<div><div dir="auto">Hi, Werner, all.</div><div dir="auto"><br></div><div dir="auto">Please let me take this opportunity to ask you for trustable documentation, or any other resource, which could help interested users like myself in providing the gpg-agent with ssh client and daemon errands, on both fresh and not-so-fresh OS installs. Please consider SELinux contexts if possible.<br clear="all"><br>Regards,<br><br clear="all"><div dir="auto"><div dir="ltr" class="gmail_signature" data-smartmail="gmail_signature"><div dir="ltr">Marcio Barbado, Jr.<br></div><div dir="ltr"><br></div><div dir="ltr"><br></div></div></div></div><div><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Thu, 28 Mar 2024 at 07:01 Werner Koch via Gnupg-users <<a href="mailto:gnupg-users@gnupg.org" target="_blank">gnupg-users@gnupg.org</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-style:solid;padding-left:1ex;border-left-color:rgb(204,204,204)">On Thu, 28 Mar 2024 08:26, Damien Cassou said:<br>
<br>
> Is that a problem? Am I missing something important? It seems this<br>
> causes me the troubles mentioned at [1].<br>
<br>
Your subkeys are all stored on a smartcard. The primary key is online.<br>
This is as intended. If you remove the the primary private key<br>
(<keygrip>.key) You should see a '#' mark for the primary key.<br>
<br>
> My private master key is symlinked in ~/.gnupg/private-keys-v1.d:<br>
<br>
That is intended to work but has not been thoroughly tested.<br>
<br>
> [1] <a href="https://github.com/pinpox/pgp2ssh/issues/6" rel="noreferrer" target="_blank">https://github.com/pinpox/pgp2ssh/issues/6</a><br>
<br>
That reminds me that we have a function export_secret_ssh_key but it<br>
will always fail with a not-implemented error ;-). Noone of the core<br>
hackers felt a need for it. For example I have not used anything else<br>
than gpg-agent based ssh access since 2005.<br>
<br>
<br>
Shalom-Salam,<br>
<br>
Werner<br>
<br></blockquote></div></div></div><div><div><div class="gmail_quote"><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-style:solid;padding-left:1ex;border-left-color:rgb(204,204,204)">
<br>
-- <br>
The pioneers of a warless world are the youth that<br>
refuse military service. - A. Einstein<br>
_______________________________________________<br>
Gnupg-users mailing list<br>
<a href="mailto:Gnupg-users@gnupg.org" target="_blank">Gnupg-users@gnupg.org</a><br>
<a href="https://lists.gnupg.org/mailman/listinfo/gnupg-users" rel="noreferrer" target="_blank">https://lists.gnupg.org/mailman/listinfo/gnupg-users</a><br>
</blockquote></div></div>
</div>