smartcard and ssh

Remco Post r.post at sara.nl
Fri Feb 2 14:00:23 CET 2007 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Werner Koch wrote:
> On Fri,  2 Feb 2007 11:15, r.post at sara.nl said:
> 
>> I've set the agent with ssh support, and it quite nicely manages my ssh
>> dsa key, but for some reason ssh-add -l does not show my smartcard rsa
>> key while gpg --card-status does work (as does signing e-mail with my
>> smartcard).
> 
> Do you have scdaemon installed?  If so, you should put
> 

mope, I didn't. I tried installing it (as part of the gpgsm package) but
the /usr/lib/gnupg/pcsc-wrapper seems to be missing in the package :(

> verbose
> debug 1024
> debug 2048
> log-file /home/foo/scdaemon.log
> 
> into the ~/.gnupg/scdaemon.conf and kill the scdaemon process.  Make
> sure that it really got killed.  Then do an "ssh-add -l" again and
> watch the log file.
> 

The log-file:

2007-02-02 13:41:20 scdaemon[5733] can't run PC/SC access module
`/usr/lib/gnupg/pcsc-wrapper': No such file or directory
scdaemon[5733.0x8096340] DBG: -> ERR 100663404 Card error <SCD>
scdaemon[5733.0x8096340] DBG: <- RESTART
scdaemon[5733.0x8096340] DBG: -> OK


> Note, that gpg-agent starts scdaemon and restarts it if has crashed.
> 
> 
> 
> Shalom-Salam,
> 
>    Werner
> 


- --
Met vriendelijke groeten,

Remco Post

SARA - Reken- en Netwerkdiensten                      http://www.sara.nl
High Performance Computing  Tel. +31 20 592 3000    Fax. +31 20 668 3167
PGP Key fingerprint = 6367 DFE9 5CBC 0737 7D16  B3F6 048A 02BF DC93 94EC

"I really didn't foresee the Internet. But then, neither did the
computer industry. Not that that tells us very much of course - the
computer industry didn't even foresee that the century was going to
end." -- Douglas Adams
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQCVAwUBRcM14irZkcVehrp5AQK+4wP/du5tH3w55xUIvpBirr4HbbAw3XWPUTgx
Ni5zwYqM1NEr5G9E+Dx81VaNXSiqcabtaZC9sG9iuqUCqGMA8t2N3jv9m4TZ/avi
fCWdTuB4RH1QEfgYKZdKzNDpmmInlAuai8/2CVone5mdz1t9G5vpc2uMb28NRwTS
PgBg5Oysf9I=
=aYNG
-----END PGP SIGNATURE-----

More information about the Gnupg-users mailing list