Avatar of phishman1000
phishman1000 asked on

GPG Decrypt errors

hello experts,

new to PGP and GPG, i have cleint that we PGP encrypt and add a signature and we are still getting an "invalid signature " while decrypting
 the finger print ID matches and sent the file Ascii Armor on/off
signed and unsigned still no progress
question can this be decrypted without the signature added? i was told yes and weather we add or don't add the signature should not make a difference the file still should decrypt
please help
TIA
Phishman out


md: /mydomain/bin/gpgdecrypt -f 'TARJ295B.BALANCE.PGP' 'TARJ295B.BALANCE'
error: status 26112 returned by: /mydomain/bin/gpgdecrypt -f 'TARJ295B.BALANCE.PGP' 'TARJ295B.BALANCE'
debug:     gpg: encrypted with 2048-bit ELG-E key, ID XXXXXXXX, created
2008-11-04
debug:           "UXXXFTP <uxxxftp@my_domain.com>"
debug:     gpg: WARNING: message was not integrity protected
debug:     ## no valid signature.
error: TARJ295B.BALANCE.PGP: conversion command failed
debug: Quota:        /var/ndm       56          0        0

Open in new window

Unix OSEncryption

Avatar of undefined
Last Comment
gheist

8/22/2022 - Mon
ASKER CERTIFIED SOLUTION
gheist

Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
See how we're fighting big data
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question
ASKER
phishman1000

gheist,
thanks for the response!
Key XXXXXXXXX was in the clients log trying to decrypt a file i encrypted using thier public key
i verified that Key XXXXXXX  matched the finger print when i received the clients public key with PGP desktop
i can try redo of the key exchange unfortunately done it twice thinking that was the problem

question even if the file is encrypted and not signed it still should decrypt for the client correct?

phishman
gheist

Do you see other party's public key in both ends?
You need to make it "Ultimately trusted" or "trusted" depending on environment, or just sign it using your private key.
I suggest you install gpgme on windows and import gpg stuff from AIX - maybe visual appearance resembles PGP and you can fix all in instant...
ASKER
phishman1000

ghiest,

i think i found out the issues
we have two boxes for PGP a  test and prod box someone signed using the test box and sent our prod pub key....D'oh!

i'll let you know what we found out
phishman out
Your help has saved me hundreds of hours of internet surfing.
fblack61
gheist

Only one private key is able to decrypt encrypted file.
ASKER
phishman1000

gheist,
we have the clients public key and were sucessful in encrypting and decrypting, main problem was the signature from my end,
seams like some sort of compatiblity issues with AIX and our z /OS and GPG and our Megacrypt PGP respectively
thanks gheist for your insight
i'm still testing and working with our PGP vendor so i'll keep you up to date.

phishman out
ASKER
phishman1000

gheist,
after going back and forth we regenrated and re-exchanged keys again with sucess both decrypting and signature validation we are good :)
thanks for the advice
phishman out
thanks,
rich
Get an unlimited membership to EE for less than $4 a week.
Unlimited question asking, solutions, articles and more.
gheist

Good luck!!!