Notes for GnuPG users on several platforms

General Remarks

Always use a current, supported version of GnuPG (which are versions >= 2.2 at 2020-04-22) (There are only a few rare exceptions to this rule.)

Ubuntu

current versions of GnuPG

https://public-packages.pennock.tech/ may provide packages that are newer than the distribution packages (read the conditions - certainly useful for testing.)

other apps posing as gpg-agent problems

gnome-keyring or seahorse may pose as gpg-agent, but known versions today (2015-03) are not fully compatible with the gpg-agent protocol. So applications may show errors or cannot work when they believe they are talking to gpg-agent and try to use its features. Examples: ERR 280 not implemented or a protocol error in the Kleopatra self-tests.

You can detect the situation with GnuPG 2.0.x when checking the environment variable on a shell like echo $GPG_AGENT_INFO. You are talking to a gpg-agent for good, if it has something with gpg-agent in it and a corresponding gpg-agent process is running. Otherwise the connection has probably been taken over.

Solution: Disable gnome-keyring, some hints on how to disable it are within the notes on how to use gpg-agent with ssh (you need only the disable part, not the ssh part) or here.

(TODO link or describe better solution, link/create reports for ubuntu and gnome) For some Details see this gnupg-users post. Also see the general problem with Gnome-Keyring page.

Debian

current versions of GnuPG

https://public-packages.pennock.tech/ may provide packages that are newer than the distribution packages (read the conditions - certainly useful for testing.)

Misc

Note that the gnupg2 Package may search for files in paths that differ from the paths of a vanilla build and what its written in the documentation.

E.g: The gpgsm[2.0.19-2+deb7u1] in Wheezy looks in /etc/gnupg2/trustlist.txt but the docs differ (Debian defect #725804).

Mac OS X

• http://sourceforge.net/p/gpgosx/docu/Home/
• https://gpgtools.org

Android

• https://guardianproject.info/code/gnupg/ ported GnuPG to Android, see https://guardianproject.info/2013/05/09/gnupg-for-android-progress-we-have-an-app/ and integrated the changes to GnuPG upstream and supported there (e.g. gnupg-users@ 2017-10). The app itself used to be available from Fdroid but is now looking for a new maintainer (last checked 2018-01-04).
• For a different implementation see OpenPGP-Keychain via OtherFreeSoftwareOpenPGP
• The 2016 study Nutzung von OpenPGP auf Android (in German) offers a more detailed look at the available options on Android at that time.

Webbrowser

• https://webpg.org/ , successor of FireGPG. provides an interface to GnuPG by way of an NPAPI plugin
• For different implementations see users of openpgp.js via OtherFreeSoftwareOpenPGP
• http://thinkst.com/tools/cr-gpg/ a Chromium extension. TODO: License ? alpha, last activity 2012
• The 2016 study Nutzung von OpenPGP in Webanwendungen (in German) offers a more detailed look at the available options for web applications at that time.