no password needed to export secret-keys?
Mika Suomalainen
mika.henrik.mainio at hotmail.com
Mon Jun 4 17:24:29 CEST 2012
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi,
On 04.06.2012 17:27, Sam Smith wrote:
>
> Hi.
>
> When I use the command: gpg --armor --output <document name>
> --export-secret-keys <KeyID>
>
> shouldn't I be asked for the secret key's password before Export is
> allowed to complete? I've tried this on both Windows 7 and Ubuntu
> Linux and I'm never asked for a password. This doesn't seem secure
> to me. I would think that Export should not be allowed to occur
> until after the key's password is provided. Do I have something
> mis-configured? Can you explain how this is secure?
>
>
> Thanks for your assistance.
This would be a nice feature to have. If you don't receive any replies
about this, you could report bug to Ubuntu about this and mark it as
security problem.
> ubuntu-bug gnupg
- --
[Mika Suomalainen](https://mkaysi.github.com/) ||
[gpg --keyserver pool.sks-keyservers.net --recv-keys
4DB53CFE82A46728](http://mkaysi.github.com/PGP/key.txt) ||
[Why do I sign my
emails?](http://mkaysi.github.com/PGP/WhyDoISignEmails.html) ||
[Please don't send
HTML.](http://mkaysi.github.com/articles/complaining/HTML.html) ||
[This signature](https://gist.github.com/2643070#file_icedove.md) ||
[Please reply below this
line](http://mkaysi.github.com/articles/complaining/topposting.html)
____________________________
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Homepage: http://mkaysi.github.com/
Comment: gpg --keyserver pool.sks-keyservers.net 82A46728
Comment: Public key: http://mkaysi.github.com/PGP/key.txt
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/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=oM3u
-----END PGP SIGNATURE-----
More information about the Gnupg-users
mailing list