debug-ccid-cardreader

Jelle de Jong jelledejong at powercraft.nl
Fri Jul 18 11:03:56 CEST 2008 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Werner Koch wrote:
| On Fri, 18 Jul 2008 10:08, jelledejong at powercraft.nl said:
|
|> Now i still got the question why i cant verify my emails with my the
|> subkey system i have been using for years now did something change and
|> what can i do about it without changing my key infrastructure?
|
| The only change we did in 1.4.8 is
|
|     * By default (i.e. --gnupg mode), --require-cross-certification is
|       now on.  --rfc2440-text and --force-v3-sigs are now off.
|
| Gpg will tell you if there is no cross certifciation and point you to an
| URL explaining it.
|
| In case the new defaults from RFC4880 are the problem you may try to use
| the option --no-rfc2440-text; however the actual problem is then in your
| MUA.
|
| Salam-Shalom,
|
|    Werner
|

So my previous message and this message where properly signed? Then my
Enigmail MUA is buggy again...

This is my MUA output:

OpenPGP Security Info

Unverified signature

gpg command line and output:
/usr/bin/gpg --charset utf8  --batch --no-tty --status-fd 2 -d
gpg: armor header: Hash: SHA1
gpg: armor header: Version: GnuPG v1.4.9 (GNU/Linux)
gpg: armor header: Comment: Using GnuPG with Mozilla -
http://enigmail.mozdev.org
gpg: original file name=''
gpg: Signature made Fri Jul 18 10:08:12 2008 CEST using RSA key ID 6F63E479
gpg: using subkey 6F63E479 instead of primary key 78830E32
gpg: WARNING: signing subkey 6F63E479 is not cross-certified
gpg: please see http://www.gnupg.org/faq/subkey-cross-certify.html for
more information
gpg: Can't check signature: general error

I did check the url and tried some commands like:

- -- --

gpg --edit-key 6F63E479

Command> cross-certify
subkey E6AACFD6 does not sign and so does not need to be cross-certified
subkey 75E0E5C2 does not sign and so does not need to be cross-certified
gpg: detected reader `SCM SCR 335 00 00'
gpg: reader slot 0: active protocol: T1
gpg: slot 0: ATR=3B FA 13 00 FF 81 31 80 45 00 31 C1 73 C0 01 00 00 90 00 B1
gpg: AID: D2 76 00 01 24 01 01 01 00 01 00 00 06 AB 00 00
gpg: signatures created so far: 65

Please enter the PIN
[sigs done: 65]
gpg: RSA/SHA1 signature from: "6F63E479 Jelle de Jong
<jelledejong at powercraft.nl>"
gpg: secret key parts are not available
gpg: update_keysig_packet failed: general error

- -- --

gpg --edit-key 78830E32
gpg (GnuPG) 1.4.9; Copyright (C) 2008 Free Software Foundation, Inc.
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.

Secret key is available.

gpg: using PGP trust model
pub  1024D/78830E32  created: 2006-11-15  expires: never       usage: SC
~                     trust: ultimate      validity: ultimate
sub  2048g/E6AACFD6  created: 2006-11-15  expires: never       usage: E
sub  1024R/75E0E5C2  created: 2006-11-15  expires: never       usage: A
sub  1024R/6F63E479  created: 2006-11-15  expires: never       usage: S
sub  1024R/9E25896A  created: 2006-11-15  expires: never       usage: E
[ultimate] (1). Jelle de Jong <jelledejong at powercraft.nl>

Command> cross-certify
subkey E6AACFD6 does not sign and so does not need to be cross-certified
subkey 75E0E5C2 does not sign and so does not need to be cross-certified
gpg: detected reader `SCM SCR 335 00 00'
gpg: reader slot 0: active protocol: T1
gpg: slot 0: ATR=3B FA 13 00 FF 81 31 80 45 00 31 C1 73 C0 01 00 00 90 00 B1
gpg: AID: D2 76 00 01 24 01 01 01 00 01 00 00 06 AB 00 00
gpg: signatures created so far: 66

Please enter the PIN
[sigs done: 66]
gpg: RSA/SHA1 signature from: "6F63E479 Jelle de Jong
<jelledejong at powercraft.nl>"
gpg: secret key parts are not available
gpg: update_keysig_packet failed: general error

- -- --

Does this mean i need to do some other things first?

Sorry if i am not more familiar with the gnupg system, i am more a user
then developer with the gnupg system...

Thanks in advance,

Jelle

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iJwEAQECAAYFAkiAXHoACgkQ1WclBW9j5HnSRgP+LPz7dDob1GtSpMzwCZpz6OCF
V15LPcaHbfV94yCzVxaPydvOBI3RABs3WcYlEZ5wAf8Z4UmqXoF7MpWG+oThOX7v
99tdUD/t2Ia2r9o9tpkz1V3XNjxC7zJrr/QBkc2uhflqPs2eM8HOI1k4GyXpSNQW
d63VjGkNWt1G+N2T1uc=
=xjgg
-----END PGP SIGNATURE-----

More information about the Gnupg-users mailing list