From owner-freebsd-questions@FreeBSD.ORG Fri May 1 17:47:08 2015 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id B4C77443 for ; Fri, 1 May 2015 17:47:08 +0000 (UTC) Received: from dd13304.kasserver.com (dd13304.kasserver.com [85.13.135.53]) (using TLSv1.1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 421A216D5 for ; Fri, 1 May 2015 17:47:07 +0000 (UTC) Received: from nermal.rz1.convenimus.net (p5B0207C5.dip0.t-ipconnect.de [91.2.7.197]) by dd13304.kasserver.com (Postfix) with ESMTPA id 58F121E01B5 for ; Fri, 1 May 2015 19:37:27 +0200 (CEST) Received: from falbala.localnet (falbala.rz1.convenimus.net [192.168.100.8]) by nermal.rz1.convenimus.net (Postfix) with ESMTP id 7B1E815210 for ; Fri, 1 May 2015 18:35:51 +0200 (CEST) From: Christian Baer To: FreeBSD Questions Mailing List Subject: Frustration with GnuPG (getting it to work) Date: Fri, 01 May 2015 19:37:26 +0200 Message-ID: <6813095.CYIGPqOIyp@falbala> User-Agent: KMail/4.14.2 (FreeBSD/10.1-RELEASE-p9; KDE/4.14.2; amd64; ; ) MIME-Version: 1.0 Content-Transfer-Encoding: 7Bit Content-Type: text/plain; charset="utf-8" X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 01 May 2015 17:47:08 -0000 Good afternoon everyone! This post will probably end up being a little long. As you have probably noticed, I tend to read and try a lot before I post on the list. :-) A few days ago I installed gnupg [gpg (GnuPG) 2.1.2 libgcrypt 1.6.3]. Generating a few new keys (for work, personal use and playing around) was pretty trivial and worked fine on the command line (--full-gen-key) and with KGpg. However I cannot get gnupg to work either in KMail or Claws. Let's start with Kmail... In KMail I cannot find any otions to point to gnupg or gpg. The settings under identities -> $NAME -> cryptography do find my keys for OpenPGP, so something does seem to work. :-) However, when I try to decrypt a message, I just get this (formatting lost): Encrypted message This message is encrypted. Decrypt Message End of encrypted message And when I click "Decrypt message", I get this: Encrypted message (decryption not possible) Reason: Crypto plug-in "OpenPGP" could not decrypt the data. Error: Decryption failed Could not decrypt the data. End of encrypted message I am not asked for a passphrase. This message is displayed in the regular message place, after a very short delay. After quite a bit of ulilizing a search engine, I activated the gpg-agent. This is my current gpg.conf (compressed): keyserver hkp://keys.gnupg.net utf8-strings debug-level basic log-file socket:///home/christian/.gnupg/log-socket display-charset utf-8 fixed-list-mode keyid-format 0xlong fingerprint personal-digest-preferences SHA512 SHA384 SHA256 default-preference-list SHA512 SHA384 SHA256 SHA224 AES256 AES192 AES\\ CAST5 BZIP2 ZLIB ZIP Uncompressed use-agent verify-options show-uid-validity list-options show-uid-validity cert-digest-algo SHA512 During this searching and reading, I found a lot of stuff that was probably outdated. At least I assume as much because the options in those howtos or articles just don't exist in my KMail. What all seem to agree upon is the usagte of pinentry. On my computer only pinentry-tty is installed. In the ports there is a pinentry-qt, but there does not seem to be a precompiled package: root@falbala:~ # whereis pinentry-qt4 pinentry-qt4: /usr/ports/security/pinentry-qt4 root@falbala:~ # pkg install security/pinentry-qt4 Updating FreeBSD repository catalogue... FreeBSD repository is up-to-date. All repositories are up-to-date. pkg: No packages available to install matching 'security/pinentry-qt4' have been found in the repositories Ok, so I thought I'd just compile it myself. What are the ports for? That did not go well either: root@falbala:/usr/ports/security/pinentry-qt4 # make ===> pinentry-qt4-0.9.1 does not compile with libc++. *** Error code 1 Stop. make: stopped in /usr/ports/security/pinentry-qt4 The gtk2-version complains that I do not have libiconv>=1.14_8 installed. But since I am pretty much using KMail most of the time (as part of Kontact which I use together with a Kolab account), the qt4 version is the one of choice - IMHO. So I did not investigate this any further. Then claws came into the picture. I know this client very well and would probably use it and not KMail, if Kontact didn't have the nice integration of the calendar and address book for use with Kolab. With claws I can't get GnuPG to work either. There are no options to set. GnuPG should be controlled via a plugin. There don't seem to be any installed. The GnuPG plugin I cannon find in the ports tree. The Claws Mail website stated that the required plugin should ship with the client. I installed Claws as a precompiled package. As you can probably imagine, I am a little frustrated right about now, because the hassle of getting GnuPG to work is getting a bit too big for my taste - especially since this should be a relatively trivial task. Can someone please give me a push in the right direction so I do not have to torture my search engine any further and read gigabytes of outdated text? Thanks and best regards! Chris