Methods I have tried: * https://wiki.gnupg.org/GnomeKeyring * https://blog.josefsson.org/tag/keyring/ * Removing the GNOME Keyring applications from Startup Applications * http://lechnology.com/software/keeagent/installation/#disable-ssh-component-of-gnome-keyring None of these stop this process from being started when I log in: me 1865 0.0 0.0 281816 7104 ? Sl 10:50 0:00 /usr/bin/gnome-keyring-daemon --daemonize --login This stops my Thunderbird from decrypting emails properly. When I kill the process, I can decrypt emails as expected but I don't want to have to do that every time I log in. OS Information: Debian GNU/Linux 8.3 (jessie) Can anyone help?

I run a couple of PCs and they both multi-boot into more than one OS (Win10/Linux{Devuan}/FreeBSD & Win10/Linux{Devuan} respectively). I use Thunderbird + Enigmail (sticking with Version 68.x of the former for the moment as the integrated OpenGPG support coming in 78.x does not have SmartCard support working yet as I understand it). I have noted https://unix.stackexchange.com/q/184947/144991 but I am not sure it can work when the Secret key(s) are held in a Smart Card such as my OpenGPG (version 3.3) one. I am aware that an issue is that the secret keys themselves are normally supposed to be generated within the card's hardware and stored only on the card itself, with a fundamental part of the security being that they cannot be extracted **from** that card. I am also aware that the solution to this is to do the generation on an air-gapped PC, ideally running from a OS booted from Read-only material (CD/DVD) and to export and preserve in a **secure** manner the complete secret primary and separately the secret sub-keys and public keys. Then, on the first machine/OS one needs to reimport just the latter two of the those three and then use the keytocard feature to transfer the secret sub-keys to the card (it is a one-way trip!) which leaves special stubs in the secring.gpg that says "yes, we have these keys but they are stored on a card". Do I need to repeat the "importing the secret-sub-keys only and then use keytocard to generate the *secret-key-stubs* on each subsequent machine/OS" to get the secret key ring on each machine to have an awareness for that machine/OS that we have owner keys on a SmartCard; OR is there a short-cut method (perhaps copying the user's secring.gpg securely via sneakernet from the first machine/OS to the others) that should work?

I installed the Enigmail mail encryption plugin for Thunderbird and created a key-pair as the installation wizard instructed me. I can send and encrypt/decrypt mail with this key. However, when I want to list my keys in the terminal using gpg --list-keys I get no output what so ever. Why?

I want to share the key at my homepage. I cannot find any setting in Icedove for the task. There is *View settings for this account* but it does not contain any tool for exporting the public key. I can find the short ID but I want it fully. You can install enigmail by : sudo apt-get install enigmail. OS: Debian 8.7 Icedove: Icedove 45.6.0

I have a GPG key with multiple signing subkeys and I want to force enigmail to sign email with a specified subkey. GPG can be forced to sign with a specific subkey by appending the characted "!" after the subkey id, but engimail does not appear to have any support for that.

I want to read a GPG encrypted email using Thunderbird Enigmail from Account.1@mail.com and Edit > Account Settings > Account.1 > OpenPGP Security has "Use specific OpenPGP key ID" selected. However, when I select the message in order to read, Thunderbird or Enigmail (??) is asking gpg to launch pinentry for every key on my keychain that I own (Account.1@mail.com, Account.2@mail.com, etc.). This is true even if correct password already in 5-minute cache. Clicking "Cancel" a dozen times is annoying. Can I configure so that pinentry only asks me for password for immediate use (decrypt as Account.1@mail.com) rather than all secret and public keys on keychain that I own?

I am using a Debian unstable with Iceweasel (38.2.0esr-1) and the Enigmail plugin (2:1.8.2-3) from the distribution packages. I recently upgraded my system and got a new version of the gnupg2 package (2.1.7-2, previous was 2.0.28-2) and I ran into problems when trying to use my private key (encrypt, decrypt, sign messages) in Enigmail since then. The error message is: > Enigmail: Error - no matching private/secret key found to decrypt message; > click on 'Details' button for more information And, the 'Details' button was giving the following error message: Enigmail Security Info Error - no matching private/secret key found to decrypt message gpg: decryption failed: No secret key Note: The message is encrypted for the following User ID's / Keys: 0xAAAAAAAAAAAAAAAA (Surname Name gpg2 --decrypt command line, it works like a charm without any visible problem. I looked in the Debian BTS about Enigmail and found a bug with similar characteristics ([Debian Bug #794627](https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=794627)) . It has not been solved because the maintainer cannot reproduce the bug. I tried several things with no success, so if you encounter this bug and find something about it, I would be pleased to know how to solve it. Any input is welcome.