gpg-agent automatically use passphrase for signing subkey?
Chris Poole
lists at chrispoole.com
Sat Jul 23 18:32:44 CEST 2011
2011/7/23 Ingo Klöcker <kloecker at kde.org>:
> There is already the option --ignore-cache-for-signing (curiously the
> corresponding option for decryption is missing, i.e. it's not possible to use
> the cache for signing but not for decryption), so why not add another option
> like --share-signing-and-decryption-cache? (I guess, if I really wanted this I
> should provide a patch. :-) )
That was precisely my point; if anything, entering the passphrase twice is more
of a security risk than storing it for 2 subkeys at the same time (risk of being
overlooked, etc.).
Cheers
Chris Poole
[PGP BAD246F9]
More information about the Gnupg-users
mailing list