From owner-freebsd-questions@FreeBSD.ORG Sat May 2 11:04:49 2015 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 3C96E1B4 for ; Sat, 2 May 2015 11:04:49 +0000 (UTC) Received: from mailrelay109.isp.belgacom.be (mailrelay109.isp.belgacom.be [195.238.20.136]) by mx1.freebsd.org (Postfix) with ESMTP id 736FE1D54 for ; Sat, 2 May 2015 11:04:48 +0000 (UTC) X-Belgacom-Dynamic: yes X-Cloudmark-SP-Filtered: true X-Cloudmark-SP-Result: v=1.1 cv=hkFBDakPHWYIOok4y3pcivnmCJQbEK2MeX2RAJ8hs1E= c=1 sm=2 a=kj9zAlcOel0A:10 a=zGGjxxUDAAAA:8 a=cD8mDtHqMFW4vuQo_QMA:9 a=CjuIK1q_8ugA:10 a=TIaGgvWVQlUY58ya:21 a=rbSVGM-4-7cIn_k4:21 X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: A2BgBgAHrkRV/wu/8VFcgwxTXMcxhgwCgU5NAQEBAQEBgQuEIQEBBCcTHCMQCxgJDBkPKh4GE4gvAcYuAQEBAQEFAQEBAR6LOYQzAQFQBwqEIwEEh3OOEIY/gSQ9gxCCcY4lI4IHHIFTPDGBC4E6AQEB Received: from 11.191-241-81.adsl-dyn.isp.belgacom.be (HELO kalimero.tijl.coosemans.org) ([81.241.191.11]) by relay.skynet.be with ESMTP; 02 May 2015 13:03:35 +0200 Received: from kalimero.tijl.coosemans.org (kalimero.tijl.coosemans.org [127.0.0.1]) by kalimero.tijl.coosemans.org (8.14.9/8.14.9) with ESMTP id t42B3XMA001243; Sat, 2 May 2015 13:03:34 +0200 (CEST) (envelope-from tijl@FreeBSD.org) Date: Sat, 2 May 2015 13:03:33 +0200 From: Tijl Coosemans To: Christian Baer Cc: FreeBSD Questions Mailing List Subject: Re: Frustration with GnuPG (getting it to work) Message-ID: <20150502130333.6d89a710@kalimero.tijl.coosemans.org> In-Reply-To: <6813095.CYIGPqOIyp@falbala> References: <6813095.CYIGPqOIyp@falbala> MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 02 May 2015 11:04:49 -0000 On Fri, 01 May 2015 19:37:26 +0200 Christian Baer wrote: > Good afternoon everyone! > > This post will probably end up being a little long. As you have probably > noticed, I tend to read and try a lot before I post on the list. :-) > > A few days ago I installed gnupg [gpg (GnuPG) 2.1.2 libgcrypt 1.6.3]. > Generating a few new keys (for work, personal use and playing around) was > pretty trivial and worked fine on the command line (--full-gen-key) and with > KGpg. > > However I cannot get gnupg to work either in KMail or Claws. Let's start with > Kmail... > > In KMail I cannot find any otions to point to gnupg or gpg. The settings under > identities -> $NAME -> cryptography do find my keys for OpenPGP, so something > does seem to work. :-) However, when I try to decrypt a message, I just get > this (formatting lost): > > Encrypted message > This message is encrypted. > Decrypt Message > End of encrypted message > > And when I click "Decrypt message", I get this: > > Encrypted message (decryption not possible) > Reason: Crypto plug-in "OpenPGP" could not decrypt the data. > Error: Decryption failed > Could not decrypt the data. > End of encrypted message > > I am not asked for a passphrase. This message is displayed in the regular > message place, after a very short delay. > > After quite a bit of ulilizing a search engine, I activated the gpg-agent. > This is my current gpg.conf (compressed): > > keyserver hkp://keys.gnupg.net > utf8-strings > debug-level basic > log-file socket:///home/christian/.gnupg/log-socket > display-charset utf-8 > fixed-list-mode > keyid-format 0xlong > fingerprint > personal-digest-preferences SHA512 SHA384 SHA256 > default-preference-list SHA512 SHA384 SHA256 SHA224 AES256 AES192 AES\\ > CAST5 BZIP2 ZLIB ZIP Uncompressed > use-agent > verify-options show-uid-validity > list-options show-uid-validity > cert-digest-algo SHA512 > > During this searching and reading, I found a lot of stuff that was probably > outdated. At least I assume as much because the options in those howtos or > articles just don't exist in my KMail. What all seem to agree upon is the > usagte of pinentry. On my computer only pinentry-tty is installed. In the > ports there is a pinentry-qt, but there does not seem to be a precompiled > package: > > root@falbala:~ # whereis pinentry-qt4 > pinentry-qt4: /usr/ports/security/pinentry-qt4 > root@falbala:~ # pkg install security/pinentry-qt4 > Updating FreeBSD repository catalogue... > FreeBSD repository is up-to-date. > All repositories are up-to-date. > pkg: No packages available to install matching 'security/pinentry-qt4' have > been found in the repositories > > Ok, so I thought I'd just compile it myself. What are the ports for? That did > not go well either: > > root@falbala:/usr/ports/security/pinentry-qt4 # make > ===> pinentry-qt4-0.9.1 does not compile with libc++. > *** Error code 1 > Stop. > make: stopped in /usr/ports/security/pinentry-qt4 > > The gtk2-version complains that I do not have libiconv>=1.14_8 installed. But > since I am pretty much using KMail most of the time (as part of Kontact which > I use together with a Kolab account), the qt4 version is the one of choice - > IMHO. So I did not investigate this any further. > > Then claws came into the picture. I know this client very well and would > probably use it and not KMail, if Kontact didn't have the nice integration of > the calendar and address book for use with Kolab. > > With claws I can't get GnuPG to work either. There are no options to set. > GnuPG should be controlled via a plugin. There don't seem to be any installed. > The GnuPG plugin I cannon find in the ports tree. The Claws Mail website > stated that the required plugin should ship with the client. I installed Claws > as a precompiled package. > > As you can probably imagine, I am a little frustrated right about now, because > the hassle of getting GnuPG to work is getting a bit too big for my taste - > especially since this should be a relatively trivial task. > > Can someone please give me a push in the right direction so I do not have to > torture my search engine any further and read gigabytes of outdated text? For KMail install pinentry-gtk2. For Claws Mail install claws-mail-pgp.