Mailing List Archive

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Alex, at 18:45 -0400 on Tue, 12 Sep 2000, wrote:

> Secondly: I do email through a remote system. I prefer this because
> I am never in the same spot, so I cannot POP my email to any great
> amount of efficiency. I understand that perhaps using a remote system
> defeats the purpose of using GnuPG, however I still wish too.

This fine, as long as you are in control of the server, and you can
connect securely to it.

> My question is this: I've gotten GnuPG installed on my server, and
> am ready to start up. I've configured PINE to work with it and everything.
> However, I cannot create my keys (etc]$ gpg --gen-k) from remote.

Likely because you do not have enough entropy (randomness) in the system.
Make your computer work hard (e.g., "find /" ), and this will help during
key-generation. If you are using FreeBSD, look into rndcontrol.

> However, I have also downloaded GnuPG for Windows and have created a
> key for myself there. Can I use this key on my remote system? In
> the miniHOWTO page it tells me I can, however, I cannot figure out how.

You need to export your secret key from the windows machine, and then
import it into GnuPG.

> ps: How does one find out what their own public key is? I think that
> I am mussing a few of the basic idea's behind the system.

It might be good to read some of the documentation available at
http://www.pgpi.org/, specifically "How PGP works".

- --
Frank Tobin http://www.uiuc.edu/~ftobin/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.2 (FreeBSD)
Comment: pgpenvelope 2.9.0 - http://pgpenvelope.sourceforge.net/

iEYEARECAAYFAjm+9AcACgkQVv/RCiYMT6OrTACgp9Z6BqcHTqCUrPLEk07WdFiC
VDkAoKGNwiW8Cx2PEC2DYHMELFgpso6i
=TR6F
-----END PGP SIGNATURE-----

--
Archive is at http://lists.gnupg.org - Unsubscribe by sending mail
with a subject of "unsubscribe" to gnupg-users-request@gnupg.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Tue, 12 Sep 2000, Frank Tobin wrote:

> Alex, at 18:45 -0400 on Tue, 12 Sep 2000, wrote:
>
> > Secondly: I do email through a remote system. I prefer this because
> > I am never in the same spot, so I cannot POP my email to any great
> > amount of efficiency. I understand that perhaps using a remote system
> > defeats the purpose of using GnuPG, however I still wish too.
>
> This fine, as long as you are in control of the server, and you can
> connect securely to it.

You might want to get a free Lokmail account for that kind of situation.
Lokmail is the only PGP-enabled webmail system I know of.
(I am helping to write it). (http://lokmail.net)

- --
"The Funk, the whole Funk, and nothing but the Funk."
Billy Donahue <mailto:billy@dadadada.net>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.2 (GNU/Linux)
Comment: pgpenvelope 2.9.0 - http://pgpenvelope.sourceforge.net/

iD8DBQE5v3zg+2VvpwIZdF0RAtL+AJ9mqy4i9M6mWqUxt7UIAA60v1Ss6wCfWgkj
Lm/N4NK7xDH85AchqNWdc+M=
=/2Tu
-----END PGP SIGNATURE-----

--
Archive is at http://lists.gnupg.org - Unsubscribe by sending mail
with a subject of "unsubscribe" to gnupg-users-request@gnupg.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Wed, 13 Sep 2000, L. Sassaman wrote:

> Lokmail stores and decrypts the private keys on the server, does it not?

True. You don't have control of the Lokmail server. That's a current
limitation of it. There's nothing we can do about that basic fact.
We can't replace GPG or PGP on the user's computer, but we CAN provide
some basic PKI for casual users email, giving ordinary or mobile folks a
chance to sign their mail and keep their enemies out of their business.
There are other players in the field, but none of them seem to be
interested in interoperability with the huge PGP userbase, so screw 'em.
It will never be PGP, but it fills a niche, and it's a good alternative
for many people, and I'm excited about making it available.

How many people are you forced to communicate insecurely with because
they're unable/unwilling to use PGP for whatever reason? The answer
in my case is 'a lot'. A lot of my friends and even business associates
(*gasp*) are 'hotmail' types, and I can't change that. What I can do
is offer them and everyone else a service that introduces them to the
wonderful world of private communication, probably for the first time
in their lives. `Anything you write can be printed out and put on your
bosses desk tomorrow morning, so watch yourself', I have to remind them.
I'd rather not have to do that, so this is a solution for them.

Sorry if this is offtopic, but thousands of Lokmail users are also
going to be GnuPG users (indirectly) very soon. :)

- --
"The Funk, the whole Funk, and nothing but the Funk."
Billy Donahue <mailto:billy@dadadada.net>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.2 (GNU/Linux)
Comment: pgpenvelope 2.9.0 - http://pgpenvelope.sourceforge.net/

iD8DBQE5v/DP+2VvpwIZdF0RAvOFAJ4k6CKAtr/SpTi6ZXDT7/0mflj5TwCfTwK4
jAGVa5p0g0wvpKxTpSMcOmY=
=dO43
-----END PGP SIGNATURE-----

--
Archive is at http://lists.gnupg.org - Unsubscribe by sending mail
with a subject of "unsubscribe" to gnupg-users-request@gnupg.org

Bily

Billy Donahue wrote:

> How many people are you forced to communicate insecurely with because
> they're unable/unwilling to use PGP for whatever reason? The answer
> in my case is 'a lot'. A lot of my friends and even business associates
> (*gasp*) are 'hotmail' types, and I can't change that. What I can do
> is offer them and everyone else a service that introduces them to the
> wonderful world of private communication, probably for the first time
> in their lives. `Anything you write can be printed out and put on your
> bosses desk tomorrow morning, so watch yourself', I have to remind them.
> I'd rather not have to do that, so this is a solution for them.

Well, I've run a few tests with it and I'd say that I prefer it to
Hotmail or Yahoo mail. What's the server running on, is it open
source software or NT4 / Win 2000 ? At least there is some form of
encryption there :) Better than nothing.

Thanks

--
Richard
Sheffield UK

--
Archive is at http://lists.gnupg.org - Unsubscribe by sending mail
with a subject of "unsubscribe" to gnupg-users-request@gnupg.org

On 2000.09.13, in <Pine.LNX.4.21.0009131706250.19598-100000@sugar.cobblehill>,
"Billy Donahue" <billy@dadadada.net> wrote:
> We can't replace GPG or PGP on the user's computer, but we CAN provide
> some basic PKI for casual users email, giving ordinary or mobile folks a
> chance to sign their mail and keep their enemies out of their business.

You can put the OpenPGP-supported algorithms in Java, and create an
applet that performs all the sensitive data operations on a client's
own computer.

Then I *might* trust Lokmail. Of course, you wouldn't have any
business advantage over anyone else then, but that's OK with me. :)
I'd rather see a bunch of places using the same software.

--
-D. dgc@uchicago.edu NSIT University of Chicago

--
Archive is at http://lists.gnupg.org - Unsubscribe by sending mail
with a subject of "unsubscribe" to gnupg-users-request@gnupg.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Wed, 13 Sep 2000, Richard wrote:

> Well, I've run a few tests with it and I'd say that I prefer it to
> Hotmail or Yahoo mail. What's the server running on, is it open
> source software or NT4 / Win 2000 ?

We're running Linux at the moment. That may change to OpenBSD,
it may not.

- --
"The Funk, the whole Funk, and nothing but the Funk."
Billy Donahue <mailto:billy@dadadada.net>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.2 (GNU/Linux)
Comment: pgpenvelope 2.9.0 - http://pgpenvelope.sourceforge.net/

iD8DBQE5v/w5+2VvpwIZdF0RAgh+AJoCkXjt5W53CXaGVs/Kkc2Y9rUtWgCgm3vY
oWZhWvlJz8A6BujT5PCkxyg=
=ve1g
-----END PGP SIGNATURE-----

--
Archive is at http://lists.gnupg.org - Unsubscribe by sending mail
with a subject of "unsubscribe" to gnupg-users-request@gnupg.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Wed, 13 Sep 2000, David Champion wrote:

> On 2000.09.13, in <Pine.LNX.4.21.0009131706250.19598-100000@sugar.cobblehill>,
> "Billy Donahue" <billy@dadadada.net> wrote:
> > We can't replace GPG or PGP on the user's computer, but we CAN provide
> > some basic PKI for casual users email, giving ordinary or mobile folks a
> > chance to sign their mail and keep their enemies out of their business.
>
> You can put the OpenPGP-supported algorithms in Java, and create an
> applet that performs all the sensitive data operations on a client's
> own computer.

A lot of work, but it's one good idea on the table. The client would
need to allow the applet to access the private key on his hard drive.

> Then I *might* trust Lokmail.

Some people you just can't please. :)

> Of course, you wouldn't have any business advantage over anyone else
> then, but that's OK with me. :)
> I'd rather see a bunch of places using the same software.

That's okay with me, too.. I think that interoperability and ubiquity
are good for everyone in the business. Bringing this stuff into
the home and into the cubicle is a big deal. IMHO, there's no room for
proprietary and weirdass products in the email business. The business
of email is bringing users together, not dividing users up, right?

- --
"The Funk, the whole Funk, and nothing but the Funk."
Billy Donahue <mailto:billy@dadadada.net>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.2 (GNU/Linux)
Comment: pgpenvelope 2.9.0 - http://pgpenvelope.sourceforge.net/

iD8DBQE5v/6V+2VvpwIZdF0RAuREAKCBJPktByBqfiGwamHhVS9FQEpKcgCgnGrH
6J09dJwFfBqZ8SQRGY6n2Rk=
=u19l
-----END PGP SIGNATURE-----

--
Archive is at http://lists.gnupg.org - Unsubscribe by sending mail
with a subject of "unsubscribe" to gnupg-users-request@gnupg.org