On 02/28/2018 06:18 PM, Ulrike Uhlig wrote:
> Hi!
>
> Jacob Adams:
>
>> I am looking to create an application for the PGP Clean Room Live CD
>> that walks a user through setting up a set of USB flash drives or sd
>> cards as a raid disk, generating new GPG keys, storing them there, and
>> then ex
Hi!
Jacob Adams:
> I am looking to create an application for the PGP Clean Room Live CD
> that walks a user through setting up a set of USB flash drives or sd
> cards as a raid disk, generating new GPG keys, storing them there, and
> then exporting subkeys either on a separate USB stick or a PGP
On 12163 March 1977, Jonathan McDowell wrote:
> As announced that the end of April[0] we have dropped support for v3
> keys from the Debian keyring. At present this means debian-keyring.pgp
> still exists, but is an empty file. Once we have confirmation from DSA +
> FTP master that they have update
On Sat, May 01, 2010 at 09:18:28PM +, brian m. carlson wrote:
> This works because v3 keys[0] use MD5 as a fingerprint algorithm, which
> is 128 bits long (and 32 hex characters) while v4 keys use SHA1, which
> is 160 bits long. It only prints out one of the UIDs on the key, not
> all of them.
On Sat, May 01, 2010 at 11:01:14PM +0200, Jeffrey Ratcliffe wrote:
> On Fri, Apr 30, 2010 at 01:57:24PM +0100, Jonathan McDowell wrote:
> > I have sent numerous mails over the past year to try and chase DDs with
> > v3 keys to generate a new v4 key that is linked into to our web of
> > trust. In th
On Fri, Apr 30, 2010 at 01:57:24PM +0100, Jonathan McDowell wrote:
> I have sent numerous mails over the past year to try and chase DDs with
> v3 keys to generate a new v4 key that is linked into to our web of
> trust. In that time we've gone from 200 v3 keys down to 20. While it
Have there been a
Hi Pawel!
On Thu, 04 Jan 2001, Pawel Wiecek wrote:
> On Jan 4, 1:11pm, Peter Palfrader wrote:
> > (see a thread here on -devel perhaps a
> > month or two ago).
>
> I can't find it in the archive...
http://lists.debian.org/debian-devel-0010/msg00683.html & Fups
On Jan 4, 1:11pm, Peter Palfrader wrote:
> New keys sent to keyring.debian.org via gpg --send will take approximatly
Gosh...
> forever. New keys have to be added my hand by the keyring maintainer and
Emailed him as well...
> this might long (up 2 12 months?) (see a thread here on -devel perhap
Hi Pawel!
On Thu, 04 Jan 2001, Pawel Wiecek wrote:
> How long does it take usually for a (GPG) key sent to keyring.debian.org
> to show up in official keyring (and maintainers database)?
> I'm waiting for my new GPG key to show up for quite a few weeks and it seems a
> bit excessive to me :^)
Ne
On Tue, Mar 14, 2000 at 10:55:31AM +0200, joost witteveen wrote:
> Hi,
>
> Until recently I only had a PGP key, and as
> suggested by /usr/share/doc/debian-keyring/README.gz, I've
> now generated a GPG one, signed it with my PGP key, and
> submitted it to [EMAIL PROTECTED]
>
> A couple of hours
On Tue, Mar 14, 2000 at 10:55:31AM +0200, joost witteveen wrote:
> That was all march 10, nearly 4 days ago, and fakeroot still isn't
> dinstalled.
Was it rejected, or is it just stuck? If it was rejected, you have to
reupload, if it is stuck, then ssh to master, go into incoming directory,
and ru
On Tue, Oct 05, 1999 at 12:39:50PM +0200, Rene Mayrhofer wrote:
> > > Is it possible to use a key created by pgp5 for package signing ? The
> > > key works for me when I use it with gpg, both the opposite is not true
> > > (e.g. pgp5 is unable to verify a signature created with a gpg key). I am
> >
Joseph Carter wrote:
>
> On Mon, Oct 04, 1999 at 07:45:23PM +0200, Rene Mayrhofer wrote:
> > Is it possible to use a key created by pgp5 for package signing ? The
> > key works for me when I use it with gpg, both the opposite is not true
> > (e.g. pgp5 is unable to verify a signature created with
On Mon, 4 Oct 1999, Rene Mayrhofer wrote:
> Is it possible to use a key created by pgp5 for package signing ? The
> key works for me when I use it with gpg, both the opposite is not true
> (e.g. pgp5 is unable to verify a signature created with a gpg key). I am
> no maintainer yet and so I want t
On Mon, Oct 04, 1999 at 07:45:23PM +0200, Rene Mayrhofer wrote:
> Is it possible to use a key created by pgp5 for package signing ? The
> key works for me when I use it with gpg, both the opposite is not true
> (e.g. pgp5 is unable to verify a signature created with a gpg key). I am
> no maintainer
On Fri, Oct 16, 1998 at 04:06:18PM +1000, Chris Leishman wrote:
> At the moment I am using pgp2i, but I would like to try and change to
> gnupg. My question is - will I need to generate a new public/private key,
> or is it possible to use my pgp one with gnupg?
Technically it is possible to use y
--On Thu, Oct 15, 1998 5:43 pm +0100 "Jules Bean" <[EMAIL PROTECTED]>
wrote:
> Hermes for mail (but you could use cus), with PGP support.
Doh.
Hermes *without* PGP support, I meant.
/+---+-\
| Jelibean aka | [EMAIL PROTECTED]
--On Thu, Oct 15, 1998 4:46 pm +0100 "M.C. Vernon" <[EMAIL PROTECTED]>
wrote:
>
> I have a slight problem with PGP: I do my development on pick and can post
> from there (but don't) - all my email is done from cus (and I'm not sure
> if it can cope with PGP)
>
> So do I:
>
> po
Hamish Moffatt <[EMAIL PROTECTED]> writes:
> This reminds me of a joke; unfortunately I couldn't track it down
> in a quick look on altavista and I haven't any more time to look for it.
> In short, a man attends several days of a trade show and each day
> tells a security guard that today he will
Gregory S. Stark <[EMAIL PROTECTED]> wrote:
> It might not be legal for someone to give him PGP or explain how
> crypto works even while he's in the US.
No, the regulations prohibit export. If he's in the US, that's not
export.
As you mention, even if it was a problem, it would be a problem for
Thanks for all.
I'll use US-PGP and discard it before leaving the US.
Regards.
--
Kikutani, Makoto [EMAIL PROTECTED]
[EMAIL PROTECTED] (Linux related only)
On Mon, Oct 05, 1998 at 11:43:29AM -0700, Bob Nielsen wrote:
> > > I had to deal with this idiocy back in the eighties when I was building
> > > computers which may have qualified as 'munitions'.
> >
> > And remember that books are the purest form of evil and should always be
> > burned if they ha
On Mon, 5 Oct 1998, Joseph Carter wrote:
> On Mon, Oct 05, 1998 at 09:57:24AM -0500, [EMAIL PROTECTED] wrote:
> > I had to deal with this idiocy back in the eighties when I was building
> > computers which may have qualified as 'munitions'.
>
> And remember that books are the purest form of evil
On Mon, Oct 05, 1998 at 09:57:24AM -0500, [EMAIL PROTECTED] wrote:
> I had to deal with this idiocy back in the eighties when I was building
> computers which may have qualified as 'munitions'.
And remember that books are the purest form of evil and should always be
burned if they have not been pu
On Sun, Oct 04, 1998 at 10:49:26AM -0500, [EMAIL PROTECTED] wrote:
> > If you brought it with you (and can PROVE it) there is probably no
> > problem in theory.
>
> It doesn't matter where he got it. It is entirely legal for anyone to use
> or distribute strong crypto in the US. The only restric
On Sun, Oct 04, 1998 at 11:23:52AM -0400, Kikutani Makoto wrote:
> > > I'm a Japanese living in the United States, but not a permanent
> > > resident. I've heared that the usage of PGP in the States by
> > > a person like me is controversial. I posted this qestion to some
> > > related Mailing-List
Ruud de Rooij writes:
> I seem to recall that transfer of cryptographic software to a non-US
> citizen is already considered export in the US.
No. Transfer of cryptographic software to a non-resident alien may expose
one to proecution if and only if the alien subsequently exports the
software. B
I wrote:
> You heard wrong. Your nationality and residency status is irrelevant.
Gregory S. Stark writes:
> It might not be legal for someone to give him PGP or explain how crypto
> works even while he's in the US.
> ...
> In any case it wouldn't be you breaking the law, but the person helping
>
On Sun, Oct 04, 1998 at 02:18:39PM -0500, [EMAIL PROTECTED] wrote:
> 3) It is a violation of US law to export any kind of pgp from the US.
>This is true even if you brought it here in the first place.
This reminds me of a joke; unfortunately I couldn't track it down
in a quick look on altavist
On 1998/10/04, [EMAIL PROTECTED] wrote:
> Kikutani Makoto writes:
> > Yes, my PGP is an international version which was built in Japan, and I
> > brought it in my laptop.
>
> The international version infringes the RSA patent and so the owner of the
> patent (PKP?) could theoretically sue you for
[EMAIL PROTECTED] writes:
> Kikutani Makoto writes:
> > I'm a Japanese living in the United States, but not a permanent
> > resident. I've heared that the usage of PGP in the States by a person
> > like me is controversial.
>
> You heard wrong. Your nationality and residency status is irrelevan
Kikutani Makoto writes:
> Yes, my PGP is an international version which was built in Japan, and I
> brought it in my laptop.
The international version infringes the RSA patent and so the owner of the
patent (PKP?) could theoretically sue you for using it in the US. All they
could get is an injunc
Joseph Carter writes:
> If you brought it with you (and can PROVE it) there is probably no
> problem in theory.
It doesn't matter where he got it. It is entirely legal for anyone to use
or distribute strong crypto in the US. The only restriction is on export.
He is perfectly safe as long as he d
On Sun, Oct 04, 1998 at 07:57:40AM -0700,
Joseph Carter <[EMAIL PROTECTED]> wrote:
> > I'm a Japanese living in the United States, but not a permanent
> > resident. I've heared that the usage of PGP in the States by
> > a person like me is controversial. I posted this qestion to some
> > related M
Kikutani Makoto writes:
> I'm a Japanese living in the United States, but not a permanent
> resident. I've heared that the usage of PGP in the States by a person
> like me is controversial.
You heard wrong. Your nationality and residency status is irrelevant.
--
John HaslerThis p
On Sun, Oct 04, 1998 at 09:49:44AM -0400, Kikutani Makoto wrote:
> > > Do you accept a passport as the above formal documents ?
> >
> > Yes. [Though if there is any opportunity to meet another developer in
>
> Good. I asked this because Japanese developers who are planning to
> become maintainer
The Gecko wrote:
>
> Ok... I can't seem to find a linux PGP program -- commercial, shareware,
> freeware, open source, GPL, anything... can any one point me in the right
> direction
>
There is a list of sites that contain Debian files where to get
pgp and such programs located at:
http://ww
On Tue, 5 May 1998, The Gecko wrote:
> Ok... I can't seem to find a linux PGP program -- commercial, shareware,
> freeware, open source, GPL, anything... can any one point me in the right
> direction
http://www.debian.org/doc/FAQ/debian-faq-5.html#ss5.11
Massimo Lusetti <[EMAIL PROTECTED]> writes:
ML> I wish only know if out there's a .deb for PGP 2.6.3i ... tnx
Read ftp://ftp.debian.org/debian/README.pgp.
--
_
/ \ "The cat's been in the box for over
| David Maze | 20 y
Massimo Lusetti writes:
> I wish only know if out there's a .deb for PGP 2.6.3i ... tnx
Due to restrictive law it is placed on nonus.debian.org:/pub/debian-non-US
Regards
Joey
--
/ Martin Schulze * [EMAIL PROTECTED] * 26129 Oldenburg /
/ http:
>> Make sure you see some physical identification (driver's licence,
>> passport or similar). If you know who the person in front of you
>> is, and he gives you a key, you can check it's his by looking at
>> the ID on the key and checking the ID's signature. Once you've
>> signed it, there's no r
On 10 Dec 1997, Charles Briscoe-Smith wrote:
> Make sure you see some physical identification (driver's licence,
> passport or similar). If you know who the person in front of you is,
> and he gives you a key, you can check it's his by looking at the ID
> on the key and checking the ID's signatur
Avery Pennarun wrote:
>
> If any registered developers are near Waterloo, Ontario or Montreal,
> Quebec I would appreciate it if you could help me out by meeting me in
> person to sign my key.
If you can make it up to Ottawa, Brian White or myself would be able to
sign your key for you.
Later,
On Wed, Dec 10 1997 17:44 GMT Charles Briscoe-Smith writes:
> In article <[EMAIL PROTECTED]>,
> Alex Yukhimets <[EMAIL PROTECTED]> wrote:
> >Just one question to the "public": is it OK to take a floppy with his
> >public key, sign it without his phisical presence and than e-mail
> >him the signed f
In article <[EMAIL PROTECTED]>,
Alex Yukhimets <[EMAIL PROTECTED]> wrote:
>Just one question to the "public": is it OK to take a floppy with his
>public key, sign it without his phisical presence and than e-mail
>him the signed file back (encripted with his key)?
Make sure you see some physical id
In article <[EMAIL PROTECTED]>,
Alex Yukhimets <[EMAIL PROTECTED]> wrote:
>Just one question to the "public": is it OK to take a floppy with his
>public key, sign it without his phisical presence and than e-mail
>him the signed file back (encripted with his key)?
Make sure you see some physical id
> I'm hoping to get my PGP keys signed by a known and registered debian
> developer in the NYC area so as to comply with the Debian Developer's
> Reference Section 1.2.
>
> I'm located in Manhattan; specifically on the Lower East Side.
> Any takers? Please reply to me offline. Thanks.
> ...
> Didn't we use to have a PGP package?
>
I noticed that it disappeared a few days ago too. What's up?
Did I miss an announcement or something?
- Jim
--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
[EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED]
In article <[EMAIL PROTECTED]> you write:
>I bit the bullet today and decided to install and implement pgp. Searching
>the packages files did not turn it up, but I was able to deduce that it
>was therefore, in non-free. However the search turned up this information:
>
>dchanges - recommends:
Guy Maor writes ("Re: PGP depends."):
> On Wed, 28 Aug 1996, Dale Scheetz wrote:
>
> > In particular it says that packages that depend on
> > packages in non-free are to reside in contrib (or non-free if other
> > restictions apply).
>
> I've also be
Dale Scheetz writes ("PGP depends."):
...
> Now, as it happens, I have also been reading the new Policy manual (BTW,
> thank you Ian J. for this fine piece of work. It has been long needed and
> I for one greatly appreciate your work) and it has some things to say
> about this issue. In particular
On Wed, 28 Aug 1996, Dale Scheetz wrote:
> In particular it says that packages that depend on
> packages in non-free are to reside in contrib (or non-free if other
> restictions apply).
I've also been meaning to bring this up, but from another angle.
Previously, Ian, you've said that packages whi
On Wed, 28 Aug 1996, Dale Scheetz wrote:
> In the pgp_us package both the readme.1st.intl and the readme.doc.us both
> refer to the file setup.doc, but I don't see that file anywhere in the doc
> directory for pgp. Is there some reason for this to be missing?
setup.doc is the installation guide;
53 matches
Mail list logo
