![](https://seccdn.libravatar.org/avatar/af97f6e32fed39eea38e96afea902e16.jpg?s=120&d=mm&r=g)
On Friday, October 25, 2013 01:01:25 PM John Andersen wrote:
On 10/25/2013 12:39 PM, Ted Byers wrote:
Given that I had never heard of Kmail before yesterday, and I discovered the existance of Kleopatra only this morning, would you be so kind as to give me a pointer to a web page or two that a) describes how to do this right, and b) what key server you're talking about? Is that server supposed to be running on OpenSuse, or is it a server out on the net to which I should point Kleopatra? Well, If Kleopatra is installed, and you installed the help rpms you should be able to find out quite a bit by launching Kelopatra and pressing F1 to bring up the handbook.
It is also available here http://docs.kde.org/development/en/kdepim/kleopatra/index.html
Thanks John, I guess I will be studying this over the weekend. Some of the concepts I have a passing familiarity with, but mostly through studying openssl. At present, I have only two questions for you. First, in making a PKI system, are openssl and GnuPG interoperable? That is, if I generate a client side certificate using OpenSSL, with support for both client authentication and email encryption/signing, would it work well with GnuPG systems (I am thinking of this as being possible via standards like X.509). Or am I way off in terms of hoping for such interoperability? Second,
[snip] Key servers (there are hundreds of them and they all talk to each other) are repositories for digital signatures. When you generate a signature (tied to your email address) you publish that to any key server, and withing a day it gets sent to all of the key servers, so that no matter which key server My computer uses it will find your key. All of this is built into Kleopatra.
OK, but Kleopatra does not seem to be configured by default to use any of these hundreds of servers, or even provide a way to identify the nearest and most useful one (i.e. One that is not too too restrictive in terms of the amount of data that can be retrieved at any one time or how fast the server is). At least, so far, I have not found a way to identify a good server to use. How, then, do I identify a server to use? I am wary of searching for such a server using Google, as I don't know how I'd distinguish a legitimate site from one maintained by bad guys (it is, after all, a question of trust, is it not - how can we know there isn't a bad site out there with bad keys mixed in with good ones, or not connected to the good sites at all - or am I too paranoid). Don't be surprised if I start asking a few dumb questions on the weekend, once I get into this in detail. ;-) Thanks again. Ted -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org