Hi
I had configured the OTRS version 3.0.4 on CentOS ver 5.5 with PGP enabled.
Installed and configured GnuPG with the otrs home directory , private key ID & passphrase on the sub group Crypt::PGP
PGP:Options : ( /opt/otrs/.gnupg/ --batch --no-tty --yes )
Imported a few users' public keys and on the PGP management the status for all were reported as "Good"
However I run into the following error when I tried to send out an encrypted or signed email out from OTRS, the email was sent but cannot be encrypted or signed.
OTRS-CGI-10[6274]: [Error][Kernel::System::Crypt::PGP::Crypt][Line:104]: Can't crypt with Key B97A5255: gpg: WARNING: unsafe ownership on homedir `/opt/otrs/.gnupg/' !
or
OTRS-CGI-10[6271]: [Error][Kernel::System::Crypt::PGP::Sign][Line:220]: Can't sign with Key 0D5162F5: gpg: WARNING: unsafe ownership on homedir `/opt/otrs/.gnupg/' !
Encountered error receiving encrypted email on OTRS mailbox; the email was received but it appear encrypted and can't decrypt it.
No error is written to the log.
The only thing that is working around PGP is when I sent a signed email from one of user with key imported into the system keyring.
The system is able to report it as a good Signature. no issue as it working fine.
What could have gone wrong ?
Anyone encounter similar error ?
Please help
Thanks
Regards
xiaob
Error in PGP : Cannot sign or encrypt
Moderator: crythias
-
crythias
- Moderator
- Posts: 10170
- Joined: 04 May 2010, 18:38
- Znuny Version: 5.0.x
- Location: SouthWest Florida, USA
- Contact:
Re: Error in PGP : Cannot sign or encrypt
http://www.google.com/search?sourceid=c ... on+homedir
First result: http://lists.gnupg.org/pipermail/gnupg- ... 20342.html
First result: http://lists.gnupg.org/pipermail/gnupg- ... 20342.html
OTRS 6.0.x (private/testing/public) on Linux with MySQL database.
Please edit your signature to include your OTRS version, Operating System, and database type.
Click Subscribe Topic below to get notifications. Consider amending your topic title to include [SOLVED] if it is so.
Need help? Before you ask
Please edit your signature to include your OTRS version, Operating System, and database type.
Click Subscribe Topic below to get notifications. Consider amending your topic title to include [SOLVED] if it is so.
Need help? Before you ask
Re: Error in PGP : Cannot sign or encrypt
Hi Crythias
Thanks for your reply.
My issue is not with the permission on the gnupg directory.
My main issue is I cannot encrypt or sign my email .
Can you help ?
Thanks
xiaob
Thanks for your reply.
My issue is not with the permission on the gnupg directory.
My main issue is I cannot encrypt or sign my email .
Can you help ?
Thanks
xiaob
-
crythias
- Moderator
- Posts: 10170
- Joined: 04 May 2010, 18:38
- Znuny Version: 5.0.x
- Location: SouthWest Florida, USA
- Contact:
Re: Error in PGP : Cannot sign or encrypt
I'm sorry. I cannot help. The error message you gave relates to poor permissions. In a similar vein, I have encountered ssh communication (authorized keys, for instance) will (could) fail with bad permissions. Certainly, that analogy may not apply to pgp/gpg, so I regret I can't give you more assistance.
OTRS 6.0.x (private/testing/public) on Linux with MySQL database.
Please edit your signature to include your OTRS version, Operating System, and database type.
Click Subscribe Topic below to get notifications. Consider amending your topic title to include [SOLVED] if it is so.
Need help? Before you ask
Please edit your signature to include your OTRS version, Operating System, and database type.
Click Subscribe Topic below to get notifications. Consider amending your topic title to include [SOLVED] if it is so.
Need help? Before you ask
Re: Error in PGP : Cannot sign or encrypt
Please read the error message carefully: WARNING: unsafe ownership on homedir `/opt/otrs/.gnupg/' !
So like Crytias already wrote the permissions for the directory are wrong!
So like Crytias already wrote the permissions for the directory are wrong!
"Production": OTRS™ 8, OTRS™ 7, STORM powered by OTRS
"Testing": ((OTRS Community Edition)) and git Master
Never change Defaults.pm! :: Blog
Professional Services:: http://www.otrs.com :: enjoy@otrs.com
"Testing": ((OTRS Community Edition)) and git Master
Never change Defaults.pm! :: Blog
Professional Services:: http://www.otrs.com :: enjoy@otrs.com