On 28/07/2019 22.05, Oleksii Vilchanskyi wrote:
On 7/28/19 9:28 PM, Carlos E. R. wrote:
On 28/07/2019 20.53, Carlos E. R. wrote:
On 28/07/2019 20.38, Andrei Borzenkov wrote:
28.07.2019 21:31, Carlos E. R. пишет:
I can do more testing to see if it is that, or using dirmngr.conf.
cer-g@Telcontar:~> gpg --list-keys cer-g@Telcontar:~> gpg --recv-keys B533181C6D8D47D5 gpg: key B533181C6D8D47D5: no user ID gpg: Total number processed: 1 cer-g@Telcontar:~> cat .gnupg/dirmngr.conf keyserver hkp://keys.gnupg.net keyserver hkps://keys.openpgp.org cer-g@Telcontar:~> mc .gnupg/
cer-g@Telcontar:~> gpg --list-keys gpg: keybox '/home/cer-g/.gnupg/pubring.kbx' created gpg: /home/cer-g/.gnupg/trustdb.gpg: trustdb created cer-g@Telcontar:~> gpg --recv-keys B533181C6D8D47D5 gpg: key B533181C6D8D47D5: no user ID gpg: Total number processed: 1 cer-g@Telcontar:~> cat .gnupg/dirmngr.conf keyserver hkps://keys.openpgp.org keyserver hkp://keys.gnupg.net cer-g@Telcontar:~>
With no dirmngr.conf and gpg.conf containing:
keyserver hkp://keys.gnupg.net #keyserver http://http-keys.gnupg.net #keyserver mailto:pgp-public-keys@keys.nl.pgp.net
keyserver hkps://keys.openpgp.org
it does not work. With:
keyserver hkps://keys.openpgp.org
keyserver hkp://keys.gnupg.net #keyserver http://http-keys.gnupg.net #keyserver mailto:pgp-public-keys@keys.nl.pgp.net
It works.
'keyserver' should be specified in dirmngr.conf, and only once.
What is the advantage of that file, if it only allows one entry?
To override, use --keyserver <keyserver>. It's that simple. You are over[thinking/testing] the problem.
Using a switch on the command is not workable, if I want enigmail to work.
Conclussion:
1) this server "hkps://keys.openpgp.org" does not work, at least on Leap 15.0
...which I wrote 4 thread messages before, and linked to the upstream merge request that fixes it.
2) file .gnupg/dirmngr.conf does not work.
That simply is not true.
Well, any entry I write there fails: cer-g@Telcontar:~/.gnupg> gpg --list-keys gpg: keybox '/home/cer-g/.gnupg/pubring.kbx' created gpg: /home/cer-g/.gnupg/trustdb.gpg: trustdb created cer-g@Telcontar:~/.gnupg> gpg --recv-keys B533181C6D8D47D5 gpg: key B533181C6D8D47D5: no user ID gpg: Total number processed: 1 cer-g@Telcontar:~/.gnupg> cat dirmngr.conf keyserver hkps://keys.openpgp.org cer-g@Telcontar:~/.gnupg> cer-g@Telcontar:~/.gnupg> gpg --list-keys gpg: keybox '/home/cer-g/.gnupg/pubring.kbx' created gpg: /home/cer-g/.gnupg/trustdb.gpg: trustdb created cer-g@Telcontar:~/.gnupg> gpg --recv-keys B533181C6D8D47D5 gpg: key B533181C6D8D47D5: no user ID gpg: Total number processed: 1 cer-g@Telcontar:~/.gnupg> cat dirmngr.conf keyserver hkp://keys.gnupg.net cer-g@Telcontar:~/.gnupg> Whereas on gpg.conf they work. At least one of the servers: cer-g@Telcontar:~/.gnupg> cat /etc/sysconfig/SuSEfirewall2 | egrep -v "^[[:space:]]*$|^#" | grep keyserver cer-g@Telcontar:~/.gnupg> cat gpg.conf | egrep -v "^[[:space:]]*$|^#" | grep keyserver keyserver hkp://keys.gnupg.net cer-g@Telcontar:~/.gnupg> cat dirmngr.conf #keyserver hkp://keys.gnupg.net cer-g@Telcontar:~/.gnupg> gpg --list-keys gpg: keybox '/home/cer-g/.gnupg/pubring.kbx' created gpg: /home/cer-g/.gnupg/trustdb.gpg: trustdb created cer-g@Telcontar:~/.gnupg> gpg --recv-keys B533181C6D8D47D5 gpg: key B533181C6D8D47D5: 27 signatures not checked due to missing keys gpg: key B533181C6D8D47D5: public key "Carlos E. R. (cer) <robin.listas@...>" imported gpg: no ultimately trusted keys found gpg: Total number processed: 1 gpg: imported: 1 cer-g@Telcontar:~/.gnupg> For all the tests, I delete pubring.kbx and trustdb.gpg, then use "gpg --list-keys" to initialize them. -- Cheers / Saludos, Carlos E. R. (from 15.0 x86_64 at Telcontar)