From: Simon Josefsson <jas@extundo.com>
Cc: ding@gnus.org
Subject: Re: mml-secure: function doubled, passwd chache, use-my-public key
Date: Sat, 02 Jul 2005 21:01:47 +0200 [thread overview]
Message-ID: <iluhdfdf2w4.fsf@latte.josefsson.org> (raw)
In-Reply-To: <87hdfe1jpz.fsf@wheatstone.g10code.de> (Werner Koch's message of "Fri, 01 Jul 2005 20:09:44 +0200")
Werner Koch <wk@gnupg.org> writes:
>> What more than setting pgg-cache-passphrase to nil do you want?
>
> No, because Gnus will ask for the passphrase and the passphrase will
> actually end up in the message if you accidently use it with enabled
> gpg-agent.
That doesn't happen here. With pgg-c-p set to nil, Gnus won't ask me
for a passphrase, the pinentry dialog pop up instead (the first time),
and then message is signed. No passphrase in the message either.
>> Then why isn't used automatically? To get it working I had to start
>
> Isn't that a packaging feature?
Right. It was just a rant.
>> the daemon manually and add 'use-agent' to ~/.gnupg/gpg.conf.
>
> Without that many people would inadvertly send the passphrase with the
> message; consider the usual invocation pog gpg:
>
> (echo passphrase; cat message) | gpg --passphrase-fd 0 ... >out.msg
>
> so it is far safer to require a conscious decision from the user.
Ouch. OTOH, it seem wrong in the long run. Perhaps 'use-agent' can
be enabled in the template gpg.conf for future users. But it will
take a while to fix all applications... O well.
>> is hardly user friendly. When I log on my Debian box, ssh-agent is
>> started and I didn't do anything to make it run. Perhaps gpg-agent
>> can be started in a similar way. And there seem to be some font bug
>> in the pinentry dialog window, presumably Unicode related.
>
> The latest release 1.9.17 may indeed be started like ssh-agent and may
> actually replace ssh-agent (except for ssh v1 keys) - you can use a
> simple wrapper script named ssh-agent and everything works. See the
> info page.
Cool!
next prev parent reply other threads:[~2005-07-02 19:01 UTC|newest]
Thread overview: 18+ messages / expand[flat|nested] mbox.gz Atom feed top
2005-06-30 21:59 Uwe Brauer
2005-06-30 20:14 ` Adam Sjøgren
2005-06-30 22:20 ` Uwe Brauer
2005-07-01 14:01 ` Werner Koch
[not found] ` <87r7ejzetl.fsf-YB6e1s5WF/He5aOfsHch1g@public.gmane.org>
2005-07-01 7:45 ` Jochen Küpper
2005-07-01 9:55 ` Adam Sjøgren
2005-07-01 9:23 ` Simon Josefsson
2005-07-01 14:11 ` Werner Koch
[not found] ` <87psu239bo.fsf-nSUoxbSHa/NHjZm7OurPC6uB8pfgIIU7@public.gmane.org>
2005-07-01 14:30 ` Jochen Küpper
2005-07-01 17:58 ` Werner Koch
2005-07-01 14:43 ` Simon Josefsson
2005-07-01 18:09 ` Werner Koch
2005-07-02 19:01 ` Simon Josefsson [this message]
2005-07-04 11:56 ` Werner Koch
2005-07-07 13:52 ` Uwe Brauer
2005-07-11 19:24 ` Simon Josefsson
2005-07-07 19:10 ` verify signature (was: mml-secure: function doubled, passwd chache, use-my-public key) Uwe Brauer
2005-07-07 17:38 ` verify signature Arne Jørgensen
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=iluhdfdf2w4.fsf@latte.josefsson.org \
--to=jas@extundo.com \
--cc=ding@gnus.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).