On Sun, 26 Aug 2018 00:31, gnupg-users@gnupg.org said:
> decrypted file itself could/would be read by a third party. The session
> key is, in this moment, the least problematic thing on your system.
Right. We assume physical security. The connection between the card
reader and the host is not e
On Fri, Aug 24, 2018 at 2:38 PM Damien Goutte-Gattat
wrote:
>
> On 08/24/2018 07:47 AM, Martin T wrote:
> > One more small question- in the output of "gpg --list-keys" or "gpg
> > --list-secret-keys" I see two keys, but in the output of
> > "gpg-connect-agent 'keyinfo --list' /bye" or "ls
> > ~/.g
Thanks for clarification!
On Mon, Aug 27, 2018 at 11:51 AM, Werner Koch wrote:
> The connection between the card reader and the host is not encrypted
> because that would require a key setup first and that would also be
> subject to key logging.
The host could provide a public encryption key to