Advanced
Mailing List Archive

Mailing List Archive

  1. Home >
  2. GnuPG>
  3. devel
gpg 0.3.4, RSA, pgp5 interoperability
andrew at andrew
Aug 21, 1998, 2:52 PM
Post #1 of 3 (329 views)
Permalink
OK, so maybe it's all been thrashed out already, but I couldn't see it in
the archives recently ... sorry ..

I just installed gnupg-0.3.4 on Linux 2.0.30
(oh yes, I get " using insecure memory" but have HAVE_MLOCK=1; if I make
gpg suid root I can't run it - Operation not permitted)

If I export (with pgp5) my DSS key, I can import it into gpg and
then verify a signature made with it. But if I export my RSA key
and try to import that, I get "no valid user ids; .. missing
self-signature" and can't add it. I also can't add other RSA keys, such as
the CERT public key

With PGP5, my RSA key 0xA3C7204F is shown as signed with
0xA3C7204F (I did self-sign it).


If I can't add public keys like CERT, SGI security, RedHat etc.
it's a bit hopeless trying to use gpg ....

regards


Deniable unless digitally signed
Andrew Daviel, TRIUMF, Canada
Tel. +1 (604) 222-7376
http://andrew.triumf.ca/andrew
Re: gpg 0.3.4, RSA, pgp5 interoperability [ In reply to ]
wk at isil
Sep 7, 1998, 3:59 AM
Post #2 of 3 (329 views)
Permalink
Andrew Daviel <andrew@andrew.triumf.ca> writes:

> I just installed gnupg-0.3.4 on Linux 2.0.30
> (oh yes, I get " using insecure memory" but have HAVE_MLOCK=1; if I make
> gpg suid root I can't run it - Operation not permitted)

Really; I have to check it.

> If I export (with pgp5) my DSS key, I can import it into gpg and
> then verify a signature made with it. But if I export my RSA key
> and try to import that, I get "no valid user ids; .. missing
> self-signature" and can't add it. I also can't add other RSA keys, such as
> the CERT public key

Did you use "--load-extension rsa"? If not you should see a keyid
00000000 which indicates this.

RSA is not a part of GNUPG due to legal reasons; but if you are
allowed to use it you can get an extension module from the ftp site.

> If I can't add public keys like CERT, SGI security, RedHat etc.
> it's a bit hopeless trying to use gpg ....

But RSA is patented and if you are in the U.S. you can't use it anyway
;-)


Werner
Re: gpg 0.3.4, RSA, pgp5 interoperability [ In reply to ]
rknop at panisse
Sep 7, 1998, 9:11 AM
Post #3 of 3 (330 views)
Permalink
> RSA is not a part of GNUPG due to legal reasons; but if you are
> allowed to use it you can get an extension module from the ftp site.
>
> > If I can't add public keys like CERT, SGI security, RedHat etc.
> > it's a bit hopeless trying to use gpg ....
>
> But RSA is patented and if you are in the U.S. you can't use it anyway
> ;-)

What RSA library does GNUPG use? If it uses rsaref, then you can use it in
the US for non-commercial purposes. (At least, as of the last time I
looked at the condition on the RSAREF library.)

-Rob


=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
==== Rob Knop ===== rknop@lbl.gov ====== http://panisse.lbl.gov/~rknop ======

©2024 GT.net. A Gossamer Threads company.
5th Floor, 455 Granville St., Vancouver, BC V6C 1T1, Canada | Legal