(ssh|gpg)-agent

Tue Apr 29 18:09:02 2003

--Boundary-02=_bPqr+iSCzJrol2Q
Content-Type: text/plain;
  charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Content-Description: signed data
Content-Disposition: inline

On Friday 25 April 2003 18:47, Lukasz Stelmach wrote:
> Greetings All.
>
> Recently i have came accross gpg gpg-agent. It seems to be very usefull=
=3D20
> but...  Would it be possible to use (theoretically, after some coding)=3D=
20
> ssh-agent to forward gpg keys. For example at my school there is=3D20
> computer laboratory where all machines run w2k. There are also some=3D20
> unix machines that i ssh to. I don't want to keep my secret key on unix=
=3D20
> account because it is distributed via nfs, therefore is very insecure.=3D=
20
> Since i use putty with pagent it could be great to use the same=3D20
> software for gpg keys.
>
> What do you think about such integration?

Hmmm. I think it is a great idea - though I would not do it by forwarding t=
he=20
key itself, but by sending the to-be-encrypted data around, thus keeping th=
e=20
secret key on the machine it was originally stored.

IIRC there was someone around working on using gpg keys for ssh=20
authentication, so at least one person knows much about both gpg and ssh,=20
perhaps he would be interested? I certainly would like the idea as I use ss=
h=20
a lot.

cheers
=2D- vbi

=2D-=20
this email is protected by a digital signature: http://fortytwo.ch/gpg

--Boundary-02=_bPqr+iSCzJrol2Q
Content-Type: application/pgp-signature
Content-Description: signature

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)

iKcEABECAGcFAj6uo9tgGmh0dHA6Ly9mb3J0eXR3by5jaC9sZWdhbC9ncGcvZW1h
aWwuMjAwMjA4MjI/dmVyc2lvbj0xLjMmbWQ1c3VtPTE0Y2E2MTZmMTQ2ODJhODJj
YjljYzI1YzliMzRhMTBkAAoJEIukMYvlp/fWOcsAoMjh5+NEey3y5gHZU7AuhgIv
R2NMAKCHQJCaA+Ejis3igPmH0OAef7eQlw==
=XPzN
-----END PGP SIGNATURE-----
Signature policy: http://fortytwo.ch/legal/gpg/email.20020822?version=1.3&md5sum=14ca616f14682a82cb9cc25c9b34a10d

--Boundary-02=_bPqr+iSCzJrol2Q--