Page MenuHome GnuPG

KeyserverTag
ActivePublic

Recent Activity

Yesterday

werner closed T5618: GPG Key Server Doesn´t Work as Resolved.

Ah well, Kleopatra has a GUI to set the keyserver - that is probably easier to use.

Wed, Sep 22, 7:17 PM · Support, FAQ, Keyserver, gpg4win

Tue, Sep 7

FierzvID added a member for Keyserver: FierzvID.
Tue, Sep 7, 10:42 PM
FierzvID added a watcher for Keyserver: FierzvID.
Tue, Sep 7, 10:41 PM

Wed, Aug 25

werner triaged T5527: keys.gnupg.net is obsolete as Low priority.
Wed, Aug 25, 4:31 PM · Keyserver, FAQ, Documentation
werner closed T5552: Key information loading is sometimes very slow. Suspected that the problem originated from gnupg. as Resolved.

Okay, I close this as a keyserver infrastructure problem. Feel free tore-open if you get other infos.

Wed, Aug 25, 4:30 PM · FAQ, Keyserver, gnupg

Aug 13 2021

werner changed the edit policy for Keyserver.
Aug 13 2021, 11:06 PM

Jul 28 2021

werner removed a parent task for T4694: manage first-party attestations: Restricted Maniphest Task.
Jul 28 2021, 3:20 PM · Keyserver, Feature Request

Jul 15 2021

brent0919 added a comment to U11 Jacob Smith.

[[ URL | foreach ($list as $item) {

work_miracles($item);

} ]]

Jul 15 2021, 6:55 PM · Keyserver

Jun 21 2021

Valodim added a comment to T4163: hkps://hkps.pool.sks-keyservers.net has to many bad servers to be a good default.

The sks pool is now officially gone.

Jun 21 2021, 11:50 PM · gnupg, Keyserver

Feb 2 2021

werner closed T5105: can't find users with Kleopatra when press "Look up on server" as Resolved.

Please do not repeat you question, this won't give you anymore attention. Read my comment above and please ask on a mailing list etc.

Feb 2 2021, 4:00 PM · Support, kleopatra, Keyserver
fabior added a comment to T5105: can't find users with Kleopatra when press "Look up on server".

Good morning,

Feb 2 2021, 12:38 PM · Support, kleopatra, Keyserver

Jan 28 2021

Valodim added a comment to T4163: hkps://hkps.pool.sks-keyservers.net has to many bad servers to be a good default.

The last server of the HKPS pool dropped off for several hours yesterday, during which hkps.pool.sks-keyservers.net could not be resolved.

Jan 28 2021, 11:17 AM · gnupg, Keyserver

Jan 5 2021

wiktor-k added a comment to T4694: manage first-party attestations.

For the context of all subscribed parties I think Werner refers to what Hockeypuck is doing: https://lists.gnupg.org/pipermail/gnupg-users/2020-December/064441.html

Jan 5 2021, 10:45 AM · Keyserver, Feature Request
werner lowered the priority of T4694: manage first-party attestations from High to Low.

Meanwhile there are simpler ideas and code on how to do only authenticated uploads. Thus lowering the prio.

Jan 5 2021, 10:41 AM · Keyserver, Feature Request
werner triaged T5072: Keyserver presents the expiry date incorrectly as Low priority.
Jan 5 2021, 9:37 AM · Keyserver
werner triaged T5105: can't find users with Kleopatra when press "Look up on server" as Low priority.

(Reporter has problems running his own keyserver and accessing it.)

Jan 5 2021, 9:28 AM · Support, kleopatra, Keyserver

Dec 4 2020

Valodim added a comment to T4163: hkps://hkps.pool.sks-keyservers.net has to many bad servers to be a good default.

Perhaps of interest for this issue: the HKPS pool has consisted of only a single server for a couple of months now.

Dec 4 2020, 1:07 PM · gnupg, Keyserver

Nov 27 2020

werner lowered the priority of T3392: keyserver default should include pool onionbalance hkp://jirk5u4osbsr34t5.onion from Normal to Wishlist.
Nov 27 2020, 5:39 PM · Keyserver, Feature Request, dirmngr

Oct 19 2020

fabior added a comment to T5105: can't find users with Kleopatra when press "Look up on server".

My sks keyserver is in Linux Ubuntu 18.04 LTS. As a client I'm using windows 10 and gpg4win is 3.1.13.

Oct 19 2020, 6:12 PM · Support, kleopatra, Keyserver
werner removed Version on T5105: can't find users with Kleopatra when press "Look up on server".
Oct 19 2020, 1:27 PM · Support, kleopatra, Keyserver
werner edited projects for T5105: can't find users with Kleopatra when press "Look up on server", added: Keyserver, kleopatra; removed gpg4win.

Are you on Windows or Linux? What version of Kleopatra or Gpg4win are you using?

Oct 19 2020, 1:27 PM · Support, kleopatra, Keyserver

Sep 17 2020

Georg3 created T5072: Keyserver presents the expiry date incorrectly in the S1 Public space.
Sep 17 2020, 10:35 AM · Keyserver

Aug 12 2020

auth0rize created U11 Jacob Smith in the S1 Public space.
Aug 12 2020, 8:11 AM · Keyserver

Jul 9 2020

werner closed T4856: GPG: Key Exchange Put public OpenPGP key into signature as Resolved.
Jul 9 2020, 1:15 PM · Feature Request, gpgol, Keyserver, gnupg

Mar 14 2020

werner added a comment to T4856: GPG: Key Exchange Put public OpenPGP key into signature.

I think that this chnage is useful enough to be backported to 2.2. Done that.

Mar 14 2020, 8:14 PM · Feature Request, gpgol, Keyserver, gnupg

Mar 13 2020

werner changed the status of T4856: GPG: Key Exchange Put public OpenPGP key into signature from Open to Testing.
Mar 13 2020, 5:29 PM · Feature Request, gpgol, Keyserver, gnupg
werner added a comment to T4856: GPG: Key Exchange Put public OpenPGP key into signature.

You can test it now out using GnuPG master: Just add --include-key-block and you can then verify using an empty keyring. Currently --auto-key-retrieve is not needed but we need to think on how we can enable or disable this during verification.

Mar 13 2020, 5:28 PM · Feature Request, gpgol, Keyserver, gnupg
werner added a project to T4856: GPG: Key Exchange Put public OpenPGP key into signature: Feature Request.
Mar 13 2020, 1:17 PM · Feature Request, gpgol, Keyserver, gnupg

Mar 10 2020

Valodim added a comment to T4856: GPG: Key Exchange Put public OpenPGP key into signature.

ftr, here is the thread I had in mind but couldn't recall above. @aheinecke is that your thinking, or a more pgp/mime bound mechanism as @dkg assumed?

Mar 10 2020, 5:50 PM · Feature Request, gpgol, Keyserver, gnupg
dkg added a comment to T4856: GPG: Key Exchange Put public OpenPGP key into signature.

@wiktor-k, "just extend the spec" doesn't necessarily work with existing clients, which might be surprised to find unexpected packets in the signature section of an e-mail. It seems more likely to me that they'd be able to handle (meaning: ignore) an unknown subpacket (as long as it's well-formed) than to handle additional packets. But all of these surmises require testing with existing clients, of course. Has anyone done any of that testing?

Mar 10 2020, 3:19 PM · Feature Request, gpgol, Keyserver, gnupg
wiktor-k added a comment to T4856: GPG: Key Exchange Put public OpenPGP key into signature.

This is a nice idea and although it overlaps with Autocrypt it has other uses too: for example verification of signed files that can be vastly simplified (just get the file and the signature, no key fetching needed, downside: the key attached to the signature could be stale).

Mar 10 2020, 10:04 AM · Feature Request, gpgol, Keyserver, gnupg
dkg added a comment to T4856: GPG: Key Exchange Put public OpenPGP key into signature.

Ah, thanks for pointing out the subpacket option (i guess it could be hashed or unhashed). i don't think any of the subpackets currently defined in RFC4880 supports this use case -- but i guess you could mint a new one, or use a notation.

Mar 10 2020, 1:22 AM · Feature Request, gpgol, Keyserver, gnupg
Valodim added a comment to T4856: GPG: Key Exchange Put public OpenPGP key into signature.

Werner said that it's possible in OpenPGP to also put the pubkey into the signature. (...) The nice advantage is that this will also work for files.

Mar 10 2020, 12:31 AM · Feature Request, gpgol, Keyserver, gnupg

Mar 9 2020

dkg added a comment to T4856: GPG: Key Exchange Put public OpenPGP key into signature.

Hi @aheinecke, thanks for thinking about this, and thanks for tagging me here too. I'm definitely interested.

Mar 9 2020, 9:53 PM · Feature Request, gpgol, Keyserver, gnupg

Feb 26 2020

aheinecke created T4856: GPG: Key Exchange Put public OpenPGP key into signature.
Feb 26 2020, 12:33 PM · Feature Request, gpgol, Keyserver, gnupg
aheinecke added a comment to T4513: dirmngr should try the configured keyservers anyway even if they are all dead.

But searching on Keyservers is also in my opinion not a common use case for Kleopatra users.

Thanks for engaging constructively.

Feb 26 2020, 12:03 PM · Feature Request, Keyserver, dirmngr

Feb 21 2020

dkg added a comment to T4513: dirmngr should try the configured keyservers anyway even if they are all dead.

In T4513#132770, @aheinecke wrote:

Werner could you maybe at least check for an internet connection, I don't know how to do it on Linux but on Windows it's easy because windows has API for that.

Feb 21 2020, 6:33 PM · Feature Request, Keyserver, dirmngr

Feb 19 2020

Valodim added a comment to T4513: dirmngr should try the configured keyservers anyway even if they are all dead.

But searching on Keyservers is also in my opinion not a common use case for Kleopatra users.

Feb 19 2020, 6:43 PM · Feature Request, Keyserver, dirmngr
werner added a comment to T4513: dirmngr should try the configured keyservers anyway even if they are all dead.

and by that bypassing all key source tracking as done by gpg. In any case searching by name or mail address on a keyserver should not be done - at least not by a GUI tool as used by non experienced users.

Feb 19 2020, 4:34 PM · Feature Request, Keyserver, dirmngr
patrick added a comment to T4513: dirmngr should try the configured keyservers anyway even if they are all dead.

I agree that this is a tricky problem, but it should really be improved.

Feb 19 2020, 4:05 PM · Feature Request, Keyserver, dirmngr
werner added a comment to T4513: dirmngr should try the configured keyservers anyway even if they are all dead.

The problem is not to check whether there is a connection but on how to decide whether something is a pool or an explictly added single keyserver and how often should we try to connect or read from it. Without marking hosts as dead the auto search features won't work well.

Feb 19 2020, 1:30 PM · Feature Request, Keyserver, dirmngr
aheinecke added a comment to T4513: dirmngr should try the configured keyservers anyway even if they are all dead.

@Valodim probably not so much as dirmngr might behave differently and not mark hosts as dead.

Feb 19 2020, 1:17 PM · Feature Request, Keyserver, dirmngr
werner added a comment to T4513: dirmngr should try the configured keyservers anyway even if they are all dead.

The proper solution is of course to use pkill instead of killall. SCNR.

Feb 19 2020, 12:43 PM · Feature Request, Keyserver, dirmngr
Valodim updated subscribers of T4513: dirmngr should try the configured keyservers anyway even if they are all dead.

I can attest to the "growing bit of popular lore": Roughly half the support requests I get to support@keys.openpgp.org boil down to an exchange of "it just doesn't work with a 'general error' message" -> "try killall dirmngr" -> "that did it". I have heard similar stories from @patrick from Enigmail users, and more than once heard people applying poweruser trickery like "I just have killall dirmngr in my resume.d".

Feb 19 2020, 11:37 AM · Feature Request, Keyserver, dirmngr

Nov 25 2019

werner closed T4165: Dirmngr: Ipv6 causes network failure if Ipv6 can't be reached, a subtask of T4163: hkps://hkps.pool.sks-keyservers.net has to many bad servers to be a good default, as Resolved.
Nov 25 2019, 10:17 PM · gnupg, Keyserver
werner closed T4165: Dirmngr: Ipv6 causes network failure if Ipv6 can't be reached as Resolved.

Unusable v6 interfaces are now detected on Windows and then not used.

Nov 25 2019, 10:17 PM · Keyserver, Feature Request, dirmngr
werner closed T4628: new import-clean default for keys from keyservers modifies the local keyring when anything is returned as Resolved.
Nov 25 2019, 10:15 PM · Keyserver, gnupg (gpg22), Bug Report

Nov 20 2019

werner lowered the priority of T4628: new import-clean default for keys from keyservers modifies the local keyring when anything is returned from Normal to Wishlist.
Nov 20 2019, 8:58 AM · Keyserver, gnupg (gpg22), Bug Report

Nov 7 2019

werner moved T4628: new import-clean default for keys from keyservers modifies the local keyring when anything is returned from Backlog to For next release on the gnupg (gpg22) board.
Nov 7 2019, 3:15 PM · Keyserver, gnupg (gpg22), Bug Report
werner changed the status of T4628: new import-clean default for keys from keyservers modifies the local keyring when anything is returned from Open to Testing.
Nov 7 2019, 3:14 PM · Keyserver, gnupg (gpg22), Bug Report