Debian bug report logs - #958
pgp PubRing SecRing and RandSeed don't work

Message received at debian-bugs-done:

From cus.cam.ac.uk!iwj10 Mon Jun 12 07:00:54 1995
Return-Path: <iwj10@cus.cam.ac.uk>
Received: from pixar.com by mongo.pixar.com with smtp
	(Smail3.1.28.1 #15) id m0sLA2w-0006H0C; Mon, 12 Jun 95 07:00 PDT
Received: from bootes.cus.cam.ac.uk by pixar.com with SMTP id AA29453
  (5.67b/IDA-1.5 for debian-bugs-done-pipe@mongo.pixar.com); Mon, 12 Jun 1995 06:59:26 -0700
Received: by bootes.cus.cam.ac.uk 
	(Smail-3.1.29.0 #36) id m0sLA2N-000C11C; Mon, 12 Jun 95 15:00 BST
Received: by chiark
	id <m0sKycX-0000YJZ@chiark.al.cl.cam.ac.uk>
	(Debian /\oo/\ Smail3.1.29.1 #29.32); Mon, 12 Jun 95 02:48 BST
Message-Id: <m0sKycX-0000YJZ@chiark.al.cl.cam.ac.uk>
Date: Mon, 12 Jun 95 02:48 BST
From: iwj10@cus.cam.ac.uk (Ian Jackson)
To: andrew@kryten.it.com.au (Andrew Howell),
        Debian developers list <debian-devel@pixar.com>
Cc: debian-bugs-done@pixar.com
Subject: Re: Bug#958: pgp PubRing SecRing and RandSeed don't work
In-Reply-To: <m0sKW49-000AdAC@kryten.it.com.au>
References: <m0sKPq3-0000XfZ@chiark.al.cl.cam.ac.uk>
	<m0sKW49-000AdAC@kryten.it.com.au>

Andrew Howell writes:
> PubRing = "$HOME/.pgp/pubring.pgp"
> SecRing = "$HOME/.pgp/secring.pgp"
> RandSeed = "$HOME/.pgp/randseed.bin"
> 
> There are the lines from my /etc/pgp-i.conf file. Do you actually use
> them. I was a littled confused with the package as you didn't leave
> any ideas on how you would expect it to be setup. Or at least I couldn't
> find any. How do you set yours up.

I have my own config.txt and so on.  You are supposed to be able to
rely on the existence of the global config.txt and only override the
options you don't like.  It seems, however, that the PGP I distributed
doesn't read the system-wide configuration file.

> > > I had PGPPATH set to /usr/lib/pgp-i/

I've tried the lines above in various config files, with PGPPATH set
to /usr/lib/pgp-i/, and everything did what I would have expected it
to.

Also, I've discovered that PGP doesn't use the PubRing, SecRing or
RandSeed parameters from the global config file - it overrides them.
This is to be construed as a feature.

Ian.

Message received at debian-bugs:

From kryten.it.com.au!andrew Sat Jun 10 12:20:00 1995
Return-Path: <andrew@kryten.it.com.au>
Received: from pixar.com by mongo.pixar.com with smtp
	(Smail3.1.28.1 #15) id m0sKW4e-0006H0C; Sat, 10 Jun 95 12:20 PDT
Received: from kryten.it.com.au by pixar.com with SMTP id AA27628
  (5.67b/IDA-1.5 for debian-bugs-pipe@mongo.pixar.com); Sat, 10 Jun 1995 12:18:26 -0700
Received: by kryten.it.com.au
	id m0sKW49-000AdAC
	(Debian /\oo/\ Smail3.1.29.1 #29.31); Sun, 11 Jun 95 03:19 WST
Message-Id: <m0sKW49-000AdAC@kryten.it.com.au>
From: andrew@kryten.it.com.au (Andrew Howell)
Subject: Re: Bug#958: pgp PubRing SecRing and RandSeed don't work
To: iwj10@cus.cam.ac.uk, debian-bugs@pixar.com
Date: Sun, 11 Jun 1995 03:19:28 +0800 (WST)
In-Reply-To: <m0sKPq3-0000XfZ@chiark.al.cl.cam.ac.uk> from "Ian Jackson" at Jun 10, 95 01:40:00 pm
X-Mailer: ELM [version 2.4 PL24 PGP2]
Content-Type: text
Content-Length: 2889      

> Andrew Howell writes ("Bug#958: pgp PubRing SecRing and RandSeed don't work"):
> > [kryten:/home/andrew] pgp -kv
> > config.txt: unknown keyword: "PubRing"
> > config.txt: unknown keyword: "SecRing"
> > config.txt: unknown keyword: "RandSeed"
> > /usr/lib/pgp-i/config.txt: Maximum level of 3 error(s) detected
> >
> > When I uncommented these settings in /etc/pgp-i.conf so I could have
> > my public and secret rings in ~/.pgp but not have to put a copy of
> > all the other pgp files there as welli, it didn't like it.
> 
> It works for me.  You haven't actually sent me a copy of your
> /etc/pgp-i.conf, but I suspect you've made a syntax error - for
> example, missing out the double quotes that should surround the value.

PubRing = "$HOME/.pgp/pubring.pgp"
SecRing = "$HOME/.pgp/secring.pgp"
RandSeed = "$HOME/.pgp/randseed.bin"

There are the lines from my /etc/pgp-i.conf file. Do you actually use
them. I was a littled confused with the package as you didn't leave
any ideas on how you would expect it to be setup. Or at least I couldn't
find any. How do you set yours up.

> > I had PGPPATH set to /usr/lib/pgp-i/
> 
> That seems to me to be an unwise thing to do, at the very least.
> 
> PGPPATH is supposed to be the directory containing your *private* PGP
> files, which are not system-wide.  I'd be inclined to say that the
> fact that PGP is willing to accept pubring, secring and randseed
> keywords in the system-wide configuration file is something of a
> misfeature - people shouldn't do that.

The whole point of me setting PubRing SecRing and RandSeed to another place
was to have them in a non public place as you can see above.
Though PGP doesn't seem to be very willing at all ;) It doesn't seem to know
the existance of the keywords....
Unwise, I don't think so, makes good sense to me.
 
> > For now I guess I'll set PGPPATH to ~/.pgp and makes links in that
> > directory back to the files in /usr/lib/pgp-i/ so I don't need
> > unneccesary copies of the files.
> 
> Unnecessary copies of which files ?  config.txt ?  It's only 4.3Kb !
> The other stuff (keyrings and so forth) should be in your home
> directory.

*shrug* It all adds up. I was looking for a way for every user to not
need a config.txt file unless they actually wanted to change something.
My previous non-debian pgp setup was just a .pgp directory in $HOME
with all the files in it, this seemed wasteful. If that's the way it's
meant to be, so be it.

Andrew

-----------------------------------------------------------------------
Dehydration - 34%, Recollection of previous evening - 2%, embarrassment
factor - 91%.  Advise repair schedule:- off line for 36 hours, re-boot
startup disk, and replace head - wow, what a night!
                -- Kryten in Red Dwarf `The Last Day'

Andrew Howell				               andrew@it.com.au 
Perth, Western Australia		      howellaa@cs.curtin.edu.au 

Message received at debian-bugs:

From cus.cam.ac.uk!iwj10 Sat Jun 10 11:59:08 1995
Return-Path: <iwj10@cus.cam.ac.uk>
Received: from pixar.com by mongo.pixar.com with smtp
	(Smail3.1.28.1 #15) id m0sKVkS-0005z9C; Sat, 10 Jun 95 11:59 PDT
Received: from bootes.cus.cam.ac.uk by pixar.com with SMTP id AA26598
  (5.67b/IDA-1.5 for debian-bugs-pipe@mongo.pixar.com); Sat, 10 Jun 1995 11:57:41 -0700
Received: by bootes.cus.cam.ac.uk 
	(Smail-3.1.29.0 #36) id m0sKVkC-000BzoC; Sat, 10 Jun 95 19:58 BST
Received: by chiark
	id <m0sKPq3-0000XfZ@chiark.al.cl.cam.ac.uk>
	(Debian /\oo/\ Smail3.1.29.1 #29.31); Sat, 10 Jun 95 13:40 BST
Message-Id: <m0sKPq3-0000XfZ@chiark.al.cl.cam.ac.uk>
Date: Sat, 10 Jun 95 13:40 BST
From: iwj10@cus.cam.ac.uk (Ian Jackson)
To: debian-bugs@pixar.com
Subject: Re: Bug#958: pgp PubRing SecRing and RandSeed don't work

Andrew Howell writes ("Bug#958: pgp PubRing SecRing and RandSeed don't work"):
> [kryten:/home/andrew] pgp -kv
> config.txt: unknown keyword: "PubRing"
> config.txt: unknown keyword: "SecRing"
> config.txt: unknown keyword: "RandSeed"
> /usr/lib/pgp-i/config.txt: Maximum level of 3 error(s) detected
> 
> When I uncommented these settings in /etc/pgp-i.conf so I could have
> my public and secret rings in ~/.pgp but not have to put a copy of
> all the other pgp files there as welli, it didn't like it.

It works for me.  You haven't actually sent me a copy of your
/etc/pgp-i.conf, but I suspect you've made a syntax error - for
example, missing out the double quotes that should surround the value.

> I had PGPPATH set to /usr/lib/pgp-i/

That seems to me to be an unwise thing to do, at the very least.

PGPPATH is supposed to be the directory containing your *private* PGP
files, which are not system-wide.  I'd be inclined to say that the
fact that PGP is willing to accept pubring, secring and randseed
keywords in the system-wide configuration file is something of a
misfeature - people shouldn't do that.

> For now I guess I'll set PGPPATH to ~/.pgp and makes links in that
> directory back to the files in /usr/lib/pgp-i/ so I don't need
> unneccesary copies of the files.

Unnecessary copies of which files ?  config.txt ?  It's only 4.3Kb !
The other stuff (keyrings and so forth) should be in your home
directory.

Ian.

Message received at debian-bugs:

From kryten.it.com.au!andrew Wed Jun  7 11:29:37 1995
Return-Path: <andrew@kryten.it.com.au>
Received: from pixar.com by mongo.pixar.com with smtp
	(Smail3.1.28.1 #15) id m0sJPrF-0005NiC; Wed, 7 Jun 95 11:29 PDT
Received: from kryten.it.com.au by pixar.com with SMTP id AA26648
  (5.67b/IDA-1.5 for debian-bugs-pipe@mongo.pixar.com); Wed, 7 Jun 1995 11:28:03 -0700
Received: by kryten.it.com.au
	id m0sJPr2-000AdQC
	(Debian /\oo/\ Smail3.1.29.1 #29.31); Thu, 8 Jun 95 02:29 WST
Message-Id: <m0sJPr2-000AdQC@kryten.it.com.au>
From: andrew@kryten.it.com.au (Andrew Howell)
Subject: pgp PubRing SecRing and RandSeed don't work
To: debian-bugs@pixar.com
Date: Thu, 8 Jun 1995 02:29:24 +0800 (WST)
X-Mailer: ELM [version 2.4 PL24 PGP2]
Content-Type: text
Content-Length: 1084      

Package: pgp-i
Version: 2.6.2i-1

[kryten:/home/andrew] pgp -kv
config.txt: unknown keyword: "PubRing"
config.txt: unknown keyword: "SecRing"
config.txt: unknown keyword: "RandSeed"
/usr/lib/pgp-i/config.txt: Maximum level of 3 error(s) detected

When I uncommented these settings in /etc/pgp-i.conf so I could have
my public and secret rings in ~/.pgp but not have to put a copy of
all the other pgp files there as welli, it didn't like it.

I had PGPPATH set to /usr/lib/pgp-i/

For now I guess I'll set PGPPATH to ~/.pgp and makes links in that
directory back to the files in /usr/lib/pgp-i/ so I don't need
unneccesary copies of the files.

Andrew

-----------------------------------------------------------------------
Dehydration - 34%, Recollection of previous evening - 2%, embarrassment
factor - 91%.  Advise repair schedule:- off line for 36 hours, re-boot
startup disk, and replace head - wow, what a night!
                -- Kryten in Red Dwarf `The Last Day'

Andrew Howell				               andrew@it.com.au 
Perth, Western Australia		      howellaa@cs.curtin.edu.au