On Tue, 23 Aug 2011 15:12, da...@systemoverlord.com said:
Would it be reasonable to say that you may use a significantly smaller
PIN for your smartcard than would be required of a passphrase, since
the smartcard locks itself after 3 tries?
Yes. It is up to 6 tries because an attacker may also
On Tue, Aug 23, 2011 at 9:56 AM, Werner Koch w...@gnupg.org wrote:
On Tue, 23 Aug 2011 15:12, da...@systemoverlord.com said:
Would it be reasonable to say that you may use a significantly smaller
PIN for your smartcard than would be required of a passphrase, since
the smartcard locks itself
On 8/23/11 12:43 PM, David Tomaschik wrote:
So even a 4-digit PIN would ensure a less than 1% chance of guessing
the PIN. (Assuming that the user does not select obvious pins like
birthdates, anniversaries, etc.) At 8 digits, the probability becomes
something like 6*10^-8, if I do the
On Thu, 28 Jul 2011 05:56, r...@sixdemonbag.org said:
Are there any particular problems the durability of a smartcard,
particularly an OpenPGP card? Are there any damage concerns from wallet
It is not different than with any other chip card. If you immerse the
card into water only
It's a small sample to be sure, but I've been carrying my smartcard in
my wallet for several months and it's held up just fine. It has a
tiny bit of curvature to it now, but that's only noticeable if you lay
it on something flat, and has no impact on its usage. (If it matters
any, I carry my
Are there any particular problems the durability of a smartcard,
particularly an OpenPGP card? Are there any damage concerns from wallet
storage, for instance?
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo
Hi,
I recently installed GnuPG 2 through a package manager on a Linux
system, and when I issued gpg2 --card-status, I got the following
error:
gpg: OpenPGP card not available: No SmartCard daemon
I searched my system for scdaemon, but it is not installed. Also, I
checked my PATH environment
Hello,
Im no expert in the card reader/card driver area but; Im also running
Linux Mint 9 with gpg2 and keys on smartcard.
Im not sure which card reader you have (I've got an Omnikey reader) but
in my case I pretty soon had to abandon
the CCID-driver (gpg built-in) in favor of PCSC. Try:
/apt
On 04/03/2011 07:24 AM, Paul R. wrote:
gpg: OpenPGP card not available: No SmartCard daemon
I searched my system for scdaemon, but it is not installed. Also, I
checked my PATH environment variable to make sure that the PATH was
properly configured. I guessed that, perhaps, scdaemon had
On 04/03/2011 03:05 PM, Grant Olson wrote:
For some reason debian-based software includes scdaemon in the gpgsm
package.
Part of me feels like this is a bug in the packaging, but I don't know
enough about debian packaging to file a bug report. That, or I'm too
lazy...
I decided to
On 4/3/11, Grant Olson k...@grant-olson.net wrote:
For some reason debian-based software includes scdaemon in the gpgsm
package.
Part of me feels like this is a bug in the packaging, but I don't know
enough about debian packaging to file a bug report. That, or I'm too
lazy...
Thank you,
the public key (since I can encrypt only when the
card is not inserted).
So even if I generate the keys directly on the smartcard, using
--card-edit and generate commands, do
the actual public key key mass populate the smart card?
The card stores the parameters from the RSA algorithm (i.e. a series
On Apr 1, 2011, at 3:51 AM, Astrakan wrote:
Thanx for your input.
Ok, so Im guessing the RSA-modulus (p and q) are stored on the card
along with the private exponents, or
perhaps the private key in its whole, already computed?
You should take a look at
On 4/1/11 3:51 AM, Astrakan wrote:
Does anyone know the max storage capability of the v2.0 OpenPGP-cards? A
few K?
The v2 spec says they should support at least 2048k keys. The actual
cards say they can handle up to 3072k.
--
Grant
I am gravely disappointed. Again you have made me
Hello!
Just a quick question to clarify things. I've been playing with gpg/gpg2
and g10 openPGP smart cards v2.0 now a bit.
As I understand there is no way to keep the private _and_ the public
keys solely on the card?
Gpg always uses the public key/pubring.gpg on the harddrive.
So suppose if I
On Thu, 31 Mar 2011 15:51, gpgika...@armax.se said:
my pubring.gpg/secring.gpg) I must also have a card containing the
trustdb-file and perhaps even a gpg.conf file?
No, you don't need the internal stuff like trustdb and pubring. Take
the public key from a keyserver or another resource and
grow to a couple of bytes in size (secring
containing stubs that point to the card, right?) and
pubring.gpg containing the public key (since I can encrypt only when the
card is not inserted).
So even if I generate the keys directly on the smartcard, using
--card-edit and generate commands, do
?) and
pubring.gpg containing the public key (since I can encrypt only when the
card is not inserted).
So even if I generate the keys directly on the smartcard, using
--card-edit and generate commands, do
the actual public key key mass populate the smart card?
When you --card-edit and generate, the card
on the smartcard, using
--card-edit and generate commands, do
the actual public key key mass populate the smart card?
The card stores the parameters from the RSA algorithm (i.e. a series of
numbers). Some of these numbers are considered public (and can be retrieved
from the card
OpenPGP keyblock; many of
them are over 100k in size.
I've sometimes thought it would be nice to be able to keep the pubring with the
smartcard, and since it can't be on the card, it could be on the reader. There
is at least one reader out there (SCM MAXX lite) that combines a SIM-sized
Am Thu, 17 Mar 2011 10:02:43 +0100
schrieb Werner Koch w...@gnupg.org:
On Wed, 16 Mar 2011 19:31, malte.g...@gmx.de said:
currently I have some trouble to get my Cyberjack running with
PCSC. So I wonder, can GnuPG (2.0.16) also work with CTAPI drivers?
I doubt that. CTAPI has not been
Hello,
currently I have some trouble to get my Cyberjack running with PCSC. So I
wonder, can GnuPG (2.0.16) also work with CTAPI drivers?
Thanx
Malte
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
On Sun, 13 Feb 2011 01:41, k...@grant-olson.net said:
Firstly, can I actually import a certificate like this onto the card?
Or do I simply misunderstand the specs?
Yes.
Secondly, is there a command somewhere in gpg/gpgsm/gpg* to do this, or
is it specified and implemented on the OpenPGP
On Sun, 13 Feb 2011 01:41, k...@grant-olson.net said:
Thirdly, the SCUTE docs start by generating a certificate request from
your OpenPGP authentication key. In this scenario, are you just using
the Same RSA key for both your OpenPGP and X509 certificates? Does the
Yes, it is possible to
On Thu, 27 Jan 2011 16:01, pat...@debian.org said:
I've got 2 readers:
OmniKey CardMan 3121 (USB device)
OmniKey CardMan 4040 (PCMCIA device)
All Omnikey based readers don't work with 2k keys. There is a hack in
scdaemon which sometimes helps, but in general they are not supported;
neither
In both the product description for the OpenPGP V2.0 card and the spec
itself there is some discussion of a Cardholder Certificate Data
Object in the V2.0 cards.
I've got one of those free X.509 email certificate from Comodo, and was
attempting to upload it to the card. I can import the .p12
On Sat, 29 Jan 2011 19:54, k...@grant-olson.net said:
gpg: detected reader `SCM SCR 3310 [CCID Interface] 00 00'
gpg: pcsc_connect failed: sharing violation (0x801b)
Another process has locked the reader. Most likely this is either a gpg
1 or an scdaemon.
grant@johnsmallberries:~$
On Sun, 2011-01-30 at 12:03 +0100, Werner Koch wrote:
On Sat, 29 Jan 2011 19:54, k...@grant-olson.net said:
gpg: detected reader `SCM SCR 3310 [CCID Interface] 00 00'
gpg: pcsc_connect failed: sharing violation (0x801b)
Another process has locked the reader. Most likely this is
On 01/30/2011 06:03 AM, Werner Koch wrote:
On Sat, 29 Jan 2011 19:54, k...@grant-olson.net said:
gpg: detected reader `SCM SCR 3310 [CCID Interface] 00 00'
gpg: pcsc_connect failed: sharing violation (0x801b)
Another process has locked the reader. Most likely this is either a gpg
1
On 01/30/2011 11:18 AM, Grant Olson wrote:
With those options enabled, I tried issuing the reset codes. First time
it complained because no card was inserted. Second time it complained
because it couldn't find a supported application on the card. I'm not
sure if that message is normal
This is actually a spare card I was just messing around with, not my
main one. It's a standard OpenPGP v2.0 card from g10.
I wanted to reset the card to the factory defaults and mess around with
the onboard key generation. I issued the series of commands listed
here, among other places:
While I realize that the ID-1 (full size) cards can be used with card
readers that support PIN entry, are there any other
advantages/disadvantages to one size over the other? At present, I feel
like the ID-000 form factor has more advantages because of the
portability and the lower cost of the
On 01/28/2011 09:42 PM, David Tomaschik wrote:
While I realize that the ID-1 (full size) cards can be used with card
readers that support PIN entry, are there any other
advantages/disadvantages to one size over the other? At present, I feel
like the ID-000 form factor has more advantages
Am 26.01.2011 22:03, schrieb David Tomaschik:
Anyone in the US ever order the OpenPGP smartcards from Kernel
Concepts? I'm wondering if there are any customs issues I should be
aware of. I'm thinking of trying to get a few people together around
here to do a bulk order to cut shipping costs,
I finally got it working.
Seems like there's some kind of problem with CCID for those readers
-- I'd used internal GnuPG's CCID driver until yesterday.
I've got 2 readers:
OmniKey CardMan 3121 (USB device)
OmniKey CardMan 4040 (PCMCIA device)
Both had the same problem; signing worked fine, but
Anyone in the US ever order the OpenPGP smartcards from Kernel Concepts?
I'm wondering if there are any customs issues I should be aware of. I'm
thinking of trying to get a few people together around here to do a bulk
order to cut shipping costs, etc., but wanted to know if I was going to end
up
David Tomaschik wrote:
Anyone in the US ever order the OpenPGP smartcards from Kernel
Concepts? I'm wondering if there are any customs issues I should be
aware of. I'm thinking of trying to get a few people together around
here to do a bulk order to cut shipping costs, etc., but wanted to
On 1/26/11 4:03 PM, David Tomaschik wrote:
Anyone in the US ever order the OpenPGP smartcards from Kernel
Concepts? I'm wondering if there are any customs issues I should be
aware of. I'm thinking of trying to get a few people together around
here to do a bulk order to cut shipping costs,
Hi,
I've been successfully using OpenPGP smartcard for signing my Debian
uploads for a while now. Today I wanted to set it up also for SSH
public key authentication.
I'm using:
gnupg-2.0.17
libassuan-2.0.1
libgcrypt-1.4.6
libksba-1.1.0
pinentry-0.8.1
pinentry-qt-0.5.0
All installed into /usr
On 1/25/11 10:07 AM, Patryk Cisek wrote:
Hi,
I've been successfully using OpenPGP smartcard for signing my Debian
uploads for a while now. Today I wanted to set it up also for SSH
public key authentication.
Did you create an authentication key? You might only have signing and
encryption
On 1/25/11 12:16 PM, Grant Olson wrote:
I just setup Debian 6.0RC1 last week. I have a key I've already been
using to ssh. I had no problems. Just needed to add some stuff to
.bashrc as documented in the manpage for gpg-agent.
Actually, I also needed to run 'gpgkey2ssh 0xDEADBEEF
On Tue, 25 Jan 2011 18:39, k...@grant-olson.net said:
Actually, I also needed to run 'gpgkey2ssh 0xDEADBEEF
~/.ssh/authorized_keys so I could ssh into the box as well.
You should use
ssh-add -L
which gives you the public key. The comment field has the card number.
Shalom-Salam,
On Tue, Jan 25, 2011 at 12:16:02PM -0500, Grant Olson wrote:
Did you create an authentication key? You might only have signing and
encryption keys. You need a third key for authentication. (A quick
look at pool.keyservers.net doesn't show an auth subkey.)
Yes, I've got authentication key:
$
On Tue, Jan 25, 2011 at 08:39:28PM +0100, Werner Koch wrote:
Actually, I also needed to run 'gpgkey2ssh 0xDEADBEEF
~/.ssh/authorized_keys so I could ssh into the box as well.
You should use
ssh-add -L
which gives you the public key. The comment field has the card number.
Also this
On Tue, 2 Nov 2010 03:51, jcr...@gmail.com said:
However, things seem not to be working with subkeys. I'm getting Need
the secret key to do this or no default secret key for a many
That is quite possible. I only did a brief test which showed that I was
abale to sign packages. Most smart
On Sun, 31 Oct 2010 19:20, jcr...@gmail.com said:
Is it typical for smartcard support not to be in beta versions?
From the announcement:
GPG's smartcard commands --card-edit and --card-status as well as the
card related sub-commands of --edit-key are not yet supported.
However, signing
On Mon, 2010-11-01 at 09:55 +0100, Werner Koch wrote:
On Sun, 31 Oct 2010 19:20, jcr...@gmail.com said:
Is it typical for smartcard support not to be in beta versions?
From the announcement:
GPG's smartcard commands --card-edit and --card-status as well as the
card related sub
Is it typical for smartcard support not to be in beta versions?
[tech...@silence: ~] $ gpg --card-status
gpg: invalid option --card-status
[tech...@silence: ~] $ gpg --version
gpg (GnuPG) 2.1.0beta1
libgcrypt 1.4.6
NOTE: THIS IS A DEVELOPMENT VERSION!
It is only intended for test purposes
reader is Omnikey Cardman 6121
My smartcard is OpenPGP v2
I use the proprietary driver for the reader (ifdokccid_lnx-3.6.0.tar.gz)
scdaemon still does not fully handle card insertions and removals. It
fails permanently if I attempt to access the card before it is inserted
for first time
Hello,
I have two USB dongle plugged in at the same time. One is the crypto
stick (OpenPGP card 2.0 + CCID reader) and the other one is a PKCS#11
token. I don't use any udev rule for the crypto stick as the latest ccid
lib supports it out of the box. Now I'm unable to do a gpg --card-status
with
On Tue, 17 Aug 2010 11:31, j...@seiken.de said:
to import my public key from a keyserver. But if done so gnupg doesn't
recognize the private subkeys stored on the smartcard. How do I tell gnupg
where it should look for the private subkeys?
Insert the smartcard and run gpg --card-staus
hi,
if I transfer my smartcard to an new host I can run
gpg2 --card-edit
fetch
to import my public key from a keyserver. But if done so gnupg doesn't
recognize the private subkeys stored on the smartcard. How do I tell gnupg
where it should look for the private subkeys?
signature.asc
On Sat, 24 Jul 2010 15:09, frankste...@gmail.com said:
gpg-protect-tool: invalid S-Expression in
E1771DB82D9516EE5866A3E617AE04ACE36B3574.key' (off=0): Unexpected
reserved punctuation in S-expression
There is somewthing wrong ;-). You need to look at the file to see what
the problem is. Or
The problem though is when I'm trying to get SSH to work with it. It
wont authenticate.
Does ssh-add -l sdhow the key?
2010-07-23 20:01:57 gpg-agent[1315] gpg-agent (GnuPG) 2.0.13 started
It would better to try 2.0.16 becuase that is the one I can test.
2010-07-23 20:03:38
Stanislav Sidorenko stanis...@sidorenko.biz writes:
I've made a quickdirty fix that enables using SHA256 instead of RIPEMD160.
hashalgo == GCRY_MD_SHA256? --hash=sha256 : ,
Okay. I just fixed that and gnupg 1 will now allow all hash
algorithms. Note that this change is
On 24.07.10 08:21, Werner Koch wrote:
The problem though is when I'm trying to get SSH to work with it. It
wont authenticate.
Does ssh-add -l sdhow the key?
Yes it shows up here
2010-07-23 20:01:57 gpg-agent[1315] gpg-agent (GnuPG) 2.0.13 started
It would better to try 2.0.16 becuase that
Hi Guys.
I am currently running OpenSolaris 2010, I got GPG2 set up and my
(OpenPGP) Smartcard. I have no problems accesing the smartcard from GPG2
(e.g gpg2 --card-status) everything shows up fine, I am able to edit and
view my keys and so on.
The problem though is when I'm trying to get
PM, Stanislav Sidorenko wrote:
Hi!
I've tried to use SHA256 digest for signing using openpgp V2 smartcard
and got the following error:
gpg: checking created signature failed: bad signature
gpg: signing failed: bad signature
gpg: signing failed: bad signature
It happens only
On 05/01/2010 04:52 PM, Stanislav Sidorenko wrote:
Hi!
I've tried to use SHA256 digest for signing using openpgp V2 smartcard and
got
the following error:
gpg: checking created signature failed: bad signature
gpg: signing failed: bad signature
gpg: signing failed: bad signature
Good Evening,
Today I've received my fsfe smartcard and I've set it up at my work under
arch linux with the following guide:
http://wiki.fsfe.org/Card_howtos/Card_with_subkeys_using_backups.
Now I am at home, using ubuntu 10.04 and I would like to be able to sign my
mail using my fsfe card
?
Yes. First you import the public(!) key then you issue the command gpg --
card-edit.
After that a gpg --list-secret-keys should show the above lines ssb ...
which indicate that the secret key is on a smartcard.
Hauke
--
PGP: D44C 6A5B 71B0 427C CED3 025C BD7D 6D27 ECCB 5814
signature.asc
my key via this way, and I leave the
pc, no-one else will be able to use the keys without my smartcard and pin?
(or passphrase)?
I am not sure about the PIN caching. If you take the smartcard out of the
reader then your description is correct. But if you leave the smartcard in the
reader
Am Montag 07 Juni 2010 08:22:07 schrieb Simon Josefsson:
I'm using the keyboard on my smartcard reader to enter the PIN and it
works fine with GnuPG. I'm using a SCM SPR-532. Maybe your reader
isn't supported?
I have that reader model, too. The normal card usage works. (Not without
Hauke Laging mailinglis...@hauke-laging.de writes:
Am Montag 07 Juni 2010 08:22:07 schrieb Simon Josefsson:
I'm using the keyboard on my smartcard reader to enter the PIN and it
works fine with GnuPG. I'm using a SCM SPR-532. Maybe your reader
isn't supported?
I have that reader model
On Mon, 7 Jun 2010 12:48, mailinglis...@hauke-laging.de said:
When I use the keys on the card then gpg always asks me to use the reader
keypad. Do you have a special configuration so that it does this for changing
the PIN, too?
Changing the pin via the keypad is not implemented.
Hello,
I am surprised that gpg asks for the smartcard PIN via the keyboard when it is
to be changed. Do I misunderstand anything? Can I make gpg use the card reader
keypad for that instead? IMHO an important part of smartcard security is that
the PC does NOT know the passphrase. Is there any
Hello,
I experience a strange problem. I have bought a smartcard in order to have my
keys available at work without storing my keys there.
I can decrypt files using the smartcard and I can log into my home system via
SSH and the smartcard but if I try to sign a file then I get an error message
-agent.
On Saturday 01 May 2010 22:52:15 Stanislav Sidorenko wrote:
Hi!
I've tried to use SHA256 digest for signing using openpgp V2 smartcard and
got the following error:
gpg: checking created signature failed: bad signature
gpg: signing failed: bad signature
gpg: signing failed: bad
Hi!
I've tried to use SHA256 digest for signing using openpgp V2 smartcard and got
the following error:
gpg: checking created signature failed: bad signature
gpg: signing failed: bad signature
gpg: signing failed: bad signature
It happens only if gpg uses gpg-agent which is configured to use
Hi!
I've tried to use SHA256 digest for signing using openpgp V2 smartcard and got
the following error:
gpg: checking created signature failed: bad signature
gpg: signing failed: bad signature
gpg: signing failed: bad signature
It happens only if gpg uses gpg-agent which is configured to use
Hauke Laging wrote:
I have just bought a gnupg smartcard, copied my subkeys to it, and it works.
I
have been using a key on several computers. Now I want the other systems to
use the smartcard, too, so that I can delete the private keys there. The
content of the smartcard is shown
On Mar 22, 2010, at 12:11 AM, Hauke Laging wrote:
Hello,
I have just bought a gnupg smartcard, copied my subkeys to it, and it works.
I
have been using a key on several computers. Now I want the other systems to
use the smartcard, too, so that I can delete the private keys
Hello,
I have just bought a gnupg smartcard, copied my subkeys to it, and it works. I
have been using a key on several computers. Now I want the other systems to
use the smartcard, too, so that I can delete the private keys there. The
content of the smartcard is shown by --card-status and I
.
- --
__
Chris Ruff
email: jcr...@gmail.com
gpg key: 0x052A4FAD
gpg fgpr: 6530 8DA8 805C 707F 3611
9851 D057 FC41 052A 4FAD
-BEGIN PGP SIGNATURE-
Version: GnuPG/MacGPG2 v2.0.14 (Darwin)
Comment: OpenPGP SmartCard v2.0
Comment: Using GnuPG
Hi (again),
nobody knows? :(
Laurent Bigonville
Le Wed, 17 Feb 2010 18:46:02 +0100,
Laurent Bigonville l.bigonvi...@edpnet.be a écrit :
Hi,
I've have a OpenGPG smartcard version 2.0 and I would generate digests
stronger than SHA1.
I've added personal-digest-preferences SHA256 to my
Hello Laurent !
Laurent Bigonville l.bigonvi...@edpnet.be wrote:
I've have a OpenGPG smartcard version 2.0 and I would generate digests
stronger than SHA1.
I've added personal-digest-preferences SHA256 to my gpg.conf file,
but when I sign a message the headers still uses SHA1. If I force
On Feb 17, 2010, at 12:46 PM, Laurent Bigonville wrote:
Hi,
I've have a OpenGPG smartcard version 2.0 and I would generate digests
stronger than SHA1.
I've added personal-digest-preferences SHA256 to my gpg.conf file,
but when I sign a message the headers still uses SHA1. If I force
Hi,
I've have a OpenGPG smartcard version 2.0 and I would generate digests
stronger than SHA1.
I've added personal-digest-preferences SHA256 to my gpg.conf file,
but when I sign a message the headers still uses SHA1. If I force with
--digest-algo (which is not recommended according to the doc
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Hi,
I've been researching the archives for the past week after receiving
my OpenPGP v2.0 smartcard from Kernelconcepts. Problem seems to
revolve around the reader, but between by two systems OpenSUSE 11.2
(gnupg 2.0.13) and Mac OS X 10.5.8 (MacGPG
Hi,
I've been researching the archives for the past week after receiving
my OpenPGP v2.0 smartcard from Kernelconcepts. Problem seems to
revolve around signing, but between by two systems OpenSUSE 11.2
(gnupg 2.0.13) and Mac OS X 10.5.8 (MacGPG/gnupg 2.0.14) I have
slightly different results
card.
Most likely the card is using a ECH0064 compliant structure...
Could this be helpfull and is there a solution to use this card with gnupg?
Fabio
--
View this message in context:
http://old.nabble.com/Use-DINSIG-SmartCard-tp27018282p27131962.html
Sent from the GnuPG - User mailing list
On Sat, 9 Jan 2010 12:24:16 -0800 (PST), fava64 wrote:
Does this mean it doesn't work or does this mean that I did not understand
anything?
That probably means that your card does not follow the DIN V 66291-1
(aka DINSIG) as implemented by scdaemon.
Shalom-Salam,
Werner
--
Die Gedanken
Hi,
I'm the prowed owner of a DINSIG SmartCard (due to professional reasons),
and I'd like to use it on my Linux Ubuntu 9.10 System with a Cherry ST-2000
USB card-reader.
OpenGPG cards are well recognized by gpg and gpg2. In contrast, the
commandline tool gpg says:
f...@desk:~$ gpg --card
On Mon, 4 Jan 2010 11:49:31 -0800 (PST), fava64 wrote:
f...@desk:~$ gpg2 --card-status
Application ID ...: FF7F00
gpg: this is a DINSIG compliant card
gpg: not an OpenPGP card
Right. You need to use gpgsm for the X.509 keys as used with these
cards:
gpgsm --learn-card
to read the
APPTYPE DINSIG
OK
I could not see any key appear in Kleopatra (Ubuntu 9.10, KDE4) or somewhere
else
(gpg2 --list-keys)
Does this mean it doesn't work or does this mean that I did not understand
anything?
Fabio
--
View this message in context:
http://old.nabble.com/Use-DINSIG-SmartCard
Werner Koch wrote:
On Wed, 16 Dec 2009 16:27:29 +0100, Marco Steinacher wrote:
option (scdaemon) seem to work. I have set all timeouts to very low
values but the PIN is still cached forever (by the card?), as long as
There is no cache for a PIN. A card is usually unlocked after the PIN
Olav Seyfarth wrote:
Hi Marco,
I'm using gnupg with an OpenPGP smartcard since a few days now and
basically it works very well. However, one thing bothers me a bit:
Neither the cache-timeout options (gpg-agent) nor the card-timeout
option (scdaemon) seem to work. I have set all timeouts
On Thu, 17 Dec 2009 11:27:53 +0100, marco+gn...@websource.ch wrote:
As I wrote in my posting I have tried to use this option but it does not
work. I added 'card-timeout 15' to my scdaemon.conf and nothing happens
15 seconds after accessing the card. The card remains unlocked as long
Actually
Werner Koch wrote:
On Thu, 17 Dec 2009 11:27:53 +0100, marco+gn...@websource.ch wrote:
As I wrote in my posting I have tried to use this option but it does not
work. I added 'card-timeout 15' to my scdaemon.conf and nothing happens
15 seconds after accessing the card. The card remains
Hi,
I'm using gnupg with an OpenPGP smartcard since a few days now and
basically it works very well. However, one thing bothers me a bit:
Neither the cache-timeout options (gpg-agent) nor the card-timeout
option (scdaemon) seem to work. I have set all timeouts to very low
values but the PIN
On Wed, 16 Dec 2009 16:27:29 +0100, Marco Steinacher wrote:
option (scdaemon) seem to work. I have set all timeouts to very low
values but the PIN is still cached forever (by the card?), as long as
There is no cache for a PIN. A card is usually unlocked after the PIN
as been given until the
On Wed, 18 Nov 2009 13:13, nils.faer...@kernelconcepts.de said:
Errr... you need the OpenPGP smart card to us it with GnuPG as a
key-storing smart card. This does not work just with any card ;)
Actually the Belgian ID card will work with gpgsm and gpg-agent's Secure
Shell support. The cards
Hi there,
I'm new to the list and actually trying to get my Smartcard working
for encryption, using the Shell Token V2 from gemalto.
If I try to generate a key or to change the password of the card, I
get errors (see debug below).
I bought a OpenPGP SmartCard V2 from kernel concepts
Hello !
I'm trying for the first time GPG with a SmartCard (chip card) and it
doesn't work despite the device is recognized.
I'm trying with my ID card and with my bank card, but none works.
I get this message:
=== Begin Windows Clipboard ===
gpg: detected reader `ACS CCID USB
Laurent Jumet schrieb:
Hello !
Hi!
I'm trying for the first time GPG with a SmartCard (chip card) and it
doesn't work despite the device is recognized.
I'm trying with my ID card and with my bank card, but none works.
I get this message:
=== Begin Windows Clipboard ===
gpg
On Mon, 19 Oct 2009 20:55, tux.tsn...@free.fr said:
Could you tell me if you've a debug tools to test reader's keypad with a
GnuPG smartcard V2 ?
No I don't have any special tools. I debugged it by changing
ccid-driver.c. On a higher level there is gpg-connect-agent:
SCD SERIALNO
OK
before, but haven't tried this yet.
LANG=C gpg
to get English messages.
As I am currently using gpg4win due to the fact, that no linux gnupg2 I
tested so far does work reliably with the smartcard, this does
unfortunately not work.
Import the public key and run gpg --card-status once
All I have is the cryptical_name.gpg on some rescued USB stick. Just,
how
do I get this key back on my card please?
Import the public key and run
gpg --edit-key KEYID
the enter the command bkuptocard.
Thanks to the help of Mr. Donnachie I am now able to run gnupg2 under
linux, even
a smartcard is that this it is not possible.
Shalom-Salam,
Werner
--
Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz.
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users
Hello,
I am currently struggeling with smartcard and gnupg. The basic stuff
works, but where it gets interesting the howtos I've found end and I am
not able to figure out how to do it correctly:
Scenario 1:
I have created a key on the disk (ordinary way, without card) and now
decide, that I
501 - 600 of 802 matches
Mail list logo
