Notes from the first OpenPGP Summit

Simon Josefsson simon at
Tue Apr 28 16:14:06 CEST 2015

"Neal H. Walfield" <neal at> writes:

> Hi Simon,
> We've documented the problem at .

Thanks -- another workaround, alas.

> The solution is to fix Gnome Keyring :).  I've spoken with Stef, the
> main developer of GKR, and he confirmed that the only reason GKR MITMs
> GPG Agent is so that it can intercept prompts for the password to
> supply any cached value.  The solution is to enhance pinentry so that
> if GKR is available it caches the password with GKR.  This requires a
> few modifications to GnuPG proper as well as enhancements to pinentry.
> I'm working on this and it should be done shortly.  The GPG Tools
> people also need this functionality in GPG 2.0 so it will also be
> backported.  We hope to coordinate with Debian to get the fixed
> versions of GPG and GKR in the next point release of Jessie.

Great, I'm really looking forward to a proper fix to this problem.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 472 bytes
Desc: not available
URL: </pipermail/attachments/20150428/6b4f2251/attachment.sig>

More information about the Gnupg-users mailing list