Yubico Forum

Re: Integration with GPG?

2010-01-18T02:43:27+01:00

I guess I was hoping for some kind of gpg plugin where verification of your OTP does something like causes the server to send your gpg pass back via the encrypted session, which is then passed to GPG for use when decrypting the key. A long shot I know, but it'd be interesting

Statistics: Posted by jefferai — Mon Jan 18, 2010 2:43 am

Re: Integration with GPG?

2010-01-18T01:45:40+01:00

Just like with TrueCrypt we know that quite a few Yubikey users use the static mode for GPG. The passphrase is static so there is not very much we can do about it. The recomendation is to use a password primed with a long string generated by the Yubikey.

Password foobar
Yubikey static string hcdeuhvubbrrtjjldgrlbcfhlckvvjeeg
Gives passphrase foobarhcdeuhvubbrrtjjldgrlbcfhlckvvjeeg

I do agree - it should be mentioned that it is static mode only. I'll make sure that gets updated.

Regards,
JakobE
Hardware- and firmware guy @ Yubico

Statistics: Posted by Jakob — Mon Jan 18, 2010 1:45 am

Integration with GPG?

2010-01-17T21:23:36+01:00

Hi there,

On Yubico's site it claims that the YubiKey works with GPG...but I can't seem to find evidence of this anywhere. Is there any way to integrate the two, other than programming the YubiKey secondary identity to fill in the GPG password (which I don't want to do)?

Thanks!

Statistics: Posted by jefferai — Sun Jan 17, 2010 9:23 pm