed T4931: gnupg unusable with a long path to $HOME as Resolved.
Mar 16 2022, 3:03 PM · Not A Bug, FAQ, gnupg

Oct 10 2021

calestyo added a comment to T5646: indicate wrong passphrase via exit status.

I did in fact check --status-fd before, but I'm not sure whether it gives me the information I wanted.

Oct 10 2021, 5:12 PM · gnupg, FAQ
werner closed T5646: indicate wrong passphrase via exit status as Resolved.

Please use the --status-fd interface. This yields all the info you need. An exit code is not distinct enough for such purpose and you need to check the status lines in any case. For scripting gpgme-tool or gpgme-json might be useful as well because they do all the nitty-gritty parts of using gpg correctly

Oct 10 2021, 4:15 PM · gnupg, FAQ

Sep 29 2021

bernhard added a comment to T3893: Timeout for receive-keys.

In my understanding, it should be possible to wait for the gpg command pipe from a different process and then terminate the connection on a timeout, kllling the process eventually. So the Enigmail side could implement something. These days I'm not sure what Enigmail uses for OpenPGP support. Thunderbird has moved on to a different implementation and Enigmail stops supporting Thunderbird 68 in two days https://www.enigmail.net/index.php/en/home/news/71-2021-08-31-end-of-support-for-thunderbird

Sep 29 2021, 4:12 PM · Enigmail, FAQ, gnupg

Sep 22 2021

werner closed T5618: GPG Key Server Doesn´t Work as Resolved.

Ah well, Kleopatra has a GUI to set the keyserver - that is probably easier to use.

Sep 22 2021, 7:17 PM · Support, FAQ, Keyserver, gpg4win

Sep 17 2021

luweitest added a comment to T5589: add context menu for normal operation after installation.

Thanks for the explanation. I understand gnupg-w32 is mainly for installing the command line component, yet adding a context menu for a specific file type is just as simple as importing a reg file like:

Sep 17 2021, 5:46 AM · Installer, FAQ, gpg4win

Sep 14 2021

aheinecke closed T5589: add context menu for normal operation after installation as Wontfix.

It is related in the following way:
The Gpg4win installer creates these context menu actions through the component GpgEX.
The Gpg4win installer does not support Windows XP anymore.

Sep 14 2021, 8:18 AM · Installer, FAQ, gpg4win
luweitest reopened T5589: add context menu for normal operation after installation as "Open".

What I need is exactly ikloecker described on Linux. The point is NSIS installer gnupg-w32-2.2.27_20210111.exe (and versions above, I am sure) do not create context menu shortcut. Windows XP is not the point. Same on another Windows 7 machine. Do you need I find another windows 10 machine to test? I think it's easier to check whether the installer has that feature or not.

Sep 14 2021, 4:26 AM · Installer, FAQ, gpg4win

Sep 9 2021

aheinecke closed T5589: add context menu for normal operation after installation as Wontfix.

No support for Windows XP anymore.

Sep 9 2021, 12:12 PM · Installer, FAQ, gpg4win
luweitest added a comment to T5589: add context menu for normal operation after installation.

Sorry, I should clarify that I am using the windows installer
gnupg-w32-2.2.27_20210111.exe on WindowsXpSp3. The installer do not create
any context menu since I use it. I use Gnupg with Enigmail in Thunderbird,
so Gpg4win is not preferred.

Sep 9 2021, 9:23 AM · Installer, FAQ, gpg4win

Sep 8 2021

werner edited projects for T5589: add context menu for normal operation after installation, added: gpg4win, FAQ, Installer; removed Feature Request.

This is a hard to solve problem in the NSIS installer: If you accidently started more than one installer they may both register files for update at the next restart. Now after the restart the file which is to be renamed does not anymore exist and thus a component or even library is not available. In this case it is GpgEX, the explorer plugin.

Sep 8 2021, 7:09 PM · Installer, FAQ, gpg4win

Aug 31 2021

werner closed T5580: gpg2 proves signature correct, even if empty file is removed as Resolved.

gpg verifies the content of the file and not its meta data (file name). Thus an empty file is identical to a non-existing file. The OpenPGP protocol does not allow to distinguish between a detached signature and an embedded signature if you sign an empty file.

Aug 31 2021, 7:53 AM · gnupg, FAQ

Aug 25 2021

werner triaged T5527: keys.gnupg.net is obsolete as Low priority.
Aug 25 2021, 4:31 PM · Keyserver, FAQ, Documentation
werner closed T5552: Key information loading is sometimes very slow. Suspected that the problem originated from gnupg. as Resolved.

Okay, I close this as a keyserver infrastructure problem. Feel free tore-open if you get other infos.

Aug 25 2021, 4:30 PM · FAQ, Keyserver, gnupg

Aug 13 2021

werner changed the edit policy for FAQ.
Aug 13 2021, 10:58 PM

Jun 22 2021

werner renamed T5504: git commit signing fails due to git's included gpg version. from Commit signing fails to git commit signing fails due to git's included gpg version..
Jun 22 2021, 5:33 PM · FAQ, gpg4win
werner edited projects for T5504: git commit signing fails due to git's included gpg version., added: FAQ; removed Bug Report.

So let's close this task.

Jun 22 2021, 5:32 PM · FAQ, gpg4win

Jun 3 2021

werner merged T5470: T5454 Continue Gpgme still shows secret flag even when the secret key content is missing into T5454: Failed to sign with subkey with a signature function using gpgme_op_keysign.
Jun 3 2021, 9:23 PM · FAQ, Support, gpgme
Saturneric closed T5454: Failed to sign with subkey with a signature function using gpgme_op_keysign as Resolved.
Jun 3 2021, 3:12 PM · FAQ, Support, gpgme

Jun 2 2021

werner closed T3714: Failing to decrypt due to missing MDC as Resolved.
Jun 2 2021, 11:05 AM · FAQ, kleopatra

May 31 2021

werner added a comment to T5454: Failed to sign with subkey with a signature function using gpgme_op_keysign.

Take care: It is not clear whether you may use a [C} subkey for certification. GnuPG currently accepts this but the RFC can also be read as primary keys needs to to do the certification.

May 31 2021, 2:54 PM · FAQ, Support, gpgme
ikloecker added a comment to T5454: Failed to sign with subkey with a signature function using gpgme_op_keysign.

For signing (aka certifying) another key you need a (sub)key with the "certify" capability. Your signing subkey can only be used for signing data but not for certifying keys. This isn't specific to gpgme. See https://datatracker.ietf.org/doc/html/rfc4880#section-5.2.3.21.

May 31 2021, 9:44 AM · FAQ, Support, gpgme

May 28 2021

werner edited projects for T5454: Failed to sign with subkey with a signature function using gpgme_op_keysign, added: Support, FAQ; removed Bug Report.

Yes, you need the secret part of the primary key. gpgme has this info but it is easy to miss. Even our gpgme/tests/run-keylist.c debug tool did not show it directly. I modified it to make this more clear, see the latest gpgme commit. Here is an example for my key:

$ ./run-keylist --verbose --with-secret  63113AE866587D0A
keyid   : 63113AE866587D0A
caps    : esc
flags   : secret
upd     : 0 (0)
fpr    0: AEA84EDCF01AD86C4701C85C63113AE866587D0A
grip   0: CE5C1F1B8C96F1A078A2D1932EEE738A854ED976
curve  0: ed25519
caps   0: sc
flags  0:
fpr    1: E05BA20ED4F17768613B03C53CD7B3A055039224
grip   1: 7A1E3130C9CBDBF203A0AD8E186D9C511D5019FF
curve  1: cv25519
caps   1: e
flags  1: secret
fpr    2: 8777461F2A074EBC480D359419CC1C9E085B107A
grip   2: FF35C6E765F440145095750DC97D43D496C5ABEA
curve  2: ed25519
caps   2: s
flags  2: secret
May 28 2021, 7:32 PM · FAQ, Support, gpgme

Apr 27 2021

werner added a comment to T5412: Getting "Invalid digest algorithm", when trying to generate ECDH keys, in batch mode.

The curve is not defined to be used for ECDH (encryption); in fact it should in general only be used with the EdDSA
algorithm. You need to use "Key-Type: eddsa". Note that the EdDSA signing algorithm is different than the commonly used ECDSA signing algorithm.

Apr 27 2021, 2:39 PM · FAQ, gnupg, OpenPGP
masoudbahar added a comment to T5412: Getting "Invalid digest algorithm", when trying to generate ECDH keys, in batch mode.

Thanks for the quick response Werner. I knew I could use it with quick-gen-key and I’ve updated my config file to have it as default.
But, just for my understanding, is there a reason ed25519 cannot be used with full-gen-key and gen-key in batch mode?

Apr 27 2021, 12:13 PM · FAQ, gnupg, OpenPGP
werner closed T5412: Getting "Invalid digest algorithm", when trying to generate ECDH keys, in batch mode as Resolved.
Apr 27 2021, 8:34 AM · FAQ, gnupg, OpenPGP
werner edited projects for T5412: Getting "Invalid digest algorithm", when trying to generate ECDH keys, in batch mode, added: gnupg, FAQ; removed gnupg (gpg23), Bug Report.

You can't use ecdh with ed25519.

Apr 27 2021, 8:33 AM · FAQ, gnupg, OpenPGP

Apr 12 2021

werner closed T5391: Website FAQ missing charset as Wontfix.

No Apache - No Default charset per suffix. The version for browsers is the HTML version.

Apr 12 2021, 5:43 PM · gpgweb, FAQ
Angel added a comment to T5367: PDF signed with --clearsign has image distorted..

The surprising thing is that it works at all. I wouldn't be surprised if certain would simply reject it as "not a pdf" given that the "%PDF-1.x" marker isn't at the beginning.

Apr 12 2021, 2:40 AM · Not A Bug, FAQ
Angel created T5391: Website FAQ missing charset.
Apr 12 2021, 2:14 AM · gpgweb, FAQ
Angel added a watcher for FAQ: Angel.
Apr 12 2021, 1:52 AM

Mar 27 2021

werner closed T5367: PDF signed with --clearsign has image distorted. as Resolved.
Mar 27 2021, 11:29 AM · Not A Bug, FAQ
werner edited projects for T5367: PDF signed with --clearsign has image distorted., added: FAQ, Not A Bug; removed Bug Report.

--clearsign may only be used for plain text documents due to line ending conversion etc.

Mar 27 2021, 11:29 AM · Not A Bug, FAQ

Jan 7 2021

werner edited projects for T4822: mlock requires privilege, added: FAQ; removed Bug Report.

It is possible to disable the mlock thingy and if that is not wanted the application should be modified to be suid(root) during Libgcrypt initialization - this is actually how we handle this in GnuPG. Or maybe I don't understand the bug described here. It seems to be more of a support question.

Jan 7 2021, 11:22 AM · FAQ, Solaris, libgcrypt

Dec 11 2020

TaaviE added a comment to T5177: GPG WKD lookup does not send correct SNI.

The specs might just want to say that it just expects the wildcard to be broken, not that it expects an empty record.

Dec 11 2020, 10:49 AM · FAQ, wkd
werner added a comment to T5177: GPG WKD lookup does not send correct SNI.

Than put something into the TXT - it does not matter and is only used to break the wildcard.

Dec 11 2020, 10:41 AM · FAQ, wkd

Dec 10 2020

TaaviE added a comment to T5177: GPG WKD lookup does not send correct SNI.

Cloudflare doesn't seem to allow empty DNS TXT records...

Dec 10 2020, 4:30 PM · FAQ, wkd
werner closed T5177: GPG WKD lookup does not send correct SNI as Resolved.

From the specs:

Dec 10 2020, 4:28 PM · FAQ, wkd

Aug 24 2020

werner closed T4993: Delete only private signing key from within gpg (without reimporting subkeys or 'rm ~/.gnupg/private-keys-v1.d/KEYGRIP.key') as Resolved.
Aug 24 2020, 7:49 AM · FAQ, gnupg (gpg22)

Aug 9 2020

werner closed T4862: pubkeys are imported despite the --no-auto-key-retrieve option as Resolved.

No more info was provided.

Aug 9 2020, 5:19 PM · Too Old, FAQ, gnupg
yearen added a comment to T5017: Kleopatra can't decrypt the tor. I can't verify the signature..

ı dont understand can you explain me more specific? which file name ? when ı select the Tor installer gpg cant decrypt it not signature file

Aug 9 2020, 12:24 AM · FAQ

Aug 8 2020

werner merged task T5017: Kleopatra can't decrypt the tor. I can't verify the signature. into Restricted Maniphest Task.
Aug 8 2020, 11:41 PM · FAQ
werner edited projects for T5017: Kleopatra can't decrypt the tor. I can't verify the signature., added: FAQ; removed Bug Report.

Download the corresponding tor signature file. Then enter that file name.

Aug 8 2020, 11:40 PM · FAQ

Jul 14 2020

n0542344 added a comment to T4993: Delete only private signing key from within gpg (without reimporting subkeys or 'rm ~/.gnupg/private-keys-v1.d/KEYGRIP.key').

Dear Werner!

Jul 14 2020, 11:49 AM · FAQ, gnupg (gpg22)
n0542344 added a comment to T4993: Delete only private signing key from within gpg (without reimporting subkeys or 'rm ~/.gnupg/private-keys-v1.d/KEYGRIP.key').

Dear Werner!

Jul 14 2020, 11:40 AM · FAQ, gnupg (gpg22)

Jul 13 2020

werner triaged T4993: Delete only private signing key from within gpg (without reimporting subkeys or 'rm ~/.gnupg/private-keys-v1.d/KEYGRIP.key') as Normal priority.

To change the expiration date, I would suggest to use

Jul 13 2020, 1:36 PM · FAQ, gnupg (gpg22)

Apr 30 2020

werner added a comment to T4931: gnupg unusable with a long path to $HOME.

Yes, with current gnupg it works w/o problems. Well, unless systemd decided to remove the directory. There is a loginctl(1) way to avoid this.

Apr 30 2020, 12:22 PM · Not A Bug, FAQ, gnupg
t8m added a comment to T4931: gnupg unusable with a long path to $HOME.

Also I suppose the 2.1.20 version above is typo and 2.2.20 is actually meant.

Apr 30 2020, 11:04 AM · Not A Bug, FAQ, gnupg
t8m added a comment to T4931: gnupg unusable with a long path to $HOME.

Can you please clarify? Let's assume I am using current gnupg version (2.2.20) and /run/user/$UID exists. Everything should work seamlessly, should it?

Apr 30 2020, 11:03 AM · Not A Bug, FAQ, gnupg
werner triaged T4931: gnupg unusable with a long path to $HOME as Normal priority.

You are still using the old way of having the sockets in ${GNUPGHOME:-~/.gnupg}. Since 2.2.13 we use

Apr 30 2020, 9:32 AM · Not A Bug, FAQ, gnupg

Apr 16 2020

werner removed a project from T3714: Failing to decrypt due to missing MDC: gnupg.
Apr 16 2020, 9:47 AM · FAQ, kleopatra

Apr 7 2020

werner closed T4909: gpg2: "decryption failed: No secret key" DBG: search.keyring.c.1109, parse.keyring.c.415 as Resolved.

That smells very much like an old and insecure version 3 key. We don't allow them anymore - use gpg 1 to decrypt old material but never use that key to sign stuff or give it to others to encrypt to you. It is just too weak.

Apr 7 2020, 8:59 PM · FAQ

Mar 4 2020

werner added a comment to T4862: pubkeys are imported despite the --no-auto-key-retrieve option.

keyserver-URL needs to be replaced with with a keyserver URL, like

hkps://hkps.pool.sks-keyservers.net
Mar 4 2020, 9:34 AM · Too Old, FAQ, gnupg

Mar 1 2020

cipherpunks added a comment to T4862: pubkeys are imported despite the --no-auto-key-retrieve option.

In my particular case, I want to find out if an email address has a publickey associated to it that is publically available anywhere. I do not want to import the key automatically. I used to use this command:

Mar 1 2020, 5:00 PM · Too Old, FAQ, gnupg

Feb 29 2020

werner edited projects for T4862: pubkeys are imported despite the --no-auto-key-retrieve option, added: gnupg, FAQ; removed Bug Report.

--auto-key-retrieves tries to find a key when verifying a signature. --locate-key however does the same as what -r does and locates a key for further use. If you don't what that, don't include a key discovery mechanism in the the auto-key-locate like (wkd in this case, which is anyway the default).

Feb 29 2020, 5:49 PM · Too Old, FAQ, gnupg

Feb 20 2020

werner closed T4845: error generating key pair as Invalid.
Feb 20 2020, 9:02 PM · FAQ, gpg4win

Feb 14 2020

werner added projects to T4845: error generating key pair: gpg4win, FAQ.

Older version of GnuPG had a rare bug in the keyring update code.

Feb 14 2020, 2:18 PM · FAQ, gpg4win

Dec 16 2019

werner changed the status of T4775: gpg-connect-agent mangles output of scd random command from Invalid to Resolved.

[When changing a bug to a possible FAQ item it should be resolved and not marked as invalid]

Dec 16 2019, 4:31 PM · FAQ
werner closed T4775: gpg-connect-agent mangles output of scd random command as Invalid.

All output of Assuan data lines is percent escaped. That is obvious because it is a line based format. You need to unescape it. Either use command line option

--decode

in-line command

/decode

or use

/datafile NAME

to write to a file.

Dec 16 2019, 1:43 PM · FAQ

Nov 14 2019

werner closed T4749: --passphrase-fd 0 not working from command line as Invalid.

This is a bug tracker and not a general help line. You are better off asking on the gnupg-uisers mailing list.

Nov 14 2019, 10:49 AM · FAQ, gnupg

Sep 30 2019

werner edited projects for T4708: gpg cannot retrieve key via wkd from http2 server, added: Documentation, FAQ; removed Bug Report.
Sep 30 2019, 9:39 AM · FAQ, Documentation, dirmngr

Sep 27 2019

werner closed T4711: Misleading error messages and debug logs for DNS failures while fetching via WKD as Resolved.

Do not use this legacy debug stuff. Use --debug CATEGORY. For example

Sep 27 2019, 10:52 AM · FAQ

May 2 2019

steve added a comment to T3902: Use the term password instead of passphrase.

Users keep showing up in our support, confused by this inconsistency. This problem continues in 2020. What's holding this back?

May 2 2019, 11:25 PM · gnupg24, FAQ, Documentation

Mar 18 2019

werner closed T3065: dirmngr: proxy issues with dnslookup causing failure as Invalid.

No we can't we need to know the IP addresses to handle the pools. I have given a workaround for you in my previous comment. You can also use install Tor which we can use for DNS resolving.

Mar 18 2019, 7:26 PM · gnupg (gpg22), dns, dirmngr

Feb 4 2019

aheinecke claimed T3902: Use the term password instead of passphrase.

First of all I find PIN a very bad term. "Personal Identification Number" for example for my Gnuk token is confusing. I use a string there,... So let us use PIN only where it really has to be a number. Otherwise it is a Password.

Feb 4 2019, 1:47 PM · gnupg24, FAQ, Documentation
werner added a comment to T3902: Use the term password instead of passphrase.

Despite that I created this task, I am still not not convinced that removing the term passphrase is a good idea. If we do this in gnupg we would need to change all strings to make it clear that the passphrase is used to protect one's own key and has nothing to do with encryption etc. In fact the term PIN would be better because it is common knowledge that you use a PIN to get access to something you own. There would be less confusion on the purpose of the passphrase. Sure PIN is usually considered to be a number. However my bank allows a string to be used as, what they call, PIN.

Feb 4 2019, 11:26 AM · gnupg24, FAQ, Documentation
aheinecke added a comment to T3902: Use the term password instead of passphrase.

There has been some progress here. At least we no longer use "passphrase" in new code. We still have not yet replaced all old occurances.

Feb 4 2019, 10:41 AM · gnupg24, FAQ, Documentation

Dec 28 2018

werner renamed T4299: Problem to verify PGP key used by Microsoft from Problem to verify PGP key to Problem to verify PGP key used by Microsoft.
Dec 28 2018, 6:14 PM · gpgol, gpg4win
JW-D added a comment to T4299: Problem to verify PGP key used by Microsoft.

I contacted Microsoft Security Response Center (MSRC) in regard to this matter. They confirmed the failed PGP key verification, but have not yet any explanation for that.

Dec 28 2018, 4:12 PM · gpgol, gpg4win

Dec 21 2018

BenM added a comment to T4299: Problem to verify PGP key used by Microsoft.

What are MS doing when they get it right, though? I'd look at the differences between those two to identify what they've messed up here.

Dec 21 2018, 8:18 PM · gpgol, gpg4win
werner updated subscribers of T4299: Problem to verify PGP key used by Microsoft.

Thanks. The mail is a standard, non-crypto mail with one attachment. That attachment is a TNEF file which has according to ytnef(1) just one file. That file has the name gpgolPGP.dat and contains a clearsigned message.

Dec 21 2018, 1:19 PM · gpgol, gpg4win
JW-D added a comment to T4299: Problem to verify PGP key used by Microsoft.

Sure, I zipped the eml which failed and I´ll send it by e-mail to you

Dec 21 2018, 9:38 AM · gpgol, gpg4win
werner added a comment to T4299: Problem to verify PGP key used by Microsoft.

Is it possible that you upload or send me a copy of such a mail (wk gnupg.org)? ZIP or tar the eml file and send it in an encrypted mail to me to make sure it won't be modified on the transport.

Dec 21 2018, 8:37 AM · gpgol, gpg4win

Dec 20 2018

JW-D added a comment to T4299: Problem to verify PGP key used by Microsoft.

I checked my mails in detail, and I can confirm that the error occurs only with "Microsoft security update releases". Indeed "Microsoft security advisory notification" and "Microsoft security update summary for..." will be verified correctly.

Dec 20 2018, 9:39 PM · gpgol, gpg4win
jmrexach added a comment to T4299: Problem to verify PGP key used by Microsoft.

I agree. It also happens to me. But only with mails coming from "Microsoft security update releases". Mails coming form "Microsoft security advisory notification" and Microsoft security update summary for..." are ok and are signed by the same key. It could be some trouble in MS automated email treatment.

Dec 20 2018, 7:50 PM · gpgol, gpg4win
werner edited projects for T4299: Problem to verify PGP key used by Microsoft, added: FAQ, OpenPGP; removed Bug Report.
Dec 20 2018, 8:40 AM · gpgol, gpg4win

Dec 14 2018

wheelerlaw added a comment to T3065: dirmngr: proxy issues with dnslookup causing failure.

So if your DNS resolver does not tell us the IP addresses, we can't do anything about it.

Dec 14 2018, 7:25 PM · gnupg (gpg22), dns, dirmngr

Dec 11 2018

werner edited projects for T3065: dirmngr: proxy issues with dnslookup causing failure, added: FAQ; removed gnupg (gpg22).
Dec 11 2018, 3:48 PM · gnupg (gpg22), dns, dirmngr

Nov 5 2018

werner edited projects for T3118: gpg --sign --local-user ... fails with smartcard, added: gnupg; removed gnupg (gpg22).
Nov 5 2018, 9:39 AM · gnupg, Documentation, FAQ

Jun 6 2018

werner added a comment to T3714: Failing to decrypt due to missing MDC.

BTW, you now need to use --rfc2440 to create a non-mdc message for testing.

Jun 6 2018, 4:30 PM · FAQ, kleopatra

Jun 1 2018

aheinecke added a comment to T3714: Failing to decrypt due to missing MDC.

It's nice. Although for now I've only added a message in the legacy_cipher_nomdc case:

Jun 1 2018, 2:57 PM · FAQ, kleopatra
werner added a comment to T3714: Failing to decrypt due to missing MDC.

I justed commited some gadgets to gpgme which might be helpful But please show warnings etc before you use that new option.

Jun 1 2018, 1:51 AM · FAQ, kleopatra

Apr 13 2018

aheinecke created T3903: Kleopatra: Use the term password instead of passphrase.
Apr 13 2018, 1:58 PM · kleopatra, FAQ, Documentation
werner created T3902: Use the term password instead of passphrase.
Apr 13 2018, 1:55 PM · gnupg24, FAQ, Documentation

Apr 11 2018

JJworx added a comment to T3893: Timeout for receive-keys.

You are right in that enigmail uses no-auto-check-trustdb

Apr 11 2018, 10:23 AM · Enigmail, FAQ, gnupg
JJworx added a comment to T3893: Timeout for receive-keys.

As far as I understand your comment there is already a timeout of 15s per connection. But as you wrote, it doesn't fit all cases. In my case, gpg.exe just stayed open indefinitely.

Apr 11 2018, 10:23 AM · Enigmail, FAQ, gnupg
werner triaged T3893: Timeout for receive-keys as Low priority.

man dirmngr

Apr 11 2018, 10:12 AM · Enigmail, FAQ, gnupg

Jan 19 2018

aheinecke added a comment to T3714: Failing to decrypt due to missing MDC.

I have not checked whether we make this available in the GPGME API

Jan 19 2018, 7:37 AM · FAQ, kleopatra

Jan 18 2018

werner added a comment to T3714: Failing to decrypt due to missing MDC.

There can't be an MDC warning if MDC is not used ;-)

Jan 18 2018, 7:37 PM · FAQ, kleopatra