Hi Guilhem. On Sun, 11 Sep 2016 14:45:10 +0200, Guilhem Moulin <guil...@guilhem.org> wrote:
> Does it work when you replace ‘hkps://hkps.pool.sks-keyservers.net’ by > ‘hkp://pool.sks-keyservers.net’ in ~/.gnupg/gpg.conf? Sorry, I should have told you yesterday that I had already tried this, too. However, it doesn't seem related to an hkp/hkps issue, for it also fails if I use caff with a normal http connection: [DEBUG] gpg --batch --no-tty --homedir /home/marcus/.caff/gnupghome --trust-model=always --no-options --use-agent --keyserver=hkp://pool.sks-keyservers.net --keyserver-options=no-honor-keyserver-url --keyserver-options=include-revoked --no-greeting --ask-cert-level --set-policy-url=http://www.gothgoose.net/pgp/ --personal-cipher-preferences=AES256 AES192 AES CAST5 --personal-digest-preferences=SHA512 SHA384 SHA256 SHA224 --cert-digest-algo=SHA512 --no-autostart --no-auto-check-trustdb --with-fingerprint --with-colons ... [DEBUG] stdout: IO::Handle=GLOB(0x2d4c8f8), stdin: <&=4 gpg: error reading key: No public key [WARN] gpg exited with value 2 [WARN] No public keys found with list-key 12DA91AD71D80831 (note that caff uses its own keyring in /home/marcus/.caff/gnupghome) [NOTICE] No keys to sign found > ~$ gpg --keyserver hkps://hkps.pool.sks-keyservers.net > --recv-keys 39278DA8109E6244 gpg: keyserver receive failed: Invalid > argument ~$ $ gpg --keyserver hkp://pool.sks-keyservers.net > --recv-keys 39278DA8109E6244 gpg: key 39278DA8109E6244: "Guilhem > Moulin" not changed gpg: Total number processed: 1 > gpg: unchanged: 1 Huh? Receiving keys via hkps works as expected for me: gpg --keyserver hkps://hkps.pool.sks-keyservers.net --recv-keys 39278DA8109E6244 gpg: key 0x39278DA8109E6244: "Guilhem Moulin" not changed gpg: Total number processed: 1 gpg: unchanged: 1 > Maybe caff need to pass another option from ~/.gnupg/gpg.conf. Would > you mind sharing that file? My configuration is rather standard and more or less based on the recommended, well-known page "OpenPGP Best Practices". Thus, here we go: ~/.gnupg/gpg.conf: default-key 6C3458EE737CE22C0EF9FA3BE88FEBBE202CE599 default-recipient-self encrypt-to 6C3458EE737CE22C0EF9FA3BE88FEBBE202CE599 keyid-format 0xlong with-fingerprint list-options show-uid-validity verify-options show-uid-validity list-options show-policy-urls show-unusable-uids show-unusable-subkeys show-usage use-agent require-cross-certification keyserver hkps://hkps.pool.sks-keyservers.net keyserver-options no-honor-keyserver-url keyserver-options include-revoked no-greeting no-mdc-warning no-secmem-warning ask-cert-level set-policy-url http://www.gothgoose.net/pgp/ personal-cipher-preferences AES256 AES192 AES CAST5 personal-digest-preferences SHA512 SHA384 SHA256 SHA224 cert-digest-algo SHA512 default-preference-list SHA512 SHA384 SHA256 SHA224 AES256 AES192 AES CAST5 ZLIB BZIP2 ZIP Uncompressed Additionally, I also configured this to enable hkps: ~/.gnupg/dirmngr.conf: hkp-cacert /home/marcus/.gnupg/sks-keyservers.netCA.pem Best regards, Marcus -- RWTH Aachen University, Institute of Organic Chemistry, Landoltweg 1, 52074 Aachen, Germany GPG key: 6C3458EE737CE22C0EF9FA3BE88FEBBE202CE599 (ed25519, preferred) GPG key: 0138DA92EDFFB27DD270F86DB475E207BAB58229 (dsa1024, disfavoured)
pgpQFhDZfWOsL.pgp
Description: OpenPGP digital signature
