|
List Info
Thread: "unsafe permissions on configuration file"???
|
|
| "unsafe permissions on
configuration file"??? |
|
2006-10-10 15:23:28 |
|
On another list, I got the following message:
=
I've transitioned to using an OpenPGP smartcard and therefore my public
key has been updated. Please find it attached to this mail.
=
There was a xxxxx.asc attachment, I clicked on it, got "Import Open
PGPKey" and it was a success, as I got the following message:
==
The key(s) were successfully imported
gpg: WARNING: unsafe permissions on configuration file
`/home/nhklein/.gnupg/gpg.conf'
gpg: WARNING: unsafe enclosing directory permissions on configuration
file `/home/nhklein/.gnupg/gpg.conf'
gpg: key 7924FA73: public key "Shane Martin Coughlan
< shane%40shaneland.co.uk">shane shaneland.co.uk>" imported
gpg: Total number processed: 1
gpg: imported: 1 (RSA: 1)
gpg: 3 marginal(s) needed, 1 complete(s) needed, PGP trust model
gpg: depth: 0 valid: 1 signed: 15 trust: 0-, 0q, 0n, 0m, 0f, 1u
gpg: depth: 1 valid: 15 signed: 1 trust: 15-, 0q, 0n, 0m, 0f, 0u
==
But what are these warnings? - I am fairly new to use Linux and OpenPGP
- Any advice is welcome.
Norbert
__._,_.___
.
__,_._,___
|
| "unsafe permissions on
configuration file"??? |
|
2006-10-10 19:09:45 |
|
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Norbert Klein wrote:
> On another list, I got the following message:
>
> =
> I've transitioned to using an OpenPGP smartcard and therefore my public
> key has been updated. Please find it attached to this mail.
>; =
>
> There was a xxxxx.asc attachment, I clicked on it, got "Import Open
> PGPKey" and it was a success, as I got the following message:
>
> ==
> The key(s) were successfully imported
>
> gpg: WARNING: unsafe permissions on configuration file
> `/home/nhklein/.gnupg/gpg.conf'
> gpg: WARNING: unsafe enclosing directory permissions on configuration
> file `/home/nhklein/.gnupg/gpg.conf'
> gpg: key 7924FA73: public key "Shane Martin Coughlan
> < shane%40shaneland.co.uk">shaneshaneland.co.uk>" imported
> gpg: Total number processed: 1
> gpg: imported: 1 (RSA: 1)
> gpg: 3 marginal(s) needed, 1 complete(s) needed, PGP trust model
>; gpg: depth: 0 valid: 1 signed: 15 trust: 0-, 0q, 0n, 0m, 0f, 1u
> gpg: depth: 1 valid: 15 signed: 1 trust: 15-, 0q, 0n, 0m, 0f, 0u
> ==
>
> But what are these warnings? - I am fairly new to use Linux and OpenPGP
> - Any advice is welcome.
>
> Norbert
Condensed short version response:
Unix file permissions have three levels of granularity: owner, group, & world.
GnuPG is complaining that the permissions on the GnuPG home directory, ~/.gnupg,
give group and world access. If you run the command 'ls -ld ./gnupg' the
permissions are displayed in the leftmost columns. GnuPG is complaining because
it likely sees permissions similar to (from a Cygwin install)
$ ls -ld .gnupg
drwxr-xr-x+ 3 jpclizbe Administrators 0 Oct 5 23:02 .gnupg
which give group and world users permission to list the contents of GnuPG's home
directory.
The command 'chmod 700 .gnupg' will correct the problem.
- --
John P. Clizbe Inet: John (a) Mozilla-Enigmail.org
You can't spell fiasco without SCO. PGP/GPG KeyID: 0x608D2A10/0x18BB373A
"what's the key to success?" / "two words: good decisions."
"what's the key to good decisions?" / "one word: experience."
"how do i get experience?" / "two words: bad decisions."
"Just how do the residents of Haiku, Hawai'i hold conversations?"
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6-svn-4290-2006-10-06 (Windows PIII)
Comment: When cryptography is outlawed, b25seSBvdXRsYXdzIHdpbGwgdXNlIG
Comment: Be part of the £33t ECHELON -- Use Strong Encryption.
Comment: It's YOUR right - for the time being.
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iQCVAwUBRSvv9r4fmBEYuzc6AQKnZwP/duOmFDQHXh6UIed9wpR/DojZuubodbn6
zgK0feINZax7CByqDnhs02ddOPamViyD4i2HTuUEYi7IOYCIiWt7DEpjI5yUHBUb
VNIvKm2xO+TfJcIoEWftL209suoOtKqy5sD2P/0Y�3;qBaJUuE0EDytQZf0fY/ZNIv
5DfaeqSPJb6IPwMFAUUr7/kdBKxKYI0qEBECODwAoJPe7YkJ6fUfCJGo6xzNcCMY
JzlxAJ0YwCrEXtcIryU/69kkWZGoPpms6w==
=Qzb3
-----END PGP SIGNATURE-----
__._,_.___
.
__,_._,___
|
| "unsafe permissions on
configuration file"??? |
|
2006-10-14 01:51:13 |
|
try ghost surf its free and easy to use ghost surf .com
Norbert Klein < nhklein%40gmx.net">nhkleingmx.net> wrote: On another list, I got the following message:
=
I've transitioned to using an OpenPGP smartcard and therefore my public
key has been updated. Please find it attached to this mail.
=
There was a xxxxx.asc attachment, I clicked on it, got "Import Open
PGPKey" and it was a success, as I got the following message:
==
The key(s) were successfully imported
gpg: WARNING: unsafe permissions on configuration file
`/home/nhklein/.gnupg/gpg.conf'
gpg: WARNING: unsafe enclosing directory permissions on configuration
file `/home/nhklein/.gnupg/gpg.conf'
gpg: key 7924FA73: public key "Shane Martin Coughlan
< shane%40shaneland.co.uk">shaneshaneland.co.uk>" imported
gpg: Total number processed: 1
gpg: imported: 1 (RSA: 1)
gpg: 3 marginal(s) needed, 1 complete(s) needed, PGP trust model
gpg: depth: 0 valid: 1 signed: 15 trust: 0-, 0q, 0n, 0m, 0f, 1u
gpg: depth: 1 valid: 15 signed: 1 trust: 15-, 0q, 0n, 0m, 0f, 0u
==
But what are these warnings? - I am fairly new to use Linux and OpenPGP
- Any advice is welcome.
Norbert
---------------------------------
Yahoo! Messenger with Voice. Make PC-to-Phone Calls to the US (and 30+ countries) for 2¢/min or less.
[Non-text portions of this message have been removed]
__._,_.___
.
__,_._,___
|
[1-3]
|
|