Adrian 'Dagurashibanipal' von Bidder
Tue Apr 29 18:09:02 2003
Content-Description: signed data
On Friday 25 April 2003 18:47, Lukasz Stelmach wrote:
> Greetings All.
> Recently i have came accross gpg gpg-agent. It seems to be very usefull=
> but... Would it be possible to use (theoretically, after some coding)=3D=
> ssh-agent to forward gpg keys. For example at my school there is=3D20
> computer laboratory where all machines run w2k. There are also some=3D20
> unix machines that i ssh to. I don't want to keep my secret key on unix=
> account because it is distributed via nfs, therefore is very insecure.=3D=
> Since i use putty with pagent it could be great to use the same=3D20
> software for gpg keys.
> What do you think about such integration?
Hmmm. I think it is a great idea - though I would not do it by forwarding t=
key itself, but by sending the to-be-encrypted data around, thus keeping th=
secret key on the machine it was originally stored.
IIRC there was someone around working on using gpg keys for ssh=20
authentication, so at least one person knows much about both gpg and ssh,=20
perhaps he would be interested? I certainly would like the idea as I use ss=
this email is protected by a digital signature: http://fortytwo.ch/gpg
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
-----END PGP SIGNATURE-----
Signature policy: http://fortytwo.ch/legal/gpg/email.20020822?version=1.3&md5sum=14ca616f14682a82cb9cc25c9b34a10d