[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: KISS gpg



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Hi,

On 31/10/19 5:58 am, Nicolas George wrote:
> Is there somewhere in Debian a KISS version of GnuPG or something 
> compatible?
> 
> The current default version of GnuPG, since 2015, necessarily uses
> a client-server agent to access the private keys. While it is
> convenient and secure for everyday use, but for some tasks, the
> efforts it makes to protect my files from myself prevent me from
> doing the tasks I want.
> 
> As a short-term solution, does anyone know how to add a pass phrase
> to a private key while exporting it, without changing it on the
> storage?

If I understand correctly, the agent is getting in your way.

Killing the agent /might/ be your answer:

   gpgconf --kill gpg-agent

I think your private key has a pass phrase, but the agent is providing
the answer without you needing to and that gives you the impression
that it isn't protected.

If it isn't gpg's agent that is getting in your way, it might be the
gnome keyring daemon instead.

   /usr/bin/gnome-keyring-daemon


Seahorse /may/ be useful too.

   /usr/bin/seahorse

If you kill all agents to stop them interfering, then use the
- --homedir option of gpg with a copy of your files, I think you will
have what you need.

Cheers
A.
-----BEGIN PGP SIGNATURE-----

iHUEAREIAB0WIQTJAoMHtC6YydLfjUOoFmvLt+/i+wUCXbr56wAKCRCoFmvLt+/i
+2g8APwKgzhZTT6NNnALl100R6OmEQVZrSuGtSSET3dN3Yn6/wD/Q90hiOx4+sB7
WbJ6ARpbR9xhiSqFGb+zzqPjq3JXjUQ=
=5Gnd
-----END PGP SIGNATURE-----


Reply to: