Use the same passphrase for PGP and SSH keys and get prompted only once by gpg-agent

Pierre Neidhardt ambrevar at
Tue Feb 13 15:03:11 CET 2018

Werner Koch <wk at> writes:

> You may now wonder why this does not happen when you decrypt a mail,
> reply to it and sign the reply.  Two subkeys (or the primary and the
> encryption subkey) are involved in this workflow.  Because this is so
> common, gpg-agent knows about it and tries the last passphrase used for
> any of the the subkeys of a key.  It does not do this for an
> authentication subkey, though.  Thus you have to enter it again for ssh.

Thanks for the detailed answer.  But why not doing it for SSH then?
Just because it's less common?  Would there be any way to configure this?

Pierre Neidhardt

War spares not the brave, but the cowardly.
		-- Anacreon
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 487 bytes
Desc: not available
URL: <>

More information about the Gnupg-users mailing list