Prev-20 Home Next-20 20 msg GnuPG asks for confirmation... 1 msg V1.4.3 for VMS 1 msg new (2006-05-28) keyanalyze results (+sigcheck) 1 msg Re: 1.4.3 problem with decrypting pgp2.6.3 symm... 2 msg set owner trust from a script GnuPG Smartcard and Authentication Key \ Volker Dormeyer (28 May 2006) . \ David Shaw (28 May 2006) . . \ Volker Dormeyer (28 May 2006) . . . \ Volker Dormeyer (2 Jun 2006) 2 msg Usenet: Signing date problems - advice needed 3 msg gnupg plaintext encryption? 4 msg SHA2 compatibility 2 msg some questions.. 3 msg zlib inflate problem 2 msg Issue in Importing a PGP signature key 7 msg Cipher v public key. 5 msg 1.4.3 problem with decrypting pgp2.6.3 symmetri... 13 msg question about compiling gpg with cygwin 1 msg mpi larger than indicated length 2 msg preferred compression types with multiple recip... 3 msg How to use PKA 2 msg Lost passphrase 1 msg can some one help me please Prev-20 Home Next-20

Prev-Msg Prev-Thread Gnupg-users May-2006 Next-Thread Next-Msg Subject: Re: GnuPG Smartcard and Authentication Key Group: Gnupg-users From: Volker Dormeyer Date: 28 May 2006 Hi David, thanks for the reply. * On Sun, 28 May 2006 16:30:55 -0400, * David Shaw <dshaw> wrote: > On Sun, May 28, 2006 at 08:24:14PM +0200, Volker Dormeyer wrote: >> Hello all, >> >> recently I received a message which is encrypted with my public >> authentication key instead of my encryption key. >> >> I wonder how this can happen, because I thought GnuPG does not use the >> authentication key as encryption key. Am I wrong? >> >> Further, I am not able to decrypt the message. I tried it manually with >> "--try-all-secrets", but it doesn't seem to work. Basically it should >> work. I mean, I have the authentication private key. > This is unfortunately turning into a FAQ. Basically, you've run into > an old PGP bug. It was recently fixed (I don't recall exactly in what > version), but there are countless installations of PGP that predate > the fix. This is what I read in the gnupg-users archive before I send the question. I have to admit, I do not understand exactly, because I know that the user who sent me the message is using GnuPG. It shows -----BEGIN PGP MESSAGE----- Version: GnuPG v1.2.5 (GNU/Linux) in the ASCII armored cipher text. > OpenPGP keys have "key flags" that indicate what a key is to be used > for (encryption, signing, or authentication). GnuPG honors these > flags and will not encrypt to any key that isn't marked for > encryption. The bug is that PGP is not properly looking at the key > and will happily encrypt to a signing or authentication key. I am aware of the different "key flags". This was the reason why I wondered how this could be happen. > As to what you can do about it, your best bet is to contact the sender > and ask for a retransmission encrypted to the proper key. It might be > possible to write a program that can essentially trick the smartcard > into decrypting the message by pretending it is a signature that needs > to be verified but it depends on how exactly the card handles > signatures. In any event, no such program exists today. Thanks, Volker -- Volker Dormeyer <volker> Join the Fellowship and protect your Freedom! (http://www.fsfe.org) _______________________________________________ Gnupg-users mailing list Gnupg-users http://lists.gnupg.org/mailman/listinfo/gnupg-users Prev-Msg Prev-Thread Gnupg-users May-2006 Next-Thread Next-Msg

© 2004-2008 readlist.com