(no subject)

Werner Koch wk at gnupg.org
Wed Dec 15 19:06:06 CET 2004


On Wed, 15 Dec 2004 11:00:58 -0500 (EST), Adam Schreiber said:

> The developers of Seahorse were wondering about the status of a couple
> items and the general direction GPGME is headed in.  The items are:

>   * Exporting Secret Keys

There will be no way of exporting secret keys. Yes, I said so 2 years
ago but meanwhile I realized that secret keys are too sensitive and we
should not make it too easy for users to tinker with them.  If you
need to copy secret keys forth and back between machines, something is
wrong with your general setup or you have real special reasons for
that which can and should be satisfied by well-thought out protocols.

In particular, in gnupg 2, the gpg or gpgsm processes don't have any
knowledge of the secret keys but delegate all tasks involving them to
a specialized daemon (gpg-agent).  Specialized tools working jointly
with gpg-agent are to be used to manage secret keys.

If a GUI needs to cope with that it should run tehse tools directly.

>   * Manipulation of image associated with a key

Yes, we will eventually support them.


Shalom-Salam,

   Werner




More information about the Gnupg-devel mailing list