ignore-cache-for-signing has no effect on gpg-agent
Jimmy C. Chau
chaujc at gmail.com
Mon Oct 31 17:17:27 CET 2011
Thanks for the explanation, Werner.
On Mon, Oct 31, 2011 at 6:22 AM, Werner Koch <wk at gnupg.org> wrote:
> On Sun, 30 Oct 2011 20:51, chaujc at gmail.com said:
> > Despite setting ignore-cache-for-signing on gpg-agent, the
> > key/passphrase appears to be cached when I use gpg to sign files.
> Gpg does not use gpg-agent for private key operations; it only uses
> gpg-agent for passphrase caching. It would be possible to extend gpg to
> ignore a passphrase cache for signing keys but that is a very special
> request and thus won't be done for the stable versions ( i.e. < 2.1).
> GnuPG 2.1 (which is in beta) really uses gpg-agent and thus
> ignore-cache-for-signing is effective.
> Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Gnupg-users