Second OpenPGP-card
Ingo Klöcker
kloecker at kde.org
Thu Feb 29 13:40:53 CET 2024
On Mittwoch, 28. Februar 2024 17:30:21 CET Werner Koch via Gnupg-users wrote:
> On Wed, 28 Feb 2024 10:55, Matthias Apitz said:
> > purism at pureos:~$ cat .password-store/.gpg-id
> > CCID L5
>
> Which means that it encrypts to "CCID L5". pass parses this using
>
> while read -r gpg_id; do
> gpg_id="${gpg_id%%#*}" # strip comment
> [[ -n $gpg_id ]] || continue
> GPG_RECIPIENT_ARGS+=( "-r" "$gpg_id" )
> GPG_RECIPIENTS+=( "$gpg_id" )
> done
>
> The good thing with pass is that it is easy to read.
"CCID L5" doesn't strike me as a sufficiently unique identifier for a key. If I
add a (secondary) user ID "CCID L5" to my key and trick Matthias into
importing it won't pass start encrypting their passwords for my key?
My ~/.password-store/.gpg-id contains the fingerprint of my password encryption
key.
Regards,
Ingo
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 228 bytes
Desc: This is a digitally signed message part.
URL: <https://lists.gnupg.org/pipermail/gnupg-users/attachments/20240229/3a380a19/attachment-0001.sig>
More information about the Gnupg-users
mailing list