Gnupg-users Digest, Vol 227, Issue 11
Rhett
rhettbohling at gmail.com
Wed Aug 17 18:42:29 CEST 2022
Please Help me get off this
I have tried but not working
Please
On Wed, Aug 17, 2022 at 3:47 AM <gnupg-users-request at gnupg.org> wrote:
> Send Gnupg-users mailing list submissions to
> gnupg-users at gnupg.org
>
> To subscribe or unsubscribe via the World Wide Web, visit
> https://lists.gnupg.org/mailman/listinfo/gnupg-users
> or, via email, send a message with subject or body 'help' to
> gnupg-users-request at gnupg.org
>
> You can reach the person managing the list at
> gnupg-users-owner at gnupg.org
>
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of Gnupg-users digest..."
>
>
> Today's Topics:
>
> 1. Re: GNUPG and Google Cloud (C.J. Collier)
> 2. gpa.exe hungs when click on "smartcards" AND scdaemon cannot
> recognise SC-HSM (Minas Argyrou)
>
>
> ----------------------------------------------------------------------
>
> Message: 1
> Date: Tue, 16 Aug 2022 13:29:19 -0700
> From: "C.J. Collier" <cjac at colliertech.org>
> To: David Gordon <DavidWGordon1011 at outlook.com>
> Cc: "gnupg-users at gnupg.org" <gnupg-users at gnupg.org>
> Subject: Re: GNUPG and Google Cloud
> Message-ID:
> <
> CAJj0OuvWzGUfHFCy8LrzW8BiVSrzP7KsxuPPoSVc848kP2OFRA at mail.gmail.com>
> Content-Type: text/plain; charset="utf-8"
>
> Hi David,
>
> I would take a look at Secret Manager[1] as a way to store your private key
> material confidentially. Perhaps consider Cloud Run[2] as a mechanism for
> execution of arbitrary code, in this case for instance with the
> encryption/decryption pipeline using the python runtime and python-gnupg[3]
> library.
>
> You might instead find Cloud Pub/Sub[4] and Dataflow[5] to be useful for
> streaming the data from your on-prem environment to GCS, and from GCS to
> BigQuery.
>
> In short, yes, there are a variety of ways to perform the steps that you're
> talking about on GCP. You should be able to develop a proof of concept on
> a small scale while staying within the limits of the free tier[6]. I'm not
> quite clear on why you would want to encrypt the data when you will
> eventually decrypt it for storage into BigQuery, but yes, it is feasible.
>
> C.J.
>
> [1] https://cloud.google.com/secret-manager
> [2] https://cloud.google.com/run
> [3] https://pypi.org/project/python-gnupg/
> [4] https://cloud.google.com/pubsub
> [5] https://cloud.google.com/dataflow
> [6] https://cloud.google.com/free
>
> On Tue, Aug 16, 2022 at 11:33 AM David Gordon <
> DavidWGordon1011 at outlook.com>
> wrote:
>
> > CJ,
> >
> >
> >
> > We were looking for a server-less solution. What we want to do is take
> > data from a legacy mainframe system, encrypt it via PGP, and then via GKE
> > transfer it to Cloud Storage. From there we want to decrypt it via GnuPG,
> > save it in Cloud Storage and then load it into Big Query.
> >
> >
> >
> > Thanks,
> >
> > David
> >
> >
> >
> > *From:* C.J. Collier <cjac at colliertech.org>
> > *Sent:* Tuesday, August 16, 2022 10:23 AM
> > *To:* David Gordon <DavidWGordon1011 at outlook.com>
> > *Cc:* gnupg-users at gnupg.org
> > *Subject:* Re: GNUPG and Google Cloud
> >
> >
> >
> > Hi there!
> >
> >
> >
> > Are you looking for a server-less solution or will a Debian instance on
> > GCE or GKE suffice?
> >
> >
> >
> > You can "deploy" GNUPG with apt-get. Decrypting content would require
> > getting a private key or an agent onto the system.
> >
> >
> >
> > Can you give more details about what you're looking for?
> >
> >
> >
> > C.J. in Cloud Support, Seattle
> >
> > GCP Technical Solutions Engineer
> >
> >
> >
> >
> >
> > On Tue, Aug 16, 2022, 05:49 David Gordon via Gnupg-users <
> > gnupg-users at gnupg.org> wrote:
> >
> > Can GnuPG be deployed to GCP to decrypt files? If so, is there a
> > recommended approach?
> >
> >
> >
> > Thanks,
> >
> > David
> >
> >
> >
> > Sent from Mail
> > <
> https://nam12.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgo.microsoft.com%2Ffwlink%2F%3FLinkId%3D550986&data=05%7C01%7C%7Cad6622d2400147059b4508da7f92dad8%7C84df9e7fe9f640afb435aaaaaaaaaaaa%7C1%7C0%7C637962565967612968%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=A2zN6aWVAIQ7H8Zhq2JiSIZ2cEjDy2yKCQdRIX7T7bA%3D&reserved=0
> >
> > for Windows
> >
> >
> >
> > _______________________________________________
> > Gnupg-users mailing list
> > Gnupg-users at gnupg.org
> > https://lists.gnupg.org/mailman/listinfo/gnupg-users
> > <
> https://nam12.safelinks.protection.outlook.com/?url=https%3A%2F%2Flists.gnupg.org%2Fmailman%2Flistinfo%2Fgnupg-users&data=05%7C01%7C%7Cad6622d2400147059b4508da7f92dad8%7C84df9e7fe9f640afb435aaaaaaaaaaaa%7C1%7C0%7C637962565967612968%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=EnvRhaqhJaDX%2FlpIwBGk3QjuMcIXh5Gcppuypi5kNYw%3D&reserved=0
> >
> >
> >
> -------------- next part --------------
> An HTML attachment was scrubbed...
> URL: <
> https://lists.gnupg.org/pipermail/gnupg-users/attachments/20220816/1651fc4d/attachment-0001.html
> >
>
> ------------------------------
>
> Message: 2
> Date: Wed, 17 Aug 2022 07:15:33 +0000
> From: Minas Argyrou <minasargyrou at outlook.com>
> To: "gnupg-users at gnupg.org" <gnupg-users at gnupg.org>
> Cc: Minas Argyrou <minasargyrou at outlook.com>
> Subject: gpa.exe hungs when click on "smartcards" AND scdaemon cannot
> recognise SC-HSM
> Message-ID:
> <
> AS4P251MB094158964CBA8E7E7339A92DC16A9 at AS4P251MB0941.EURP251.PROD.OUTLOOK.COM
> >
>
> Content-Type: text/plain; charset="utf-8"
>
> Hello,
>
> I believe I have found the cause of the problem with the GnuPG. When
> removing
> the AES key from the card, the error about the invalid PrKDF disappeared,
> which I believe is progress.
>
> When I try "scdaemon --server" and then type "learn", I get the following:
>
> scdaemon[xxxxx]: detected reader 'ACS CCID USB Reader 0'
> scdaemon[xxxxx]: reader slot 0: not connected
> scdaemon[xxxxx]: pcsc_control failed: invalid PC/SC error code (0x1)
> scdaemon[xxxxx]: pcsc_vendor_specific_init: GET_FEATURE_REQUEST failed:
> 65547
> scdaemon[xxxxx]: reader slot 0: active protocol: T1
> scdaemon[xxxxx]: slot 0: ATR=xxxxxxxxxxxxxx
> scdaemon[xxxxx]: DBG: PrKDF C401: id=xxxxxxxxxxxxxx keyref=0x01
> keysize=528
> usage=sign,derive
> scdaemon[xxxxx]: DBG: CDF C401: id=xxxxxxxxxxxxxx fid=CE01
> scdaemon[xxxxx]: DBG: PrKDF C402: id=xxxxxxxxxxxxxx keyref=0x02
> keysize=2048
> usage=decrypt,sign,sign_recover,unwrap
> scdaemon[xxxxx]: DBG: CDF C402: id=xxxxxxxxxxxxxx fid=CE02
> S READER ACS CCID USB Reader 0
> S SERIALNO xxxxxxxxxxxxxx
> INQUIRE KNOWNCARDP xxxxxxxxxxxxxx
>
>
> I then try "gpg --card-edit --expert" and then "admin" and "list"
>
> Reader ...........: ACS CCID USB Reader 0
> Application ID ...: xxxxxxxxxxxxxx
> Application type .: Unknown
>
>
> GnuPG is now recognising the private keys and can parse the PrKDF record
> but
> still cannot use the keys. Any thoughts on this?
>
> Thanks in advance!
>
> Argyrou Minas
> -------------- next part --------------
> A non-text attachment was scrubbed...
> Name: smime.p7s
> Type: application/pkcs7-signature
> Size: 6027 bytes
> Desc: not available
> URL: <
> https://lists.gnupg.org/pipermail/gnupg-users/attachments/20220817/a617c41d/attachment.bin
> >
>
> ------------------------------
>
> Subject: Digest Footer
>
> _______________________________________________
> Gnupg-users mailing list
> Gnupg-users at gnupg.org
> https://lists.gnupg.org/mailman/listinfo/gnupg-users
>
>
> ------------------------------
>
> End of Gnupg-users Digest, Vol 227, Issue 11
> ********************************************
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnupg-users/attachments/20220817/ddbebc21/attachment.html>
More information about the Gnupg-users
mailing list