"gpg --card-edit" with multiple card readers (Yubikey)

Werner Koch wk at gnupg.org
Thu Jul 27 18:07:19 CEST 2023

On Mon, 10 Jul 2023 10:48, Juanjo said:

> There are other setting managed via "ykman" not provided by "gpg-card" :
> * The number of PIN retry attempts: ykman openpgp access set-retries
> * The touch policy: ykman openpgp keys set-touch

Easy to add; do you want to file a feature request over at dev.gnupg.org

> Unfortunately, "gpg-card" doesn't provide the "key-attr" command we
> used to change from default rsa2048 to rsa4096.

You don't need it because this is now done on the fly (might require to
enter the Admin PIN twice, though).  See also

  gpg/card> help generate
  GENERATE [--force] [--algo=ALGO{+ALGO2}] KEYREF
  Create a new key on a card.
  Use --force to overwrite an existing key.
  Use "help" for ALGO to get a list of known algorithms.
  For OpenPGP cards several algos may be given.
  Note that the OpenPGP key generation is done interactively
  unless a single ALGO or KEYREF are given.
  [Supported by: OpenPGP, PIV]



The pioneers of a warless world are the youth that
refuse military service.             - A. Einstein
-------------- next part --------------
A non-text attachment was scrubbed...
Name: openpgp-digital-signature.asc
Type: application/pgp-signature
Size: 227 bytes
Desc: not available
URL: <https://lists.gnupg.org/pipermail/gnupg-users/attachments/20230727/516a4771/attachment.sig>

More information about the Gnupg-users mailing list