Monkeysphere

Here it is, finally: Monkeysign 1.0! I have implemented all the features I felt were necessary for a first stable release, so here it is. Monkeysign is a user-friendly tool to easily and securely exchange OpenPGP key certifications. See the website ... [More] for more information. The 1.0 release now properly sends separate email for each signed UIDs, has manpages for the two programs and, more importantly, doesn't copy your secret key around anymore. Translation of the user interface is now possible and we also ship a ton of tweaks and bugfixes. To install monkeysign, you should be able to do: sudo apt-get install monkeysign The backport to wheezy was updated to 0.9 not so long ago and will soon be updated to 1.0 too. For users of other Linux distributions, try: git clone git://git.monkeysphere.info/monkeysign cd monkeysign sudo ./setup.py install --record=install.log For more information, including how to get a tarball to create packages for other distributions, see the homepage. Detailed list of changes since monkeysign-0.9: stop copying secrets to the temporary keyring make sure we use the right signing key when specified signatures on multiple UIDs now get properly sent separately (Closes: #719241) this includes "deluid" support on the gpg library significantly refactor email creation improve unit tests on commandline scripts, invalid (revoked) keys and timeout handling provide manpages (Closes: #716674) avoid showing binary garbage on export when debugging properly fail if password confirmation fails user interfaces now translatable accept space-separated key fingerprints fix single UID key signing proper formatting of UIDs with comments (removed) and spaces (wrapped) for emails Enjoy! [Less]

Here it is, finally: Monkeysign 1.0! I have implemented all the features I felt were necessary for a first stable release, so here it is. Monkeysign is a user-friendly tool to easily and securely exchange OpenPGP key certifications. See the website ... [More] for more information. The 1.0 release now properly sends separate email for each signed UIDs, has manpages for the two programs and, more importantly, doesn't copy your secret key around anymore. Translation of the user interface is now possible and we also ship a ton of tweaks and bugfixes. To install monkeysign, you should be able to do: sudo apt-get install monkeysign The backport to wheezy was updated to 0.9 not so long ago and will soon be updated to 1.0 too. For users of other Linux distributions, try: git clone git://git.monkeysphere.info/monkeysign cd monkeysign sudo ./setup.py install --record=install.log For more information, including how to get a tarball to create packages for other distributions, see the homepage. Detailed list of changes since monkeysign-0.9: stop copying secrets to the temporary keyring make sure we use the right signing key when specified signatures on multiple UIDs now get properly sent separately (Closes: #719241) this includes "deluid" support on the gpg library significantly refactor email creation improve unit tests on commandline scripts, invalid (revoked) keys and timeout handling provide manpages (Closes: #716674) avoid showing binary garbage on export when debugging properly fail if password confirmation fails user interfaces now translatable accept space-separated key fingerprints fix single UID key signing proper formatting of UIDs with comments (removed) and spaces (wrapped) for emails Enjoy! [Less]

Here it is, finally: Monkeysign 1.0! I have implemented all the features I felt were necessary for a first stable release, so here it is. Monkeysign is a user-friendly tool to easily and securely exchange OpenPGP key certifications. See the website ... [More] for more information. The 1.0 release now properly sends separate email for each signed UIDs, has manpages for the two programs and, more importantly, doesn't copy your secret key around anymore. Translation of the user interface is now possible and we also ship a ton of tweaks and bugfixes. To install monkeysign, you should be able to do: sudo apt-get install monkeysign The backport to wheezy was updated to 0.9 not so long ago and will soon be updated to 1.0 too. For users of other Linux distributions, try: git clone git://git.monkeysphere.info/monkeysign cd monkeysign sudo ./setup.py install --record=install.log For more information, including how to get a tarball to create packages for other distributions, see the homepage. Detailed list of changes since monkeysign-0.9: stop copying secrets to the temporary keyring make sure we use the right signing key when specified signatures on multiple UIDs now get properly sent separately (Closes: #719241) this includes "deluid" support on the gpg library significantly refactor email creation improve unit tests on commandline scripts, invalid (revoked) keys and timeout handling provide manpages (Closes: #716674) avoid showing binary garbage on export when debugging properly fail if password confirmation fails user interfaces now translatable accept space-separated key fingerprints fix single UID key signing proper formatting of UIDs with comments (removed) and spaces (wrapped) for emails Enjoy! [Less]

I am happy to announce the 0.9 release of Monkeysign! 0.8 was released last week and I forgot to announce it, so this news item covers this as well. Monkeysign is a user-friendly tool to easily and securely exchange OpenPGP key certifications. See ... [More] the website for more information. Since Monkeysign has been uploaded into Debian, there has been more testing from the Debian community, which lead to the discovery of a few usability issues, which are mostly fixed in 0.9. Most notably, the msign and msign-cli scripts were renamed to monkeyscan and monkeysign, since numerous people have been puzzled to not find the monkeysign command after installing the package. This also implies that the main command is currently monkeysign, as the graphical interface is less featureful and less complete. The issues we had with monkeysign-0.7 still remain, so this is not a 1.0 release, but I am really happy to see Monkeysign enter Debian. I have also uploaded a backport to Debian Wheezy and will try to keep it up to date. So to install monkeysign, on Debian, you should now be able to do: sudo apt-get install monkeysign Although this will install an old version (0.7) on stable and testing, given time the 0.9 release will tricle down. For users of other Linux distributions, try: git clone git://git.monkeysphere.info/monkeysign cd monkeysign sudo ./setup.py install --record=install.log Changes since monkeysign-0.7: refactor unit tests again to optimise UI tests and test mail generation fix error handling in encryption/decryption (Closes: #717622) rename msign-cli to monkeysign and msign to monkeyscan (Closes: #717623) handle interruptions cleanly when choosing user IDs (see: #716675) refactor unit test suite to allow testing the commandline tool interactively don't fail on empty input when choosing uid (Closes: #716675) we also explain how to refuse signing a key better optimise network tests so they timeout (so fail) faster Enjoy! [Less]

I am happy to announce the 0.9 release of Monkeysign! 0.8 was released last week and I forgot to announce it, so this news item covers this as well. Monkeysign is a user-friendly tool to easily and securely exchange OpenPGP key certifications. See ... [More] the website for more information. Since Monkeysign has been uploaded into Debian, there has been more testing from the Debian community, which lead to the discovery of a few usability issues, which are mostly fixed in 0.9. Most notably, the msign and msign-cli scripts were renamed to monkeyscan and monkeysign, since numerous people have been puzzled to not find the monkeysign command after installing the package. This also implies that the main command is currently monkeysign, as the graphical interface is less featureful and less complete. The issues we had with monkeysign-0.7 still remain, so this is not a 1.0 release, but I am really happy to see Monkeysign enter Debian. I have also uploaded a backport to Debian Wheezy and will try to keep it up to date. So to install monkeysign, on Debian, you should now be able to do: sudo apt-get install monkeysign Although this will install an old version (0.7) on stable and testing, given time the 0.9 release will tricle down. For users of other Linux distributions, try: git clone git://git.monkeysphere.info/monkeysign cd monkeysign sudo ./setup.py install --record=install.log Changes since monkeysign-0.7: refactor unit tests again to optimise UI tests and test mail generation fix error handling in encryption/decryption (Closes: #717622) rename msign-cli to monkeysign and msign to monkeyscan (Closes: #717623) handle interruptions cleanly when choosing user IDs (see: #716675) refactor unit test suite to allow testing the commandline tool interactively don't fail on empty input when choosing uid (Closes: #716675) we also explain how to refuse signing a key better optimise network tests so they timeout (so fail) faster Enjoy! [Less]

I am happy to announce the 0.9 release of Monkeysign! 0.8 was released last week and I forgot to announce it, so this news item covers this as well. Monkeysign is a user-friendly tool to easily and securely exchange OpenPGP key certifications. See ... [More] the website for more information. Since Monkeysign has been uploaded into Debian, there has been more testing from the Debian community, which lead to the discovery of a few usability issues, which are mostly fixed in 0.9. Most notably, the msign and msign-cli scripts were renamed to monkeyscan and monkeysign, since numerous people have been puzzled to not find the monkeysign command after installing the package. This also implies that the main command is currently monkeysign, as the graphical interface is less featureful and less complete. The issues we had with monkeysign-0.7 still remain, so this is not a 1.0 release, but I am really happy to see Monkeysign enter Debian. I have also uploaded a backport to Debian Wheezy and will try to keep it up to date. So to install monkeysign, on Debian, you should now be able to do: sudo apt-get install monkeysign Although this will install an old version (0.7) on stable and testing, given time the 0.9 release will tricle down. For users of other Linux distributions, try: git clone git://git.monkeysphere.info/monkeysign cd monkeysign sudo ./setup.py install --record=install.log Changes since monkeysign-0.7: refactor unit tests again to optimise UI tests and test mail generation fix error handling in encryption/decryption (Closes: #717622) rename msign-cli to monkeysign and msign to monkeyscan (Closes: #717623) handle interruptions cleanly when choosing user IDs (see: #716675) refactor unit test suite to allow testing the commandline tool interactively don't fail on empty input when choosing uid (Closes: #716675) we also explain how to refuse signing a key better optimise network tests so they timeout (so fail) faster Enjoy! [Less]

monkeysphere 0.36 has been released. Notes from the changelog: * keytrans no longer confuses user IDs across different keys (closes MS #2682) * fetch all available keys from keyserver instead of first 5 (closes MS #1046) * enable ... [More] openpgp2pem for keytrans (Closes: #698383) * enable openpgp2spki as well [ Jonas Smedegaard ] * m-a gpg-cmd now takes its arguments as separate parameters, not as a single string. Download it now! [Less]

monkeysphere 0.36 has been released. Notes from the changelog: * keytrans no longer confuses user IDs across different keys (closes MS #2682) * fetch all available keys from keyserver instead of first 5 (closes MS #1046) * enable ... [More] openpgp2pem for keytrans (Closes: #698383) * enable openpgp2spki as well [ Jonas Smedegaard ] * m-a gpg-cmd now takes its arguments as separate parameters, not as a single string. Download it now! [Less]

monkeysphere 0.36 has been released. Notes from the changelog: * keytrans no longer confuses user IDs across different keys (closes MS #2682) * fetch all available keys from keyserver instead of first 5 (closes MS #1046) * enable ... [More] openpgp2pem for keytrans (Closes: #698383) * enable openpgp2spki as well [ Jonas Smedegaard ] * m-a gpg-cmd now takes its arguments as separate parameters, not as a single string. Download it now! [Less]

The second beta release of Monkeysign is now available in the git repository. After almost a year of bugfixing and tests, I am confident enough in monkeysign to use it all the time to sign keys. Monkeysign is a user-friendly tool to easily and ... [More] securely exchange OpenPGP key certifications. See the website for more information. After getting bugs reported (thanks micah and simon!) on 0.6 and even git head, I figured it would be useful to properly test the UI. So I added tests for the commandline interface. They are far from complete, as UI are particularly hard to unit test, but things should be in much better shape now. Monkeysign is still incomplete: before releasing a 1.0 version, we wish to provide ways for the community to translate the interface and, more importantly, fix an important bug where keys are not sent and encrypted individually when signing multiple key ids. The code is only available through git right now, but a Debian package should enter the unstable archive soon. Use the following to get the code: git clone git://git.monkeysphere.info/monkeysign Complete changelog: fix crash when key not found on keyservers use a proper message in outgoing emails unit tests extended to cover user interface import keys from the local keyring before looking at the keyserver fix print/save exports (thanks Simon!) don't depend on a graphical interface update copyright dates and notices mark as priority: optional instead of extra Enjoy! [Less]