<html><head></head><body>I think this can be configured:<br>
<br>
ykman openpgp touch enc on<br>
ykman openpgp touch sig on<br>
<br>
Franck<br><br><div class="gmail_quote">Le 8 janvier 2020 18:35:20 GMT+01:00, Andrew Gallagher <andrewg@andrewg.com> a écrit :<blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;">
<pre class="k9mail">On 2020/01/08 17:29, Franck Routier (perso) wrote:<br><blockquote class="gmail_quote" style="margin: 0pt 0pt 1ex 0.8ex; border-left: 1px solid #729fcf; padding-left: 1ex;"> Notice that some features, like the metal contact toggle on some yubikey<br> can mitigate the problem of having an attacker with full local access.<br> You then have to touch the key each time you want to use it, so<br> illegitimate access would be noticed.<br></blockquote><br>On my yubikey at least, the touch contact is only used for the FIDO 2FA<br>- the PGP smartcard feature is secured by PIN as per any other smartcard.<br></pre></blockquote></div><br>
-- Envoyé de /e/ Mail.</body></html>