Silk Road forums
Support => Technical support => Topic started by: Califinest on September 24, 2012, 10:19 pm
-
Ok whoever helps me with this i'll ship them a gram of weed or kief on me or a quarter gram of DMT...
I am running tails 13.1 and have my keys backed up on a flash drive... whenevr i log onto tails i merge all my .gnupg files onto amnesias .gnupg folder.. this was working for weeks up until today.. whenever i try to decrypt i am getting a error message ....
"GNUPG DECRYPTION/ VERIFICATION ERROR
GPG: Encypted with RSA key id: **********
GPG: Decryption fails : Secret Key not available.."
This is really starting to become a nuessance i have orders to put into trnasit and i cant even decrypt their adresses... some please help!!! itll be greatly appreciated!
-
I am not familiar with tails but I can do just about anything in linux.
So, start by opening a terminal and doing a
cd .gnupg
df -h .
It should display the mount information for that directory. Mine displays a /dev/loop that shows it is part of an encrypted partition.
I would also do a long listing
ls -hal
This will list the files and file sizes. Check the secring.gpg that is the file where your key is stored. It should be larger than 0 ;)
The error is that the gnupg software can not see or access the secret ring file. Secret ring files are always modded to 400 (read/write by owner only) So I would also check and make sure the user you login as is the owner of the ring.
Example of ls -hal output
-rw-------. 1 james link 8000 Jun 01 00:32 secring.gpg
where the word james is the user and the word link is the group info.
-
ok so secring is mounted at 4.8k .. i cant find out how to get the -hal output.
-
just type the command
ls -hal
it will give a directory listing.
you may want to type
whoami
to have it list the name you are logged in as and compare it to the user field of the directory listing.
-
amnesia@amnesia:~/.gnupg$ ls -hal
total 60K
drwxr-xr-x 2 amnesia amnesia 160 Sep 24 23:16 .
drwxr-xr-x 24 amnesia amnesia 620 Sep 24 23:15 ..
-rw-r--r-- 1 amnesia amnesia 280 Sep 18 15:46 gpg.conf
-rw-r--r-- 1 amnesia amnesia 17K Sep 18 15:57 pubring.gpg
-rw-r--r-- 1 amnesia amnesia 17K Sep 18 15:57 pubring.gpg~
-rw-r--r-- 1 amnesia amnesia 600 Sep 18 15:57 random_seed
-rw-r--r-- 1 amnesia amnesia 4.8K Sep 18 15:57 secring.gpg
-rw-r--r-- 1 amnesia amnesia 1.3K Sep 18 15:57 trustdb.gpg
amnesia@amnesia:~/.gnupg$ whoami
amnesia
amnesia@amnesia:~/.gnupg$
-
This is wrong
drwxr-xr-x 2 amnesia amnesia 160 Sep 24 23:16 .
and this is wrong
-rw-r--r-- 1 amnesia amnesia 280 Sep 18 15:46 gpg.conf
-rw-r--r-- 1 amnesia amnesia 17K Sep 18 15:57 pubring.gpg
-rw-r--r-- 1 amnesia amnesia 17K Sep 18 15:57 pubring.gpg~
-rw-r--r-- 1 amnesia amnesia 600 Sep 18 15:57 random_seed
-rw-r--r-- 1 amnesia amnesia 4.8K Sep 18 15:57 secring.gpg
-rw-r--r-- 1 amnesia amnesia 1.3K Sep 18 15:57 trustdb.gpg
The permissions are not secure enough for gnupg
Try doing the following two commands
chmod 600 *
chmod 700 .
That will set the permissions so that only your user can access the directory and only your user will be able to read and write the keys.
I bet it works after that.
-
i just did, and nothing happened.
-
do an
ls -hal
in the directory. It should look like this
drwx------- 2 amnesia amnesia 160 Sep 24 23:16 .
drwxr-xr-x 24 amnesia amnesia 620 Sep 24 23:15 ..
-rw------- 1 amnesia amnesia 280 Sep 18 15:46 gpg.conf
-rw------- 1 amnesia amnesia 17K Sep 18 15:57 pubring.gpg
-rw------- 1 amnesia amnesia 17K Sep 18 15:57 pubring.gpg~
-rw------- 1 amnesia amnesia 600 Sep 18 15:57 random_seed
-rw------- 1 amnesia amnesia 4.8K Sep 18 15:57 secring.gpg
-rw------- 1 amnesia amnesia 1.3K Sep 18 15:57 trustdb.gpg
-
amnesia@amnesia:~/.gnupg$ ls -hal
total 60K
drwx------ 2 amnesia amnesia 160 Sep 25 00:06 .
drwx------ 24 amnesia amnesia 640 Sep 25 00:11 ..
-rw------- 1 amnesia amnesia 280 Sep 18 15:46 gpg.conf
-rw------- 1 amnesia amnesia 18K Sep 25 00:04 pubring.gpg
-rw------- 1 amnesia amnesia 17K Sep 18 15:57 pubring.gpg~
-rw------- 1 amnesia amnesia 600 Sep 25 00:04 random_seed
-rw------- 1 amnesia amnesia 6.6K Sep 25 00:04 secring.gpg
-rw------- 1 amnesia amnesia 1.3K Sep 18 15:57 trustdb.gpg
amnesia@amnesia:~/.gnupg$
-
unfortunatly im still getting the orignal error i started off with :/
-
gnupg should work at this point. If you are using a gui for gpg then restart the gui as a precaution.
you can try doing the following command at the command line
gpg -K
it should list all your private keys. No need to post them just see if it see's your key
-
weird its listing them..but im still gettting the verifcation error when i try to decrypt on the clipboard.. maybe its the clipboard?? is there another way to do this?
-
BTW i appreciate all the help.. id give you good karma if i could..
-
Ok, so GPG is working, the clipboard does not decrypt
have you exited the clipboard and reloaded it? It may read the keys when it loads and may have a bad set in memory
-
ok the error has gone away, now its saying "signing failed, the clipboard could not be signed"/ ive never seen this error.. weird.
-
Try again, that is normally a mistype of your password.
-
it doesnt even bring me to my passphrase login, it just says that..
-
Ok, now I have no clue. I have never seen the tails clipboard or used it to decrypt a message.
You could try logging out and back in. That would reset the user env variables and may work.
-
thanks for you help man.. idk wth the problem is lol.. i logged back on and had to do the chmod 600 * , chmod 700 . , i then tried to decrypt one of my messages, i fucked up on the password two times , and the it started giving me the same ol' verification error.. god damnit lol .. but it bringing me to the password window was progress,because it wouldnt even bring me there before.. but now its not anymore lol
-
Are you sure it is a good message you are trying to decrypt? I have had people sign messages and not send there key. My gpg gui will throw an error about not having the key.
I am at a loss beyond that.
-
ya its doing the same thing for 3 messages.. the only differnece i can see on the error between all three is that one says
"gpg: encrypted with RSA key, **********"
"gpg: encrypted with RSA key,***********"
...
when the other messages only have one " gpg: encrypted with RSA key," thanks for your help anyways.. want me to ship you some dmt?
-
na, I really dont need anything. I just enjoy helping when I can.
-
well thanks i appreciate it! i have couple last questions..
is my pgp key pretty much done then, will i have to make another? or is there another method of decrypting ?
-
You can try installed/using GPA or doing it from the command line
To do it from the command line you will have to use the gpg command and save the encrypted message as a text file.