gpg-preset-passphrase installation and usage
Walia, Gaurav (333G)
gaurav.walia at jpl.nasa.gov
Sat Apr 13 12:42:22 CEST 2019
Ok. Did some googling came up with the following. Could someone confirm that I’m doing this correctly?
Objective: To save passphrase in cache to an unattended machine so that it doesn’t time out the credentials. Specifically, using https://github.com/docker/docker-credential-helpers, with setup https://github.com/docker/docker-credential-helpers/issues/102#issuecomment-388634452.
Steps:
use gpg-preset-passphrase
Current Setup
* ~/.gnupg/gpg-agent.conf
* pinentry-program /usr/bin/pinentry-curses
* max-cache-ttl 60480000
* default-cache-ttl 60480000
* allow-preset-passphrase
* gpg --version
* gpg (GnuPG) 2.0.22
* libgcrypt 1.5.3
* Copyright (C) 2013 Free Software Foundation, Inc.
* License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html>
* This is free software: you are free to change and redistribute it.
* There is NO WARRANTY, to the extent permitted by law.
*
* Home: ~/.gnupg
* Supported algorithms:
* Pubkey: RSA, ?, ?, ELG, DSA
* Cipher: IDEA, 3DES, CAST5, BLOWFISH, AES, AES192, AES256, TWOFISH,
* CAMELLIA128, CAMELLIA192, CAMELLIA256
* Hash: MD5, SHA1, RIPEMD160, SHA256, SHA384, SHA512, SHA224
* Compression: Uncompressed, ZIP, ZLIB, BZIP2
* gpg2 --fingerprint --fingerprint name at domain.com
* pub 2048R/12312312 2019-03-23
* Key fingerprint = 4567 4567 4567 4567 4567 4567 4567 4567 4567 4567
* uid Name <name at domain.com>
* sub 2048R/11121314 2019-03-23
* Key fingerprint = 8910 8910 8910 8910 8910 8910 8910 8910 8910 8910
Updated Setup using gpg-preset-passphrase only
* ~/.gnupg/gpg-agent.conf
* We should be able to remove the first 3 line items since we are only using gpg-preset-passphrase
* Final file contents
* allow-preset-passphrase
* Reload gpa-agent.conf file
* gpg-connect-agent reloadagent /bye
* Setup gpg-preset-passphrase
* gpg-preset-passphrase --preset 8910891089108910891089108910891089108910
* Now when you login to that key and enter the passphrase It should cache it until you issue the following command to remove it.
* gpg-preset-passphrase —forget 8910891089108910891089108910891089108910
Question:
1. Is the updated setup correct in my assumption for the setup?
Thank you in advance for taking the time to help, it is greatly appreciated.
Gaurav
From: Gaurav walia <gaurav.walia at jpl.nasa.gov<mailto:gaurav.walia at jpl.nasa.gov>>
Date: Friday, April 12, 2019 at 3:09 PM
To: "gnupg-users at gnupg.org<mailto:gnupg-users at gnupg.org>" <gnupg-users at gnupg.org<mailto:gnupg-users at gnupg.org>>
Subject: gpg-preset-passphrase installation and usage
Hello,
Very new to gpg. I’m attempting to use gpg-preset-passphrase. But uncertain how to go about enabling it for usage. Could someone direct me or provide me some instructions in how to go about enabling gpg-preset-passphrase?
I have the following version installed:
gpg --version
gpg (GnuPG) 2.0.22
libgcrypt 1.5.3
Copyright (C) 2013 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.
Home: ~/.gnupg
Supported algorithms:
Pubkey: RSA, ?, ?, ELG, DSA
Cipher: IDEA, 3DES, CAST5, BLOWFISH, AES, AES192, AES256, TWOFISH,
CAMELLIA128, CAMELLIA192, CAMELLIA256
Hash: MD5, SHA1, RIPEMD160, SHA256, SHA384, SHA512, SHA224
Compression: Uncompressed, ZIP, ZLIB, BZIP2
Gaurav
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnupg-users/attachments/20190413/dc2b0f64/attachment.html>
More information about the Gnupg-users
mailing list