/r/gpg4win
This subreddit is a point for users to exchange their experiences on and about Gpg4win.
This subreddit is a point for users to exchange their experiences on and about Gpg4win.
/r/gpg4win
I have a windows computer but tails runs on linux but it has a .exe file but everytime I open it a bunch of folders show up. Nothing I can install.. Do I move to a different tool I don’t understand it won’t install no matter what I do.
Hi,
I have an issue with opening OpenPGP encrypted mails send via Thunderbird.
I’m using Outlook 365 with GpgOL plugin and Kleopatra. When someone sends me encrypted mail for example via Outlook or EmClient it works fine and I can easily open it and view the email content. Those mails are sent with .pgp extension.
Mails which I’m receiving from Thunderbird are with .asc extension:
I can open that file with Kleopatra and decrypt it, but I can’t view the email content:
In both situations, I have imported public keys, so it is not a key problem. I’ve tried to open emails sent via Thunderbird in Thunderbird and it obviously works fine. Likewise in EmClient. Maybe it is something with Kleopatra settings?
According to release notes gpg4win supports Kyber algorithm: https://lists.gnupg.org/pipermail/gnupg-announce/2024q3/000485.html
How can I enable it when encrypting a file?
Just wondering if I am able to download this application on iPad because when I go to my files after download it doesn’t appear..
I downloaded and successfully verified Gpg4win 4.3.1 (2024-03-11) using GNU Privacy Guard. However, when I uploaded the setup/binary file to VirusTotal.com, the vast majority of virus detection engines identified it as a virus.
What gives?
Hi! I want to instal gpg on usb. I Dld gpg4usb on tails, unzipped but windows.exe just opens up a folder and nothing executes in there. Help please 🥹
Symantec can use pgp/mime, but by default it uses pgp partitioned, hence it creates a PGPexch.htm.pgp file for the body of the message and AttachmentN.pgp for each attached file. Pgp/mime creates only one file message.pgp with all the information. But I cannot make gpg4win properly decrypt and show emails sent with the Symantec method. Help!
i cannot figure it out ?
does the secret key (mine) also include all my certificates ive added ?
so i created my keys in kleopatra and when i export it i get this weird words in the header but when i export the same key on gpa its normal . any idea whats up /. exemple
-----BEGIN PGP PUBLIC KEY BLOCK-----
Comment: User-ID: 1438922
Comment: Valid from: 2022-11-16 12:45 PM
Comment: Valid until: 2024-11-16 12:00 PM
Comment: Type: 255-bit EdDSA (secret key available)
Comment: Usage: Signing, Encryption, Certifying User-IDs
Comment: Fingerprint: B6478E42DB41E323AB6E9D17773573C1E6C2F4C0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=/r7S
-----END PGP PUBLIC KEY BLOCK-----38
I bought a new PC recently and would like to transfer my Kleopatra PGP tool to it. It's still installed on my old PC but now when I try to load it it says:
*"Kleopatra cannot be run as administrator without breaking file permissions in the GnuPG data folder . To manage keys for other users please manage them as a normal user and copy the Appdata\Roaming\gnupg directory with proper permissions."
Which means I can't export my keys/profile from it. Is there anything I can do here?
Hi, I'm relatively new to gpg4win, and am trying to accomplish what I *think* is a relatively simple task.
I'd like to encrypt and decrypt files from a command line, such that I can script a process to automatically parse files in a folder to be encrypted at regular intervals, or decrypted. I have only one certificate with private key stored in Kleopatra, and it's set to my default identity, and "ultimate" trusted.
I've googled for hours, read through documentation, found examples, but a few of the option switches that are widely referenced don't seem to work with gpg4win (IE, --passphrase-file or --passphrase_fl, or even just --passphrase).
Here's my current syntax for a test encryption
.\gpg -r "KEYNAME" -o testencrypt.gpg --pinentry-mode=loopback --passphrase "PASSPHRASE" --default-recipient-self --always-trust -encrypt test.txt
yeilds :
gpg: ypt: skipped: No public keygpg: test.txt: encryption failed: No public key
I'm not sure if I even need the passphrase for encryption, rather than decryption - but if I omit --passphrase, it prompts for one.
I haven't gotten to decryption syntax, but figure it will be pretty much just the opposite process. I noticed the gpg-preset-passphrase.exe program, and ran it and entered the password there - not sure if that impacts anything.
Thanks for any insight!
edit : using gpg4win 4.0.3
Struggling to find the right reddit for this question :(
I'm embarrassed to ask this question, since I've been a PGP user since 1993 (not long after Phil released it ;) ) I feel like I should know the answer, but I've spent 3-4 hours last night researching and come up blank.
What I want to do, is simply restrict access to my own keychain/keyring, so that only I can access it. I don't want other people with admin/root to be able to open it, so this isn't simply a matter of file permissioning. Ideally it would be something as simple as an application password, or even better, 2FA. Right now I'm using GPG4Win (GPA for key mgmt), but a solution that works on *nix too would be ideal. The only app I've found that seems to offer this is GPGTools, but that's OSX-only :(
For context, I'll explain the "why." My keychain has numerous public keys on it that I don't want an attacker or curious admin to see. Likewise, some of my private keys I also would like to keep secret. It would be a big SIGINT fail if people could infer who I've been communicating with via my collection of keys. This seems like such an obvious feature, that I'm somewhat baffled I can't find a solution.
P.S. For extra credit...is there any way to annotate keys? For instance, if someone's public key identity is "nobody[at]foo[dot]bar", is there any way to add a personal "note" as an annotation so I can tag it "belongs to somebody[at]realdomain[dot]com" ?
Any suggestions greatly appreciated!
So I need to sign the files to send to a bank And I have a batch file directly which works and has been approved by the bank. Two problems I have are one, if there are multiple files Within the folder, the signing does not work, the second issue is I need to include the passphrase within the batch job as it asks for it occasionally and I need to enter it manually. Any help is greatly appreciated!
Also this is Signing only, encryption does not needed.
I am doing something that I thought would be very easy and it is not working. I downloaded gpg4win 4.0.2 and I'm attempting to use the look up function and it returns nothing. Any suggestions? Thank you.
Hey guys,
i get the error that the message size exceeds the server limit. GpgOL then receives the "AttachmentRemove" event and even brings up the attachment has been removed warning and the attachments are not all shown.
What am i missing? The mails are about 15-20MB and already pretty shrinked. Can i raise the limit? to date i thought there is no server involved, just the keys.
- kleopatra on windows 10
- outlook with exchange online
- mail partners using pgp domain keys
thanks in advance
Hi there, do anyone know if it is possible to automatically attach my public key to new emails and answers in outlook 2016 with gpgol, or with anything else ? Did not find anything in the plugin settings. Searched but did not find anything.
Okay, bit of a hypothetical. But what hardware would you suggest to get really fast encryption and decryption rates. Would it be fast ram, fast processor cores. Super fast solid state units. This is for large data files. Gigabytes in size.
I am able to verify PGP signatures when the source has a clear link to the SIG file, or provides clear instructions on how to get it.
What I want to know is this: how am I supposed to verify PGP signatures when I can get a binary file and its ASC file, but there is no clear way to get its SIG file? This is the situation I find myself in when trying to verify the PGP signature for qBittorrent.
By the way, I am using Windows and installed the gpg4win package.
Hi guys
Need some help please.
I have a message that I am trying to decrypt but keep getting "cannot find secret key"
Can anybody help
Have spent hours at this but still cant figure it out
Hi, wonder if anyone can help here.
My laptop had a fit and lost programs, frustratingly Kleopatra bit the dust. I downloaded again, but when I try to decrypt a message for me, it's saying no secret key. I have the secret key and the Public key, don't know what else to do. I understand how it works but not overly technical otherwise.
Hey there, im a self-professed gpg hater with the technical skills of 2 year old. I use gpa almost exclusively because it has been the easiest for me to use. Without getting into it too much, let's just say I need pgp encryption for opsec reasons whilst using the dark web. I've had the same default public key for about 7 months . Its not set to expire until 2025 and yes I have both public and secret keys. This morning I went to decrypt a message and all of a sudden got an error message saying "The gpme library returned an unexpected error....No secret key.
This is either an installation problem or a bug in gpa."
I made no changes or updates to my public key or to the gpg/kleopatra/gpa settings. I have my backup key pair saved in a folder but so far from mucking around I have yet to see a way to replace the existing default with the back up keys.
Please help im so frustrated right now this program is NOT intuitive and please don't tell me to do command line stuff no matter what I do I can never get commands to work. Any help would be greatly appreciated!!
So before the pandemic hit, I was working to decrypt a file sent to me. I created the public key for the other person to encrypt data in a flat file. I received the encrypted flat file. I got it working but I can't remember the command syntax that I used and forgot to document it before everything shut down. Now, I'm trying to do decrypt the data in the file again and finalize my code. I'm using my private key but I'm getting errors. More specifically, I run the following command:
gpg -o "C:\\Users\\atrapp\\Documents\\20200324.txt" --decrypt C:\\Users\\atrapp\\Documents\\20200324.txt.pgp
I get a dialog prompting me for the passphrase. I enter it and then I get this message.
gpg: encrypted with 4096-bit RSA key, ID ,<ID Here>, created 2020-03-24
"Angela Trapp atrapp@mycompany.com"
gpg: public key decryption failed: Bad passphrase
gpg: decryption failed: No secret key
When I list the secret keys, I see my secret key. What am I doing wrong? Also, I'd like to ultimately get it working with the passphrase dialog suppressed. Any guidance there is appreciated!
I downloaded the installer with Firefox and tried the extension until I saw to use the “properties” method. I was able to match with some values (somewhere) in the certificate mainly:
S/N Issuer Sha1_fpr
But I can’t seem to match the other parts fully like:
Subject Md5_fpr
As I’m trying to use it to verify a tails and qubes images I have to create a dual bootable usb.
Should I continue with my installer and what steps do I need to take to verify installer.
I’m trying to create a key but I keep failing due to “invalid packet” how do I fix it? I really need help