[kdepim-users] kgpg 1.2.2 in kde 3.5.10: keeps nagging about my key

Ingo Klöcker kloecker at kde.org
Sun Dec 6 10:22:34 GMT 2009 

On Sunday 06 December 2009, Dexter Filmore wrote:
> My keys were set to expire today, so I gave them new expiry dates and
> reexported them ("export public keys").
> Still KMail keeps nagging:
>
> One ore more OpenPGP encryption keys or SMIME certs cannot be used
> for encryption. Please change the keys for this identity in the prefs
> dialog.
>
> In the identity prefs, however, I can chose the signature key but the
> encryption key has a red cross thru it - what am I doing wrong?

You have changed the expiry date of your primary key (the one that is 
used for signing keys and messages), but not the expiry date of the 
subkey used for encryption. I have updated your key and get the 
following output when running gpg in Konsole (I put some comments 
inline marked with ##):

# gpg --list-sigs --with-colon 0x9BA4DD324F56850D
tru::0:1260094115:1262261972:3:1:5
pub:-:1024:17:9BA4DD324F56850D:2008-12-05:2010-12-05::-:Dexter Filmore 
<dexter.filmore at gmx.de>::scSC:
## This is your primary key. It was created 2008-12-05 and expires 
2010-12-05.
sig:::17:9BA4DD324F56850D:2008-12-05::::Dexter Filmore 
<dexter.filmore at gmx.de>:13x:
## This is the original signature that bound your User ID to your 
(primary) key.
sig:::17:E843F969028D9B44:2009-12-05::::[User ID not found]:10x:
## This is a signature from another person.
sig:::17:9BA4DD324F56850D:2009-11-23::::Dexter Filmore 
<dexter.filmore at gmx.de>:13x:
## This is the signature that extends the expiration date of your 
primary key (or, more precisely, the expiration date of your User ID).
sub:e:2048:16:50964CE729972987:2008-12-05:2009-12-05:::::e:
## This is the encryption subkey. It was created 2008-12-05 and expired 
2009-12-05.
sig:::17:9BA4DD324F56850D:2008-12-05::::Dexter Filmore 
<dexter.filmore at gmx.de>:18x:
## This is the original signature that bound the subkey to your 
(primary) key.


To fix the problem you have to change the expiration date of the 
encryption subkey.

IMO this is a usability bug in KGpg. It should ask the user whether he 
wants to change the expiration date of the whole key (including all 
subkeys) or just the expiration date of a specific part of the key.


Regards,
Ingo
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 197 bytes
Desc: This is a digitally signed message part.
URL: <http://mail.kde.org/pipermail/kdepim-users/attachments/20091206/d143e151/attachment.sig>
-------------- next part --------------
_______________________________________________
KDE PIM users mailing list
kdepim-users at kde.org
https://mail.kde.org/mailman/listinfo/kdepim-users

More information about the kdepim-users mailing list