Silk Road forums
Discussion => Security => Topic started by: idcasn on October 16, 2012, 08:58 pm
-
Hi, I use a Macbook with Mac GPG. I am able to import keys into GPG Keychain Access with no problem. However, when I try to encrypt a message, only certain keys are displayed on the list of keys to choose from.
I have found that the keys that work have a subkey. When listed in GPG Keychain Access the keys that work have a "pub", "uid" and "sub" entry, while the ones that don't work only have "pub" and "uid". If I check the details on a certificate, the ones that work have an entry on the "Subkeys" tab.
Does anyone else have this problem? Is there a work-around on my end?
Thanks
-
Hi, I use a Macbook with Mac GPG. I am able to import keys into GPG Keychain Access with no problem. However, when I try to encrypt a message, only certain keys are displayed on the list of keys to choose from.
I have found that the keys that work have a subkey. When listed in GPG Keychain Access the keys that work have a "pub", "uid" and "sub" entry, while the ones that don't work only have "pub" and "uid". If I check the details on a certificate, the ones that work have an entry on the "Subkeys" tab.
Does anyone else have this problem? Is there a work-around on my end?
Thanks
Strictly speaking, the keys without an encryption sub-key no longer conform to the official specs. What you might try is to download and install the latest nightly build of GPGTools:
https://nightly.gpgtools.org/GPGTools_Installer-latest.dmg
-
Yes, thanks for the info. After doing a better search I found this thread - http://dkn255hz262ypmii.onion/index.php?topic=26216.0 with the info about installing the nightly build.
I would suggest to vendors that you update your keys to ones with subkeys as you may be losing customers without even knowing it cause they can't encrypt their message to you so they just pick someone else.
-
I'm sure this has been posted in a more comprehensive thread. However, here are the steps for encrypting on the command line (which works without using the nightly build).
1. Create a text file with the info to encrypt (in Text Edit) and save it (in this example, to "addr.txt")
2. Open Terminal,
3. Find the user you want to encrypt to (their email address) by running "gpg --list-keys"
3. Encrypt with "gpg --recipient user@domain.com --armor --encrypt addr.txt"
4. Show the encrypted file with "cat addr.txt.asc"
-
YES! This works for me! I've been trying to find a way to fix this and the nightly build works. Thank you guys alot!
-
Yes, thanks for the info. After doing a better search I found this thread - http://dkn255hz262ypmii.onion/index.php?topic=26216.0 with the info about installing the nightly build.
I would suggest to vendors that you update your keys to ones with subkeys as you may be losing customers without even knowing it cause they can't encrypt their message to you so they just pick someone else.
Your mistake is in thinking that they give a rat's ass about it. Adding an encryption sub-key can be done in 30 seconds -- the instructions on how to do this were even posted by Guru some time ago. Now that DPR has stated that using PGP is optional, there will be even less incentive to use it than before. As I'm beginning to learn, the sad fact of the matter is that people are far more interested in convenience than safety.