MastodonTech.de

Sandro :nixos: :verified_gay:GnuPG is an awful piece of software!`gnupg --list-keys sandro` does not display expired subkeys and extending a key via `gpg --edit-key sandro` does not extend the subkey.I want the hour of my life back!<a href="https://c3d2.social/tags/gnupg" class="mention hashtag" rel="nofollow noopener" target="_blank">#gnupg</a> <a href="https://c3d2.social/tags/gpg" class="mention hashtag" rel="nofollow noopener" target="_blank">#gpg</a> <a href="https://c3d2.social/tags/gpgsucks" class="mention hashtag" rel="nofollow noopener" target="_blank">#gpgsucks</a>

HeikoI sent a rather lengthy email to the "gnupg-devel" mailing list, about the governance and development of the <a href="https://floss.social/tags/OpenPGP" class="mention hashtag" rel="nofollow noopener" target="_blank">#OpenPGP</a> standard (and <a href="https://floss.social/tags/GnuPG" class="mention hashtag" rel="nofollow noopener" target="_blank">#GnuPG</a>'s fork of the specification that is branded "<a href="https://floss.social/tags/LibrePGP" class="mention hashtag" rel="nofollow noopener" target="_blank">#LibrePGP</a>")<a href="https://lists.gnupg.org/pipermail/gnupg-devel/2025-September/036064.html" rel="nofollow noopener" translate="no" target="_blank">https://lists.gnupg.org/pipermail/gnupg-devel/2025-September/036064.html</a>

AskUbuntuHow to fix signature verification errors when running sudo apt update <a href="https://ubuntu.social/tags/apt" class="mention hashtag" rel="nofollow noopener" target="_blank">#apt</a> <a href="https://ubuntu.social/tags/updates" class="mention hashtag" rel="nofollow noopener" target="_blank">#updates</a> <a href="https://ubuntu.social/tags/repository" class="mention hashtag" rel="nofollow noopener" target="_blank">#repository</a> <a href="https://ubuntu.social/tags/gnupg" class="mention hashtag" rel="nofollow noopener" target="_blank">#gnupg</a><a href="https://askubuntu.com/q/1555845/612" rel="nofollow noopener" translate="no" target="_blank">https://askubuntu.com/q/1555845/612</a>

Debacle<a href="https://mas.to/@evgandr" class="u-url mention" rel="nofollow noopener" target="_blank">@evgandr</a> <a href="https://mastodon.bsd.cafe/@mms" class="u-url mention" rel="nofollow noopener" target="_blank">@mms</a> <a href="https://mastodon.social/@lhp" class="u-url mention" rel="nofollow noopener" target="_blank">@lhp</a>(setq epg-pinentry-mode 'loopback)changed my life!It worked immediately for me, without the gpg-agent settingsallow-emacs-pinentry allow-loopback-pinentryand without restarting the agent or <a href="https://framapiaf.org/tags/Emacs" class="mention hashtag" rel="nofollow noopener" target="_blank">#Emacs</a>…<a href="https://framapiaf.org/tags/GnuPG" class="mention hashtag" rel="nofollow noopener" target="_blank">#GnuPG</a> <a href="https://framapiaf.org/tags/PGP" class="mention hashtag" rel="nofollow noopener" target="_blank">#PGP</a>

DD9JNWe getting closer to a <a href="https://social.darc.de/tags/gpg4win" class="mention hashtag" rel="nofollow noopener" target="_blank">#gpg4win</a> 5 release. 😀 Here is a new Beta version:<a href="https://files.gpg4win.org/Beta/gpg4win-5.0.0-beta369/gpg4win-5.0.0-beta369.exe" rel="nofollow noopener" translate="no" target="_blank">https://files.gpg4win.org/Beta/gpg4win-5.0.0-beta369/gpg4win-5.0.0-beta369.exe</a>featuring <a href="https://social.darc.de/tags/kleopatra" class="mention hashtag" rel="nofollow noopener" target="_blank">#kleopatra</a> and <a href="https://social.darc.de/tags/okular" class="mention hashtag" rel="nofollow noopener" target="_blank">#okular</a> updates and comes of course with the fresh <a href="https://social.darc.de/tags/GnuPG" class="mention hashtag" rel="nofollow noopener" target="_blank">#GnuPG</a> version 2.5.12

GnuPGBack from the summer, <a href="https://mstdn.social/tags/GnuPG" class="mention hashtag" rel="nofollow noopener" target="_blank">#GnuPG</a> 2.5.12 is now ready for production usage. And this includes the post-quantum cryptography encryption (<a href="https://mstdn.social/tags/PQC" class="mention hashtag" rel="nofollow noopener" target="_blank">#PQC</a>) support which is the main feature of the 2.5 series. (Okay, there is also better support for 64bit Windows.)So give it a spin or point your favourite GNU/Linux distribution to it for packaging. <a href="https://lists.gnupg.org/pipermail/gnupg-announce/2025q3/000497.html" rel="nofollow noopener" translate="no" target="_blank">https://lists.gnupg.org/pipermail/gnupg-announce/2025q3/000497.html</a><a href="https://mstdn.social/tags/EndtoEndCrypto" class="mention hashtag" rel="nofollow noopener" target="_blank">#EndtoEndCrypto</a> <a href="https://mstdn.social/tags/LibrePGP" class="mention hashtag" rel="nofollow noopener" target="_blank">#LibrePGP</a> <a href="https://mstdn.social/tags/OpenPGPv4" class="mention hashtag" rel="nofollow noopener" target="_blank">#OpenPGPv4</a> <a href="https://mstdn.social/tags/FreeSoftware" class="mention hashtag" rel="nofollow noopener" target="_blank">#FreeSoftware</a>

DD9JNThe <a href="https://social.darc.de/tags/GnuPG" class="mention hashtag" rel="nofollow noopener" target="_blank">#GnuPG</a> project is pleased to announce the availability of a new GnuPG release: Version 2.5.12. This release adds new features and fixes two regressions.Note that this 2.5 series is fully supported and thus ready for production use. <a href="https://lists.gnupg.org/pipermail/gnupg-announce/2025q3/date.html" rel="nofollow noopener" translate="no" target="_blank">https://lists.gnupg.org/pipermail/gnupg-announce/2025q3/date.html</a>

HeikoI just released version 0.1.6 of oct-git, a simple tool for Git signing and verification with <a href="https://floss.social/tags/OpenPGP" class="mention hashtag" rel="nofollow noopener" target="_blank">#OpenPGP</a> cards<a href="https://crates.io/crates/openpgp-card-tool-git" rel="nofollow noopener" translate="no" target="_blank">https://crates.io/crates/openpgp-card-tool-git</a>This is a maintenance release: It updates the libraries that oct-git builds on (in particular <a href="https://mastodon.social/@rpgp" class="u-url mention" rel="nofollow noopener" target="_blank">@rpgp</a>), but doesn't add new functionality.However, with this update there is now a straightforward path to automated updating of OpenPGP certificates (aka public keys) from keyservers. I look forward to implementing that soon.<a href="https://floss.social/tags/GnuPG" class="mention hashtag" rel="nofollow noopener" target="_blank">#GnuPG</a> <a href="https://floss.social/tags/PGP" class="mention hashtag" rel="nofollow noopener" target="_blank">#PGP</a> <a href="https://floss.social/tags/Git" class="mention hashtag" rel="nofollow noopener" target="_blank">#Git</a> <a href="https://floss.social/tags/HSM" class="mention hashtag" rel="nofollow noopener" target="_blank">#HSM</a>

0xKaishakuninCould someone with a recent <a href="https://mastodon.social/tags/NitroKey" class="mention hashtag" rel="nofollow noopener" target="_blank">#NitroKey</a> please confirm that it supports <a href="https://mastodon.social/tags/BSI" class="mention hashtag" rel="nofollow noopener" target="_blank">#BSI</a> <a href="https://mastodon.social/tags/Brainpool" class="mention hashtag" rel="nofollow noopener" target="_blank">#Brainpool</a> 512 <a href="https://mastodon.social/tags/ECC" class="mention hashtag" rel="nofollow noopener" target="_blank">#ECC</a> as <a href="https://mastodon.social/tags/GnuPG" class="mention hashtag" rel="nofollow noopener" target="_blank">#GnuPG</a> <a href="https://mastodon.social/tags/smartcard" class="mention hashtag" rel="nofollow noopener" target="_blank">#smartcard</a> <a href="https://mastodon.social/tags/pqc" class="mention hashtag" rel="nofollow noopener" target="_blank">#pqc</a>

DD9JNWe just re-posted our last blog entry from <a href="https://social.darc.de/tags/gnupg" class="mention hashtag" rel="nofollow noopener" target="_blank">#gnupg</a>.com how also to the regualr block at @GnuPG.org . Thus if you are interested in upstream Debian style packages for GnuPG and all supporting libraries please check out:<a href="https://gnupg.org/blog/20250827-new-repository.html" rel="nofollow noopener" translate="no" target="_blank">https://gnupg.org/blog/20250827-new-repository.html</a>

HeikoI edited and (slightly) expanded yesterday's thread about inspecting <a href="https://floss.social/tags/OpenPGP" class="mention hashtag" rel="nofollow noopener" target="_blank">#OpenPGP</a> certificate status with <a href="https://mastodon.social/@rpgp" class="u-url mention" rel="nofollow noopener" target="_blank">@rpgp</a> into a blog article:<a href="https://openpgp.foo/posts/2025-08-certificate-status/" rel="nofollow noopener" translate="no" target="_blank">https://openpgp.foo/posts/2025-08-certificate-status/</a><a href="https://floss.social/tags/GnuPG" class="mention hashtag" rel="nofollow noopener" target="_blank">#GnuPG</a> <a href="https://floss.social/tags/PGP" class="mention hashtag" rel="nofollow noopener" target="_blank">#PGP</a> <a href="https://floss.social/tags/RustLang" class="mention hashtag" rel="nofollow noopener" target="_blank">#RustLang</a> <a href="https://floss.social/tags/CLI" class="mention hashtag" rel="nofollow noopener" target="_blank">#CLI</a>

HeikoI just released version 0.6.6 of rpgpie, an experimental high level API for <a href="https://mastodon.social/@rpgp" class="u-url mention" rel="nofollow noopener" target="_blank">@rpgp</a>:<a href="https://crates.io/crates/rpgpie" rel="nofollow noopener" translate="no" target="_blank">https://crates.io/crates/rpgpie</a>Since a few versions, the rpgpie crate ships with the experimental "rpgp" CLI tool, which can inspect certificates (aka "<a href="https://floss.social/tags/OpenPGP" class="mention hashtag" rel="nofollow noopener" target="_blank">#OpenPGP</a> public keys") in two different ways:- "show" prints the internal structure of a certificate without much interpretation - "status" prints a summarized view, which applies OpenPGP validity semanticsSince this release, "status" can output JSON🧵<a href="https://floss.social/tags/PGP" class="mention hashtag" rel="nofollow noopener" target="_blank">#PGP</a> <a href="https://floss.social/tags/GnuPG" class="mention hashtag" rel="nofollow noopener" target="_blank">#GnuPG</a>

AskUbuntuKubuntu distro integrity and authenticity checks <a href="https://ubuntu.social/tags/kubuntu" class="mention hashtag" rel="nofollow noopener" target="_blank">#kubuntu</a> <a href="https://ubuntu.social/tags/gnupg" class="mention hashtag" rel="nofollow noopener" target="_blank">#gnupg</a> <a href="https://ubuntu.social/tags/signature" class="mention hashtag" rel="nofollow noopener" target="_blank">#signature</a> <a href="https://ubuntu.social/tags/checksums" class="mention hashtag" rel="nofollow noopener" target="_blank">#checksums</a><a href="https://askubuntu.com/q/1554945/612" rel="nofollow noopener" translate="no" target="_blank">https://askubuntu.com/q/1554945/612</a>

Menel :xmpp:Total verrückt, Ich sende alle meine Emails immer mit pgp-Key im Anhang, so passiv aggressiv an alle. Bisher hat das nie irgendwo was bewirkt, die einzige Reaktion bisher war, daß jemand sagt, dass der eine Anhang von mir nicht geöffnet werden konnte.. . Aber da schreibe ich meinem Arbeitgeber mal wieder und plötzlich so eine automatische verschlüsselte Mail :catrave: Da ist man mal ein Jahr nicht da und dann: Hyper modern 🤯 <a href="https://snikket.de/social?t=pgp" class="mention hashtag" rel="nofollow noopener" target="_blank">#pgp</a> <a href="https://snikket.de/social?t=gnupg" class="mention hashtag" rel="nofollow noopener" target="_blank">#gnupg</a> <a href="https://snikket.de/social?t=verschlusselung" class="mention hashtag" rel="nofollow noopener" target="_blank">#verschlusselung</a> <a href="https://snikket.de/social?t=email" class="mention hashtag" rel="nofollow noopener" target="_blank">#email</a> <a href="https://snikket.de/social?t=e" class="mention hashtag" rel="nofollow noopener" target="_blank">#e</a>-mail <a href="https://snikket.de/social?t=thunderbird" class="mention hashtag" rel="nofollow noopener" target="_blank">#thunderbird</a> <a href="https://snikket.de/social?t=krh" class="mention hashtag" rel="nofollow noopener" target="_blank">#krh</a> <a href="https://snikket.de/social?t=hannover" class="mention hashtag" rel="nofollow noopener" target="_blank">#Hannover</a> <a href="https://snikket.de/social?t=regionhannover" class="mention hashtag" rel="nofollow noopener" target="_blank">#RegionHannover</a>

scyme, opening a new terminal tab: From all the things I've scripted so far, this has got to have one of the best effort-to-usefulness factors ever.<a href="https://codeberg.org/scy/dotfiles/commit/9ef269f86356d80e53f6e7bbde9d85b65a21525f" rel="nofollow noopener" translate="no" target="_blank">https://codeberg.org/scy/dotfiles/commit/9ef269f86356d80e53f6e7bbde9d85b65a21525f</a><a href="https://chaos.social/tags/OpenPGP" class="mention hashtag" rel="nofollow noopener" target="_blank">#OpenPGP</a> <a href="https://chaos.social/tags/GnuPG" class="mention hashtag" rel="nofollow noopener" target="_blank">#GnuPG</a> <a href="https://chaos.social/tags/GPG" class="mention hashtag" rel="nofollow noopener" target="_blank">#GPG</a> <a href="https://chaos.social/tags/shell" class="mention hashtag" rel="nofollow noopener" target="_blank">#shell</a> <a href="https://chaos.social/tags/dotfiles" class="mention hashtag" rel="nofollow noopener" target="_blank">#dotfiles</a>

Net Gremlin 🚴🏻 🐧 🇩🇪<a href="https://zirk.us/@eibart" class="u-url mention" rel="nofollow noopener" target="_blank">@eibart</a> Für solche Usecases nutze ich <a href="https://mastodon.xyz/@nextcloud" class="u-url mention" rel="nofollow noopener" target="_blank">@nextcloud</a> - beim Selfhosting weiß man auch, wo die Daten sind.Bei Services wie eben z.B. WeTransfer die Daten *immer* verschlüsseln. <a href="https://mastodon.ip6.li/tags/GnuPG" class="mention hashtag" rel="nofollow noopener" target="_blank">#GnuPG</a> ist dafür gut geeignet. Dann lernt deren KI eben PGP verschlüsselte Daten.

HeikoNew blog article: "Using a second <a href="https://floss.social/tags/OpenPGP" class="mention hashtag" rel="nofollow noopener" target="_blank">#OpenPGP</a> card for my primary key"<a href="https://openpgp.foo/posts/2025-07-a-second-card/" rel="nofollow noopener" translate="no" target="_blank">https://openpgp.foo/posts/2025-07-a-second-card/</a>This is a rather niche article, but I hope it will still contain some bits of interest, for at least some readers 🤓.In it, I import my primary OpenPGP key onto a second OpenPGP card hardware device, and use the device to issue a third-party certification with rsop-oct.I also outline some background and tradeoffs around different OpenPGP card setup.<a href="https://floss.social/tags/HSM" class="mention hashtag" rel="nofollow noopener" target="_blank">#HSM</a> <a href="https://floss.social/tags/OpenPGPcard" class="mention hashtag" rel="nofollow noopener" target="_blank">#OpenPGPcard</a> <a href="https://floss.social/tags/GnuPG" class="mention hashtag" rel="nofollow noopener" target="_blank">#GnuPG</a>

HeikoI just released version 0.1.3 of rsop-oct, a stateless <a href="https://floss.social/tags/OpenPGP" class="mention hashtag" rel="nofollow noopener" target="_blank">#OpenPGP</a> ("SOP") CLI tool for use with OpenPGP card hardware devices:<a href="https://crates.io/crates/rsop-oct/" rel="nofollow noopener" translate="no" target="_blank">https://crates.io/crates/rsop-oct/</a>Like its sibling project <a href="https://floss.social/tags/rsop" class="mention hashtag" rel="nofollow noopener" target="_blank">#rsop</a>, rsop-oct is based on <a href="https://mastodon.social/@rpgp" class="u-url mention" rel="nofollow noopener" target="_blank">@rpgp</a>This update adds support for the SOP command 'certify-userid'.This allows issuing certifications (aka "third-party signatures") over identities in other people's OpenPGP certificates, directly with an OpenPGP card device.For more on <a href="https://floss.social/tags/SOP" class="mention hashtag" rel="nofollow noopener" target="_blank">#SOP</a>, see <a href="https://datatracker.ietf.org/doc/draft-dkg-openpgp-stateless-cli/" rel="nofollow noopener" translate="no" target="_blank">https://datatracker.ietf.org/doc/draft-dkg-openpgp-stateless-cli/</a><a href="https://floss.social/tags/PGP" class="mention hashtag" rel="nofollow noopener" target="_blank">#PGP</a> <a href="https://floss.social/tags/GnuPG" class="mention hashtag" rel="nofollow noopener" target="_blank">#GnuPG</a>

DD9JN<a href="https://social.darc.de/tags/GnuPG" class="mention hashtag" rel="nofollow noopener" target="_blank">#GnuPG</a> 2.5.9 has been released along with a new <a href="https://social.darc.de/tags/Gpg4win" class="mention hashtag" rel="nofollow noopener" target="_blank">#Gpg4win</a> beta. And - for the first time - we now publish packages for <a href="https://social.darc.de/tags/Debian" class="mention hashtag" rel="nofollow noopener" target="_blank">#Debian</a>, <a href="https://social.darc.de/tags/Devuan" class="mention hashtag" rel="nofollow noopener" target="_blank">#Devuan</a>, and <a href="https://social.darc.de/tags/Ubuntu" class="mention hashtag" rel="nofollow noopener" target="_blank">#Ubuntu</a> . See <a href="https://lists.gnupg.org/pipermail/gnupg-announce/2025q3/000495.html" rel="nofollow noopener" translate="no" target="_blank">https://lists.gnupg.org/pipermail/gnupg-announce/2025q3/000495.html</a>

GemischtwahnladenWollte grad (nach Jahren) mal wieder ne <a href="https://punkstodon.de/tags/PGP" class="mention hashtag" rel="nofollow noopener" target="_blank">#PGP</a>-Verschlüsselung für meine Mails einrichten. Nun hat <a href="https://punkstodon.de/tags/Thunderbird" class="mention hashtag" rel="nofollow noopener" target="_blank">#Thunderbird</a> ja inzwischen <a href="https://punkstodon.de/tags/GNUPG" class="mention hashtag" rel="nofollow noopener" target="_blank">#GNUPG</a> und das sieht ja auch alles ganz toll aus, aber was mich als alter <a href="https://punkstodon.de/tags/Enigmail" class="mention hashtag" rel="nofollow noopener" target="_blank">#Enigmail</a> User irritiert, ist das Ding mit der (fehlenden) Passphrase. Also wie ich das verstehe wird die ja (für alle Mailaccounts!?) ersetzt durch das Thunderbird-Masterpasswort. So weit so naja... Aber würde die Mails auch weiterhin gern auffm Handy abrufen (<a href="https://punkstodon.de/tags/K9" class="mention hashtag" rel="nofollow noopener" target="_blank">#K9</a>). Da gibts dann n Addon, soweit hab ich das schon gesehen, aber ist dann das Masterpasswort auch da meine Passphrase? Danke schonmal für Tipps...

Frühere Suchanfragen

Suchoptionen

Verwaltet von:

Serverstatistik:

#gnupg