On Tue, 29 Jun 2010 21:40:37 +0200, Carsten Aulbert <carsten.aulb...@aei.mpg.de> wrote: > My problem is relatively simple. We provide a (Debian) repository for our > colleagues as well as ourselves and would like to sign it (for the experts: > reprepro's export option). Of course one could either copy around the secret > keyring and start the agent remotely or type the passphrase many times, but > straight from the FAQ this is not a good idea(TM). > > Now the notorious question: Does anyone know how to forward the agent's > socket > to the remote machine? I've briefly tried socat (remote unix socket to tcp > port, ssh tunnel of this port and then socat again to link the forwarded port > to the existing socket) but so far to no avail.
Hey, Carsten. It just occurred to me that maybe you could use sshfs to accomplish this. You could mount the needed reprepro directory locally with sshfs, and then sign the needed files locally without having to actually move the files around or forward the gnupg agent. I just tried signing something over an sshfs mount and it seemed to work fine. sshfs is fabulous. hth. jamie.
pgpCI7FfiFYni.pgp
Description: PGP signature
_______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
