[pkg-gnupg-maint] Bug#898085: gnupg: gpg --search-keys and parcimonie don't work: Tor misconfigured/keyserver EPERM

[Cyril Brulebois]

Hi,

And sorry for the lag…

intrigeri <intrigeri at debian.org> (2018-07-08):
> So indeed, the default GnuPG configuration in Stretch cannot work out
> of the box once "use-tor" is enabled. One needs to:
> 
>  - either specify a keyserver whose hostname won't resolve to IPv6, like:
> 
>      echo 'keyserver hkp://jirk5u4osbsr34t5.onion' \
>           >> ~/.gnupg/dirmngr.conf

That plus killing dirmngr (so that it gets restarted) leads to a
successful key search indeed.

>  - or edit /etc/tor/torrc to enable the "IPv6Traffic" flag for the
>    "SocksPort" that's used by dirmngr, i.e. something along the lines
>    of:
> 
>      echo 'SocksPort 9050 IPv6Traffic' | sudo tee -a /etc/tor/torrc && \
>      sudo systemctl restart tor at default

Reverting the change above (and restarting dirmngr) and implementing
this instead also leads to a successful search.

> Can you please confirm that one of those fixes the problem you're
> facing?

Both do, thanks!


Cheers,
-- 
Cyril Brulebois (kibi at debian.org)            <https://debamax.com/>
D-I release manager -- Release team member -- Freelance Consultant
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-gnupg-maint/attachments/20180729/7d79aa51/attachment.sig>