[rt-users] Is there a howto on setting up GPG w/ RT-3.8.0?

Mon Aug 25 12:01:08 EDT 2008

Okay I have some progress but more questions.

When I use only this line for my GPG options I get the options in my  
queue to 'sign by default' and 'encrypt by default'.

Set(%GnuPG, Enable=>1, OutgoingMessagesFormat=>RFC,  
EncryptDataInDb=>0,);

What I did was as root , create a gpg key using the email address that  
I am sending in to. As for the name I didn't k now what to put so I  
used the name prior to the @ of the email address.

But when I send tickets in that are encrypted, it doesn't send  
responses because of these errors.

[Mon Aug 25 15:51:29 2008] [info]:  
<rt-3.8.0-20903-1219679489-1116.31-3-0@<removed>> #31/370 - Scrip 3 On  
Create Autoreply To Requestors (/usr/local/rt-3.8.0/bin/../lib/RT/ 
Action/SendEmail.pm:302)
[Mon Aug 25 15:51:30 2008] [warning]: gpg: WARNING: unsafe ownership  
on homedir "/usr/local/rt-3.8.0/var/data/gpg" (/usr/local/rt-3.8.0/ 
bin/../lib/RT/Crypt/GnuPG.pm:546) ** This shows up after I made the  
directory writable as I was getting errors that it couldn't create  
temp files **
[Mon Aug 25 15:51:30 2008] [error]: gpg: keyring `/usr/local/rt-3.8.0/ 
var/data/gpg/secring.gpg' created
gpg: keyring `/usr/local/rt-3.8.0/var/data/gpg/pubring.gpg' created
gpg: no default secret key: secret key not available
gpg: [stdin]: sign+encrypt failed: secret key not available (/usr/ 
local/rt-3.8.0/bin/../lib/RT/Crypt/GnuPG.pm:547)
[Mon Aug 25 15:51:30 2008] [info]:  
<rt-3.8.0-20903-1219679489-268.31-4-0@<removed>> #31/370 - Scrip 4 On  
Create Notify AdminCcs (/usr/local/rt-3.8.0/bin/../lib/RT/Action/ 
SendEmail.pm:302)
[Mon Aug 25 15:51:30 2008] [info]:  
<rt-3.8.0-20903-1219679489-268.31-4-0@<removed>> No recipients found.  
Not sending. (/usr/local/rt-3.8.0/bin/../lib/RT/Interface/Email.pm:337)
[Mon Aug 25 15:51:30 2008] [info]: Ticket 31 created in queue  
'General' by charlier@<removed>.com (/usr/local/rt-3.8.0/bin/../lib/RT/ 
Ticket_Overlay.pm:659)

But when I try to offer RT the creds it may need to put the passphrase  
in, it no longer gives any encrypt options. This is what I'm using for  
that.

Set(%GnuPGOptions, homedir=>'/usr/local/rt-3.8.0/var/data/gpg','-- 
passphrase'=>'passphrase secret');

Any advise here?

Charlie

On Aug 23, 2008, at 12:16 AM, Ruslan Zakirov wrote:

> On Sat, Aug 23, 2008 at 5:11 AM, Mario A. del Riego
> <delriego at fing.edu.uy> wrote:
>> -----BEGIN PGP SIGNED MESSAGE-----
>> Hash: SHA1
>>
>> Ruslan Zakirov escribió:
>> |> You don't have to generate keys for users. Either you can import  
>> his
>> |> key or use keyservers.
>>
>> Ok, you dont have to... but when 'myuser' sign or encrypt a comment  
>> on a
>> ticket, How RT get his private key? I can't understand that...
> content is encrypted using recipients' public keys. content is signed
> using queues' private keys.
>
>>
>> (I guess when you say 'import his key' is his public key)
>>
>> Thanks.
>>
>> - --
>> A\C Mario A. del Riego
>> Unidad de Recursos Informáticos
>> Facultad de Ingeniería - UdelaR
>> "La Universidad no puede ser un depósito indiferente de sueños
>> y frustraciones personales..." Dr. G. Perera
>> -----BEGIN PGP SIGNATURE-----
>> Version: GnuPG v1.4.9 (GNU/Linux)
>>
>> iEYEARECAAYFAkivY6sACgkQB6f+NSnOywSgugCfahvdUIHtHdGw9koVMAvLxETX
>> Hh4AoNYs/Cmvbn55nXVHSQY2MwfJW9MC
>> =h/OP
>> -----END PGP SIGNATURE-----
>> _______________________________________________
>> http://lists.bestpractical.com/cgi-bin/mailman/listinfo/rt-users
>>
>> Community help: http://wiki.bestpractical.com
>> Commercial support: sales at bestpractical.com
>>
>>
>> Discover RT's hidden secrets with RT Essentials from O'Reilly Media.
>> Buy a copy at http://rtbook.bestpractical.com
>
>
>
> -- 
> Best regards, Ruslan.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.bestpractical.com/pipermail/rt-users/attachments/20080825/90d31922/attachment.htm>