Change OpenPGP Smartcard PIN retry counter
Andrew Gallagher
andrewg at andrewg.com
Wed Nov 19 22:43:15 CET 2025
On 19 Nov 2025, at 21:05, Borden via Gnupg-users <gnupg-users at gnupg.org> wrote:
>
> What's the control on this to stop a bad actor from stealing an OpenPGP card and setting the reset count to 99999? I know you alluded to hardware implementation, but does the spec require the level 2 password to change this, if it can?
You need the admin PIN to change settings on zeitcontrol cards. The admin PIN retry count is hardcoded to 10 and can’t be increased.
A
More information about the Gnupg-users
mailing list