tag:gpgtools.tenderapp.com,2011-11-04:/discussions/beta/902-gpgservices-seems-brokenGPGTools: Discussion 2018-10-18T19:56:17Ztag:gpgtools.tenderapp.com,2011-11-04:Comment/363305462015-03-20T02:53:24Z2015-03-28T21:01:11ZGPGServices seems broken<div><p>Hi,<br>
I have GPGServices (1.10b6 - 5e667ad) build 785n and when I try to
decrypt a file, it asks me for my PGP key password and it fails
every time. I then deleted my key from the Apple Keychain and tried
again and it still fails 3 times but then apparently automatically
takes whatever should have been deleted from my keychain and
decrypts the file.</p>
<p>I have no problem encrypting files, however.</p></div>Paul Bradytag:gpgtools.tenderapp.com,2011-11-04:Comment/363305462015-03-21T16:20:07Z2015-03-28T21:01:10ZGPGServices seems broken<div><p>Turns out that I can't save my key at all to my mac keyring
which means I have to input a password every time I read or try to
send an encrypted email. Not fun. And since it seems to not like my
password for decryption, I get errors every time I do this -
whereas I get no error encrypting an email. Just an fyi to
support.</p></div>Paul Bradytag:gpgtools.tenderapp.com,2011-11-04:Comment/363305462015-03-21T16:29:54Z2015-03-28T21:01:10ZGPGServices seems broken<div><p>Hi Paul,</p>
<p>I'm not quite sure I fully understand the problem yet.
Encryption will always work as long as you have a public key for
the recipient in question. That is all that's needed for
encryption.</p>
<p>Can you try to sign any file. Does that work? Signing will also
ask for your passphrase since it is done with the secret key and
passphrase.</p>
<p>What you write sounds like you maybe don't remember the
passphrase correctly. Let's see how that signing experiment
goes.</p>
<p>Also please open OS X keychain and search for gnupg. Do any
entires show up? If yes, how many?</p>
<p>If you double click one of those entries you can also show the
passphrase. I suggest making a note of all passphrases you find
there and then opening GPGPreferences.</p>
<p>Hit the button to "remove all passphrases".</p>
<p>You write you deleted your key. Well in that case decryption
will never work. If you open GPG Keychain, how many entries with
type sec/pub do you see?</p>
<p>Let's go from there.</p>
<p>Kindly,<br>
steve</p></div>Stevetag:gpgtools.tenderapp.com,2011-11-04:Comment/363305462015-03-22T12:56:46Z2015-03-28T21:01:09ZGPGServices seems broken<div><p>Hi Steve,</p>
<p>I think I might have figure out the weird behavior.</p>
<p>I had the option for ‘Auto retrieve keys for
verification’ checked.</p>
<p>When I uncheck this, I no longer get prompted multiple times to
enter a key passphrase. Not sure if a problem still exists with
this functionality, but at least I was able to figure out a
workaround.</p>
<p>Two quick questions:</p>
<p>Mailvelope on Chrome and Firefox do not seem to work with my
public/private keypair generated from gpgtools. It only seems to
work with keys generated by mailvelope.</p>
<p>Is there a known problem here?</p>
<p>Also, I can’t find ‘gpgsplit’. It used to be
available in MacGPG but is no longer available in MacGPG2. Can I
still get this program?</p>
<p>Best,<br>
Paul</p></div>Paul Brady Gmailtag:gpgtools.tenderapp.com,2011-11-04:Comment/363305462015-03-22T23:34:32Z2015-03-28T21:01:09ZGPGServices seems broken<div><p>Hi Paul,</p>
<p>your first mail did not fully make it here. It's best to use
your browser for your replies.</p>
<p>"auto retrieve keys for verification" is not related to any
passphrase promts. "Auto-retrieve keys" means that MacGPG2 will
automatically check for a public key if you are trying to verify
signed content. Example: Let's say you receive a signed mail
(signed using the sec key of the author of that message in
connection with his passphrase), in order to verify that signature
you do need the public key matching that exact sec key. So that
setting will trigger a search on the key servers and if a public
key is found, verify the signature.</p>
<p>So as you see it's unrelated to any passphrase queries on your
side.</p>
<p>Not sure about Mailvelope. I'd have to test that. What errors
are you running into and what steps are you taking? Did you contact
their support? There might be an easy solution...</p>
<p>About gpgsplit: We have a ticket for this problem. I connected
this discussion with the existing ticket. That means, should this
discussion get closed, it will be re-opened as soon as the ticket
is closed. That way you'll receive a notification. Feel free to
open a new discussions should you run into further problems or need
assistance.</p>
<p>We've removed it, so MacGPG2 is less bloated, but are planning
on re-adding it.</p>
<p>Kindly,<br>
steve</p></div>Stevetag:gpgtools.tenderapp.com,2011-11-04:Comment/363305462015-03-23T12:20:46Z2015-03-28T21:01:08ZGPGServices seems broken<div><p>Steve,</p>
<p>My sincere apologies for the mail snafu. I'll do rest of
discussion from browser.</p>
<p>Not sure why, but when I disabled the 'auto retrieve keys'
option, I stopped getting errors. It may be a coincidence.</p>
<p>As for mailvelope, I figured out the issue. My keys are really
old and for some reason, not compatible with mailvelope. I
generated a new keypair and revoked the old one (long overdue) and
now mailvelope works perfectly along with GPGTools. So now I can
encrypt mail from a browser using mailvelope addon for chrome or
firefox or on my mac with GPGTools all using the keys generated by
GPGTools. :)</p>
<p>As for GPGSPLIT, thanks for the update. Maybe you can answer my
dilemma a different way. I was using this great procedure here:</p>
<p><a href="https://alexcabal.com/creating-the-perfect-gpg-keypair/">https://alexcabal.com/creating-the-perfect-gpg-keypair/</a></p>
<p>to create a laptop keypair vs a master keypair. They recommend
you use gpgsplit to help accomplish this. But, I'm guessing the is
possible using GPGTools from the GUI (instead of command line). Is
that true? I just wasn't sure about it. The procedure goes through
a lot on the command line side and often you can do more on the
command line than you can in the GUI of many products.</p>
<p>What are your thoughts? Could I create a 'master keypair' vs a
'laptop keypair' using this procedure and GPGTools?</p>
<p>Best,<br>
Paul</p></div>Paul Bradytag:gpgtools.tenderapp.com,2011-11-04:Comment/363305462015-03-23T12:29:03Z2015-03-28T21:01:08ZGPGServices seems broken<div><p>Hi Paul,</p>
<p>thanks for the feedback and investigating this further. Just now
I looked at your old key (3AA2 37FF 8ED7 3634 4858 64E8 2813 83FA
FB12 54DD) and 1024bit keys are no longer considered secure so
creating a new key was absolutely the right choice.</p>
<p>I have not found no new key for <a href="mailto:pcb8271@gmail.com">pcb8271@gmail.com</a> on the key servers
(yet?). So you might want to consider uploading it if you have not
done so.</p>
<p>If you are still on OS X 10.10.1 as you wrote in your email, I
strongly recommend updating to OS X 10.10.2 and installing all the
new security updates from apple. There's been some busy weeks for
the security department at apple.</p>
<p>I have an appointment now, so I will have to get back to you
about the remaining key setup question.</p></div>Stevetag:gpgtools.tenderapp.com,2011-11-04:Comment/363305462015-03-23T12:37:59Z2015-03-28T21:01:07ZGPGServices seems broken<div><p>Hi Steve,</p>
<p>My key is uploaded (I did that immediately and revoked the old
one). The key is listed as "Paul Brady Gmail". The associated email
is <a href="mailto:pgp-pbrady@sneakemail.com">pgp-pbrady@sneakemail.com</a>
and I use my gmail address as as an additional user id so that I
can receive and encrypt email to that address - but I don't want
people to search by my email. (spammers sometimes hit the other
email account which is why I use that as my primary mail address
for this key.</p>
<p>Also, I misspoke earlier. I am on Mac OS X v10.10.2 now. :)</p>
<p>thanks and I look forward to hearing from you more when you get
a chance to check that link's info out.</p>
<p>Best regards,<br>
Paul</p>
<p>ps. I LOVE your product. Thank you so much for your efforts and
your team's efforts!!!</p></div>Paul Bradytag:gpgtools.tenderapp.com,2011-11-04:Comment/363305462015-03-25T21:38:16Z2015-03-28T21:01:07ZGPGServices seems broken<div><p>Just installed Beta 6, and decryption no longer works: instead
of producing the plaintext file with the original name (minus the
.gpg), a file called "S" is produced. It appears to resemble the
plaintext file, but the change in filename is suspicious, and
clearly wrong.</p>
<p>This is the first problem I've had using GPG over a few
years.</p></div>laertestag:gpgtools.tenderapp.com,2011-11-04:Comment/363305462015-03-28T17:06:41Z2015-03-28T21:01:07ZGPGServices seems broken<div><p>laertes: please don't highjack other discussion. Let's discuss
your problem in the discussion you've created to keep things lean
and clean.</p>
<p>Paul: gpg split has been re-integrated. If you want to test the
fix, please download our <a href="https://releases.gpgtools.org/nightlies/">latest nightly GPG
Suite</a>. That page also has sig and SHA1 to verify the
download.</p>
<p>As for key question: I'm not sure I understand the comment #7.
All UserIDs you add to your key and upload to the keyservers can be
connected to one identity and are searchable by email or name. In
your case that means both mail addresses currently in your Key do
show and can be found when searched for.</p>
<p>I still have to find the time to go through that article in
details. But that question might be a good one to be asked at the
gnupg users mailling list here:<br>
<a href="http://lists.gnupg.org/mailman/listinfo/gnupg-users">http://lists.gnupg.org/mailman/listinfo/gnupg-users</a></p>
<p>All the best,<br>
steve</p></div>Stevetag:gpgtools.tenderapp.com,2011-11-04:Comment/363305462015-03-28T21:00:17Z2015-03-28T21:01:06ZGPGServices seems broken<div><p>Steve,</p>
<p>I believe the response below was intended for someone else.</p>
<p>Steve wrote:</p></div>laertes