OpenPGP Smartcard and SSH ?!
Werner Koch
wk at gnupg.org
Thu Apr 26 14:08:29 CEST 2007
On Wed, 25 Apr 2007 13:33, matthias.barmeier at sourcepark.de said:
> If I succeed I could send me my debian howto that will be used in my
> company if you like !?
In general, yes. However we need a copyright disclaimer as it should go
into the manual.
> What could I check to find the setup bug ?
Add "debug 1024" to scdaemon.conf and define a log file for sdaemon.
This allows to see the messages exchanged between scdaemon and gpg-agent.
You should see something like this:
4 - 2007-04-26 14:05:01 scdaemon[2050.0] DBG: <- GETATTR $AUTHKEYID
4 - 2007-04-26 14:05:01 scdaemon[2050.0] DBG: -> S $AUTHKEYID OPENPGP.3
4 - 2007-04-26 14:05:01 scdaemon[2050.0] DBG: -> OK
4 - 2007-04-26 14:05:01 scdaemon[2050.0] DBG: <- GETATTR SERIALNO
4 - 2007-04-26 14:05:01 scdaemon[2050.0] DBG: -> S SERIALNO D27[...]
4 - 2007-04-26 14:05:01 scdaemon[2050.0] DBG: -> OK
4 - 2007-04-26 14:05:01 scdaemon[2050.0] DBG: <- READKEY OPENPGP.3
4 - 2007-04-26 14:05:01 scdaemon[2050.0] DBG: -> [ 44 20 28 31 [...]
4 - 2007-04-26 14:05:01 scdaemon[2050.0] DBG: -> OK
The $AUTHKEYID info is important - gpg-agent asks for it to see whether
the card supports SSH authentication. READKEY returns the the public
key and is used to display the fingerprint with ssh-add -l
Salam-Shalom,
Werner
More information about the Gnupg-users
mailing list