Mailing List Archive: GnuPG: users

Problem with the agent, gpg2

Index | Next | Previous | View Threaded

mariocastelancastro at gmail

Nov 14, 2009, 8:31 PM

Post #1 of 14 (1774 views)
Permalink

Problem with the agent, gpg2

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

November 14th 2009 for gnupg-users [at] gnupg subject "Problem with the
agent, gpg2"

Hi, I sucefulle compiled and installed GNU PG 2.0.12 but when i do
some operation than requires a password i get a message like the
following.

Someone can tellme how to fix it?.

marioxcc [at] Q6600-:~/emacs$ gpg2 --clearsign

You need a passphrase to unlock the secret key for
user: "Mario Xerxes Castelan Castro <mariocastelancastro [at] gmail>"
1024-bit DSA key, ID 32E27388, created 2009-08-07

gpg: problem with the agent: Not supported
gpg: no default secret key: General error
gpg: [stdin]: clearsign failed: General error

marioxcc [at] Q6600-:~/emacs$ gpg2 -c
gpg: problem with the agent: Not supported
gpg: error creating passphrase: Operation cancelled
gpg: symmetric encryption of `[stdin]' failed: Operation cancelled
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAkr/hCUACgkQZ4DA0TLic4jJUQCfd23PP6DfUP5rjyJU3zcvhN/q
R8IAniKLskTGDwJq8aXG1arbhkjQvYgE
=+TOZ
-----END PGP SIGNATURE-----

_______________________________________________
Gnupg-users mailing list
Gnupg-users [at] gnupg
http://lists.gnupg.org/mailman/listinfo/gnupg-users

shavital at mac

Nov 15, 2009, 8:13 AM

Post #2 of 14 (1715 views)
Permalink

Re: Problem with the agent, gpg2 [In reply to]

Mario Castelán Castro wrote the following on 11/14/09 11:31 PM:
> November 14th 2009 for gnupg-users [at] gnupg subject "Problem with the
> agent, gpg2"
>
> Hi, I sucefulle compiled and installed GNU PG 2.0.12 but when i do
> some operation than requires a password i get a message like the
> following.
>
> Someone can tellme how to fix it?.
>
> marioxcc [at] Q6600-:~/emacs$ gpg2 --clearsign
>
> You need a passphrase to unlock the secret key for
> user: "Mario Xerxes Castelan Castro <mariocastelancastro [at] gmail>"
> 1024-bit DSA key, ID 32E27388, created 2009-08-07
>
> gpg: problem with the agent: Not supported
> gpg: no default secret key: General error
> gpg: [stdin]: clearsign failed: General error
>
> marioxcc [at] Q6600-:~/emacs$ gpg2 -c
> gpg: problem with the agent: Not supported
> gpg: error creating passphrase: Operation cancelled
> gpg: symmetric encryption of `[stdin]' failed: Operation cancelled

I can only guess that gpg-agent has not been properly installed, in
spite of your successful compilation and installation.

Is gpg-agent pointing to the right pinentry program? It probably
defaulted to one under /usr/local/ but I suspect that yours lives
under /usr/ - edit ~/.gnupg/gpg-agent.conf as appropriate and restart
gpg-agent.

A work around (not the orthodox solution I'm afraid) would be to enter
in ~/.gnupg/gpg-agent.conf a line that should point to the real location
of pinentry in your system.

Something like:
pinentry-program "path to pinentry"

Charly

_______________________________________________
Gnupg-users mailing list
Gnupg-users [at] gnupg
http://lists.gnupg.org/mailman/listinfo/gnupg-users

mariocastelancastro at gmail

Nov 16, 2009, 8:08 AM

Post #3 of 14 (1704 views)
Permalink

Re: Problem with the agent, gpg2 [In reply to]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

November 16th 2009 for gnupg-users [at] gnupg, subject "Problem with
the agent, gpg2"

I do not have that pinentry program. GNU PG 1.4.9 (The one than comes
with debian) do not give me that message but i need the new version of
GNU PG.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAksBeLQACgkQZ4DA0TLic4jA7wCfbXD/iWjHZit8UkDUMPzfRhON
C0AAn0jM8FRUSRahxWlWBFbcvsOx59ps
=8Uji
-----END PGP SIGNATURE-----

_______________________________________________
Gnupg-users mailing list
Gnupg-users [at] gnupg
http://lists.gnupg.org/mailman/listinfo/gnupg-users

faramir.cl at gmail

Nov 16, 2009, 10:08 AM

Post #4 of 14 (1704 views)
Permalink

Re: Problem with the agent, gpg2 [In reply to]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Mario Castelán Castro escribió:
> November 16th 2009 for gnupg-users [at] gnupg, subject "Problem with
> the agent, gpg2"
>
> I do not have that pinentry program. GNU PG 1.4.9 (The one than comes
> with debian) do not give me that message but i need the new version of
> GNU PG.

There are 2 new versions, GnuPG 1.4.10, and GnuPG 2.x (I don't
remember the current value of x), which is a bit harder to use. GnuPG
1.4.10 include Camelia algorithm and has changed the defaults settings
for key creation, but other than that, is almost the same as GnuPG
1.4.9, AFAIK.

I don't know why do you need GPG 2.x, I know some people has chosen
to stay with 1.4.X, because they don't need the x.509 capabilities that
are the differente between version 1.4.X and 2.X

Best Regards
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iQEcBAEBCAAGBQJLAZU5AAoJEMV4f6PvczxA0vkH/R7saIN3Tl/fFJnvaQdSLvBO
38dpX9S+EVHwjZieFeyIyunZSrAS/1CZh7Mpy6hk3ifXhQPo59EUQJFq6QAQFc4J
R3+iMoQzpqmXaCAJbBsd/aDDuL4j1z5YsyqjtjeHbPMzShaueseZN7/jF4Voz5m2
4n2fqJ+tyrCDu8WgnS90hQBGZ0AR1ZJiw6s4UPUf+dYVSCwTTGBRkUkIoLCTFcZj
ey0rXD9HpqIUdrXhHbmbv0xvS+Iy1bkiadhplGKrw1KGIMr7Vs3Uspi2YP1nMw0/
bdEHCtf2J+phSosVjjGxew9T9DI0M1u2hP1j6u+1tbi5gCH7SY85jImMf2rseAs=
=K6qM
-----END PGP SIGNATURE-----

_______________________________________________
Gnupg-users mailing list
Gnupg-users [at] gnupg
http://lists.gnupg.org/mailman/listinfo/gnupg-users

shavital at mac

Nov 16, 2009, 12:45 PM

Post #5 of 14 (1715 views)
Permalink

Re: Problem with the agent, gpg2 [In reply to]

Mario Castelán Castro wrote the following on 11/16/09 11:08 AM:
> November 16th 2009 for gnupg-users [at] gnupg, subject "Problem with
> the agent, gpg2"
>
> I do not have that pinentry program. GNU PG 1.4.9 (The one than comes
> with debian) do not give me that message but i need the new version of
> GNU PG.

GnuPG 1.* (currently 1.4.10) does not need pinentry.

pinentry is the interface used by gpg-agent to enter the pin (or the
passphrase), that will be cached (not written to disk) by gpg-agent.

Your query related to gpg 2.0.12 that you had compiled under Linux, but
that didn't work.

For differences between GnuPG 1.* and gpg 2.*, please see
<http://www.gnupg.org/>

Charly

I use currently gpg2 both under MacOSX and under Linux.

_______________________________________________
Gnupg-users mailing list
Gnupg-users [at] gnupg
http://lists.gnupg.org/mailman/listinfo/gnupg-users

mariocastelancastro at gmail

Nov 17, 2009, 1:04 PM

Post #6 of 14 (1687 views)
Permalink

Re: Problem with the agent, gpg2 [In reply to]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

November 17th for gnupg-users [at] gnupg

I need GNU PG 2 because i want to get out of the 1024 bits limit and
SHA forced for DSA, i want my next key (2010-2012) to be more secure
and accept some SHA2.

Charly Avital: Please note than Linux is a Kernel mixed commonly with
the GNU Operating System, a correct name for that mix is GNU/Linux,
but only "Linux" is not correct.

In advance thans by your understanding.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAksDD4MACgkQZ4DA0TLic4j9sgCbBG1tEGBnJ1aZ2OKt0owqXRYQ
jToAnRHmLg0TUxCdKr7LbyZqJCJbTctO
=L9WA
-----END PGP SIGNATURE-----

_______________________________________________
Gnupg-users mailing list
Gnupg-users [at] gnupg
http://lists.gnupg.org/mailman/listinfo/gnupg-users

ml at mareichelt

Nov 17, 2009, 1:24 PM

Post #7 of 14 (1685 views)
Permalink

Re: Problem with the agent, gpg2 [In reply to]

* Mario Castel�n Castro <mariocastelancastro [at] gmail> wrote:

> I need GNU PG 2 because i want to get out of the 1024 bits limit
> and SHA forced for DSA, i want my next key (2010-2012) to be more
> secure and accept some SHA2.

You don't need gpg2 for that.

--
left blank, right bald

rjh at sixdemonbag

Nov 17, 2009, 1:29 PM

Post #8 of 14 (1688 views)
Permalink

Re: Problem with the agent, gpg2 [In reply to]

Mario Castel�n Castro wrote:
> I need GNU PG 2 because i want to get out of the 1024 bits limit and
> SHA forced for DSA, i want my next key (2010-2012) to be more secure
> and accept some SHA2.

GnuPG 1.4.7 or later (? on the precise version #) supports longer DSAs
and better hash algorithms. You don't need GnuPG 2.x for that.

> Charly Avital: Please note than Linux is a Kernel mixed commonly with
> the GNU Operating System, a correct name for that mix is GNU/Linux,
> but only "Linux" is not correct.

You are free to call it GNU/Linux if you wish. Likewise, Charly is free
to just call it "Ubuntu" or "Fedora" or "Linux Mint" or whatever else is
clear and unambiguous, depending on what he wishes. Let's not start a
holy war over what the One True Name of the operating system is.

_______________________________________________
Gnupg-users mailing list
Gnupg-users [at] gnupg
http://lists.gnupg.org/mailman/listinfo/gnupg-users

faramir.cl at gmail

Nov 17, 2009, 1:54 PM

Post #9 of 14 (1688 views)
Permalink

Re: Problem with the agent, gpg2 [In reply to]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Mario Castelán Castro escribió:
> November 17th for gnupg-users [at] gnupg
>
> I need GNU PG 2 because i want to get out of the 1024 bits limit and
> SHA forced for DSA, i want my next key (2010-2012) to be more secure
> and accept some SHA2.

You don't need to change to GnuPG 2 for that, GnuPG 1.4.9 (and
probably other earlier versions) already supports DSA2 and RSA keys,
even if the defaults for new key generation is DSA 1024 /ElGamal 2048.
You can enable DSA2 at gpg.conf file, which would allow you to use DSA
2048, or you can chose RSA keys, which can be 1024, 2048 and 4096. GnuPG
1.4.10 already uses RSA 2048 as default for generation of new keys.

Best Regards

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iQEcBAEBCAAGBQJLAxutAAoJEMV4f6PvczxAw54IAJTrqSNePv0VpvoO2H7nTiRa
4Y6MNTmNlU9uT5YsV4VUuSbidwMsLsCBT3fu8u3Mpuen0bwfFiN45g1t2lAmqtiR
AmvpaXrVzXQxzqNxkJPkctEX3Nrt93Sd2I9S2RyP+novGo3Nc3oNo/8/c4SZT6H9
W25hKSyefM+c5F2Tcu5k8Cia3up5J/nNJfGeqH6M1Loktlj5KoiqDDUNmqJpNIB6
FMA6D2utuHMPAnbyaFvwbS1lNTSeHghAu2cHclp+2ZdDZpfyHVTU8hzAhhMW/zd/
ibqSPXvaMg3pe1nVV19KjnXa3iDDq995ViAVgV/2utMvzuehXzuOwYSRN07y6EU=
=+jpi
-----END PGP SIGNATURE-----

_______________________________________________
Gnupg-users mailing list
Gnupg-users [at] gnupg
http://lists.gnupg.org/mailman/listinfo/gnupg-users

dshaw at jabberwocky

Nov 17, 2009, 2:49 PM

Post #10 of 14 (1683 views)
Permalink

Re: Problem with the agent, gpg2 [In reply to]

On Nov 17, 2009, at 4:29 PM, Robert J. Hansen wrote:

> Mario Castel�n Castro wrote:
>> I need GNU PG 2 because i want to get out of the 1024 bits limit and
>> SHA forced for DSA, i want my next key (2010-2012) to be more secure
>> and accept some SHA2.
>
> GnuPG 1.4.7 or later (? on the precise version #) supports longer DSAs
> and better hash algorithms. You don't need GnuPG 2.x for that.

1.4.4, to be precise. That's mid-2006, so it's been supported for a
good long time. DSA2 is not, incidentally, the default, which might
be the root of the confusion here. You need to run with --enable-dsa2
to get longer DSA keys with larger hash support.

David

_______________________________________________
Gnupg-users mailing list
Gnupg-users [at] gnupg
http://lists.gnupg.org/mailman/listinfo/gnupg-users

JPClizbe at tx

Nov 17, 2009, 3:29 PM

Post #11 of 14 (1681 views)
Permalink

Re: Problem with the agent, gpg2 [In reply to]

Mario Castelán Castro wrote:
> November 17th for gnupg-users [at] gnupg
>
> I need GNU PG 2 because i want to get out of the 1024 bits limit and
> SHA forced for DSA, i want my next key (2010-2012) to be more secure
> and accept some SHA2.

GnuPG 2.0 is not needed for DSA > 1024 GnuPG 1.4.x has supported DSA2 for some
time, since 1.4.4 (2006-06-25). See "--enable-dsa2" in the manual for more
information.

> Charly Avital: Please note than Linux is a Kernel mixed commonly with
> the GNU Operating System, a correct name for that mix is GNU/Linux,
> but only "Linux" is not correct.

Ahh, the Naming Controversy Holy War[0].

Some of us oldsters were using "Linux" back when RMS & others were still trying
to get the Hurd kernel up, running and into active use[1].

The controversy even has it's own fairly good-sized Wikipedia page[2].

I like the closing remark on the Wikipedia page:

Many users and vendors who prefer the name "Linux" point to the inclusion
of non-GNU, non-kernel tools such as the Apache HTTP Server, the X Window
System or the K Desktop Environment in end-user operating systems based on
the Linux kernel. As stated by Jim Gettys, originator of X:

"There are lots of people on this bus; I don't hear a clamor of support
that GNU is more essential than many of the other components; can't
take a wheel away, and end up with a functional vehicle, or an engine,
or the seats. I recommend you be happy we have a bus."

The distros I use most often are 'Slackware Linux' and 'Red Hat Enterprise
Linux', no 'Gnu' there and no amount of fervent pedantry is likely to get it
inserted.

You are free to call it GNU/Linux if you wish. Likewise, others are free to
just call it "Slackware" or "Redhat" or "SuSE" so long as it's clear and
unambiguous. No one is likely to get total agreement over "The One True Name™®"
of the operating system. See final paragraph of [3].

> In advance thanks by your understanding.

And yours ;-)

[0] http://www.catb.org/jargon/html/H/holy-wars.html
[1] http://en.wikipedia.org/wiki/GNU_Hurd#Development_history
[2] http://en.wikipedia.org/wiki/GNU/Linux_naming_controversy
[3] http://www.catb.org/jargon/html/L/Linux.html
--
John P. Clizbe Inet:John (a) Mozilla-Enigmail.org
You can't spell fiasco without SCO. hkp://keyserver.gingerbear.net or
mailto:pgp-public-keys [at] gingerbear?subject=HELP

Q:"Just how do the residents of Haiku, Hawai'i hold conversations?"
A:"An odd melody / island voices on the winds / surplus of vowels"

Attachments:

signature.asc (0.66 KB)

dougb at dougbarton

Nov 17, 2009, 4:09 PM

Post #12 of 14 (1686 views)
Permalink

Re: Problem with the agent, gpg2 [In reply to]

Mario Castel�n Castro wrote:
> November 14th 2009 for gnupg-users [at] gnupg subject "Problem with the
> agent, gpg2"
>
> Hi, I sucefulle compiled and installed GNU PG 2.0.12 but when i do
> some operation than requires a password i get a message like the
> following.

It was never clear to me from the ensuing thread whether or not you
had gpg-agent running, if so, what command line options did you use,
etc. It's also not clear to me if you installed a pinentry program of
any kind.

If you still want help with this (as opposed to just using gpg 1 which
I think would be a better option) you should probably post some more
details about your setup.

Doug

--

Improve the effectiveness of your Internet presence with
a domain name makeover! http://SupersetSolutions.com/

_______________________________________________
Gnupg-users mailing list
Gnupg-users [at] gnupg
http://lists.gnupg.org/mailman/listinfo/gnupg-users

mariocastelancastro at gmail

Nov 17, 2009, 5:58 PM

Post #13 of 14 (1682 views)
Permalink

Re: Problem with the agent, gpg2 [In reply to]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

November 17th for gnupg-users [at] gnupg

Thanks by the --enable-dsa2 tip.

Someone can tellme wath line should i put on my gpg.cong?.

BTW I also want to remove sha1 from my key preferences. I understand
than the standard requires to support sha1 but i do not want to
that. Maybe soon the computing power becomes cheap enougth so sha1 is
in the range.

PD: I will not loose my time repeating why GNU/Linux should be called
"GNU/Linux", it is alredy explained very well in
http://www.gnu.org/gnu/gnu-linux-faq.html. Is pointless to discuss
with obstinate people who do not admit his mistrakes.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAksDVG0ACgkQZ4DA0TLic4hQngCeK4QrWOWsvrvtU1MoK/XfgjgI
yrMAn0+rJcKX+5U2vwX43qwTezGP9AlC
=HWeP
-----END PGP SIGNATURE-----

_______________________________________________
Gnupg-users mailing list
Gnupg-users [at] gnupg
http://lists.gnupg.org/mailman/listinfo/gnupg-users

rjh at sixdemonbag

Nov 17, 2009, 6:58 PM

Post #14 of 14 (1681 views)
Permalink

Re: Problem with the agent, gpg2 [In reply to]

Mario Castel�n Castro wrote:
> Thanks by the --enable-dsa2 tip.
>
> Someone can tellme wath line should i put on my gpg.cong?.

enable-dsa2

> BTW I also want to remove sha1 from my key preferences.

Can't be done. The OpenPGP standard requires that it be present. Even
if you explicitly remove it, any OpenPGP-conformant application will
silently add it to the end of your preference list.

_______________________________________________
Gnupg-users mailing list
Gnupg-users [at] gnupg
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Index | Next | Previous | View Threaded

Interested in having your list archived? Contact Gossamer Threads