OpenPGP Smartcard and SSH ?!

Matthias Barmeier matthias.barmeier at sourcepark.de
Thu Apr 26 21:53:14 CEST 2007 

Werner Koch wrote:
> On Wed, 25 Apr 2007 13:33, matthias.barmeier at sourcepark.de said:
> 
>> If I succeed I could send me my debian howto that will be used in my
>> company if you like !?
> 
> In general, yes.  However we need a copyright disclaimer as it should go
> into the manual. 
> 
No problem, suggest a license tyoe please because I am really
unexperienced with document licenses.

>> What could I check to find the setup bug ?
> 
> Add "debug 1024" to scdaemon.conf and define a log file for sdaemon.
> This allows to see the messages exchanged between scdaemon and gpg-agent.
> 
> You should see something like this:
> 
>   4 - 2007-04-26 14:05:01 scdaemon[2050.0] DBG: <- GETATTR $AUTHKEYID
>   4 - 2007-04-26 14:05:01 scdaemon[2050.0] DBG: -> S $AUTHKEYID OPENPGP.3
>   4 - 2007-04-26 14:05:01 scdaemon[2050.0] DBG: -> OK
>   4 - 2007-04-26 14:05:01 scdaemon[2050.0] DBG: <- GETATTR SERIALNO
>   4 - 2007-04-26 14:05:01 scdaemon[2050.0] DBG: -> S SERIALNO D27[...]
>   4 - 2007-04-26 14:05:01 scdaemon[2050.0] DBG: -> OK
>   4 - 2007-04-26 14:05:01 scdaemon[2050.0] DBG: <- READKEY OPENPGP.3
>   4 - 2007-04-26 14:05:01 scdaemon[2050.0] DBG: -> [ 44 20 28 31 [...]
>   4 - 2007-04-26 14:05:01 scdaemon[2050.0] DBG: -> OK
> 
> The $AUTHKEYID info is important - gpg-agent asks for it to see whether
> the card supports SSH authentication.  READKEY returns the the public
> key and is used to display the fingerprint with ssh-add -l
> 

SOLVED !

I reinstalled the gpgsm package because my scdaemon.conf were missing,
and after this everything works.

Thanks a lot !

Ciao
	Matze


-- 
-------------------------------------------------------
SOURCEPARK mbH Gesellschaft
für Softwareentwicklung

Dipl.-Inform. Matthias Barmeier
Helmholtzstr. 2 - 9, Gebäude 6 (M)
10587 Berlin

Tel.:   +49 (0) 30 / 39 80 68 30
Fax:    +49 (0) 30 / 39 80 68 39
e-mail: matthias.barmeier at sourcepark.de
www:    www.sourcepark.de
------------------------------------------------------

Diese Email kann vertrauliche und/oder rechtlich
geschützte Informationen enthalten. Wenn sie nicht der
richtige Adressat sind oder diese E-Mail irrtümlich
erhalten haben, informieren Sie bitte sofort den
Absender und vernichten Sie diese E-Mail. Das unerlaubte
Kopieren sowie die unbefugte Weitergabe dieser E-Mail
ist nicht gestattet.

More information about the Gnupg-users mailing list