using an expired GPG key with ssh

stebe at mailbox.org stebe at mailbox.org
Tue Feb 16 13:56:37 CET 2016


Hi Marko,

Marko Bauhardt:
> 

>> According to the gnupg.info manual it is possible to use the gpg.agent
>> "as a drop-in replacement" for the ssh-agent (and I'd prefer doing
>> that)
> 
> I know that. But i saw not really an advantage to using the gpg agent, except of the using of TTL’s for keys i want to add.
> What are your points to use the gpg-agent instead the ssh-agent?
> 

Using (or trying to setup) gpg-agent as a replacement for ssh-agent is
just based on one idea: if you deal with gpg-keys, have the "original"
application handle all key-related stuff, it was designed for doing so.
If nothing else interferes, less errors should occur and less attack
surface is presented. It merely is intuition, not science.

Cheers,

Stebe




More information about the Gnupg-users mailing list