| Yubico Forum https://forum.yubico.com/ |
|
| gpg-agent (using as ssh agent) ask passphrase again after... https://forum.yubico.com/viewtopic.php?f=26&t=1808 |
Page 1 of 1 |
| Author: | the2nd [ Tue Mar 31, 2015 7:59 pm ] |
| Post subject: | gpg-agent (using as ssh agent) ask passphrase again after... |
Hi, i'm currently implementing yubikey support in OTPme (http://www.otpme.org). i got HOTP and TOPT (Yubico Authenticator) working without problems. i've also added my gpg keys to the yubikey neo and use them with gpg-agent as ssh-agent replacement. now i stumbled about the issue that the gpg-agent wants me to re-enter my passphrase after i've pressed the button (slot 1) to send my HOTP OTP as a second factor at ssh login. i've checked the gpg-agent docs but haven't found anything related. so i want to ask if this is by (yubikey) design or an issue? regards the2nd |
|
| Author: | Tom2 [ Wed Apr 01, 2015 1:20 pm ] |
| Post subject: | Re: gpg-agent (using as ssh agent) ask passphrase again afte |
That is because when you use the HID interface the CCID interface is ejected and then insert again subsequently. Thus the OpenPGP applet is being re-initialized and you get prompted for pass-phrase again. |
|
| Author: | the2nd [ Wed Apr 01, 2015 8:31 pm ] |
| Post subject: | Re: gpg-agent (using as ssh agent) ask passphrase again afte |
i thought that it must be something like that but i was not sure if this is a technical limitation or a design decision. however its a sad situation if one wants to use it this way for ssh logins. without being re-asked for the passphrase it would be a really sane solution IMHO. |
|
| Page 1 of 1 | All times are UTC + 1 hour |
| Powered by phpBB® Forum Software © phpBB Group https://www.phpbb.com/ |
|