On 30.08.2011 20:40, Werner Koch wrote:
> On Tue, 30 Aug 2011 17:54, rich...@r-selected.de said:
>
>> keytocard, restore the backup, insert card #2, issue keytocard again.
>> Will that cause any problems in later GnuPG use as the cards' IDs are
>
> Possible. It will be easy to disable the check o
On Thu, Sep 1, 2011 at 06:11, Patryk Cisek wrote:
> Or just go ahead and compile it yourself.
Unfortunately I only have a 64 Gig hard drive and no space left to
install XCode :(
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/
On Tue, Aug 30, 2011 at 10:56:02PM +0200, Richard wrote:
> Thanks for all your help!
>
> I just noticed that on my mobile computer (running Mac OS X) I am
> still stuck with GnuPG 2.0.17 since MacGPG2 has not yet been updated.
> I will have to wait for an updated package before I can start moving
* Werner Koch [110831 08:45,
mID <877h5uozaa@vigenere.g10code.de>]:
> On Tue, 30 Aug 2011 20:40, go...@fsfe.org said:
>
> > AFAIR, 3072 bit keys have to be generated on the card. If you use
> > off-card generation, you are limited to 2048 bits.
>
> Really? That would be a bug.
I had thi
On Tue, 30 Aug 2011 20:40, go...@fsfe.org said:
> AFAIR, 3072 bit keys have to be generated on the card. If you use
> off-card generation, you are limited to 2048 bits.
Really? That would be a bug.
In case it really does not work the workaround is to first create a key
with 3072 bits on the card
On Tue, 30 Aug 2011 20:49, da...@systemoverlord.com said:
> No, the OpenPGP v2 card can only handle up to RSA-3072. Presumably
OpenPGP v2 card is just a spec; you need to look at the specific
implementation which most likely will be the Zeitcontrol card. That
card support up to 4096 bits. Righ
On Tue, 30 Aug 2011 20:58, k...@grant-olson.net said:
> tried to use two cards with the same key. gpg really wants you to have
> one card tied to one set of keys per computer.
2.1 will make this much simpler by separating the key material (or the
key stub) from the actual keyblock/certificate.
Thanks for all your help!
I just noticed that on my mobile computer (running Mac OS X) I am
still stuck with GnuPG 2.0.17 since MacGPG2 has not yet been updated.
I will have to wait for an updated package before I can start moving
my keys to smartcards.
Best,
Richard
___
On 8/30/11 2:44 PM, Hauke Laging wrote:
> Am Dienstag, 30. August 2011, 17:54:32 schrieb Richard:
>
>> Will that cause any problems in later GnuPG use as the cards' IDs are
>> different?
>
> At least no serious ones. You will probably have to make gpg read the card
> content by --card-status or
On Tue, Aug 30, 2011 at 2:56 PM, Richard wrote:
> On Tue, Aug 30, 2011 at 20:49, David Tomaschik
> wrote:
>
>> No, you can store a primary key. And you can use the 3 slots for any
>> purpose (though I believe they must all tie to the same primary key.).
>> It would be common to combine signing
Dear Richard,
* Richard [110830 20:30,
mID ]:
> Hello,
>
> for security reasons, I have decided to migrate my most important
> subkeys to smartcards. I have a number of questions regarding the
> transfer/migration.
I think this is a good decision.
> a) I've bought two OpenPGP smartcards (v
On Tue, 30 Aug 2011 17:54, rich...@r-selected.de said:
> a) I've bought two OpenPGP smartcards (v2). Their overprint says they
> support "RSA with up to 3072 bit". In the GnuPG 2.0.18 release notes
> one change was to "Allow generation of card keys up to 4096 bit". Does
> that apply to the OpenPGP
Hello,
On Tue, Aug 30, 2011 at 21:08, David Tomaschik wrote:
> No, I was just stating common practice. You could do a
> certification/primary key, a signing key, and an encryption key in the
> 3 slots.
are you sure about that? Everywhere I read the slots can only be used
for: signing, decryptio
On Tue, Aug 30, 2011 at 20:49, David Tomaschik wrote:
> No, you can store a primary key. And you can use the 3 slots for any
> purpose (though I believe they must all tie to the same primary key.).
> It would be common to combine signing & certification into one key
> (and I believe that is the
On Tue, Aug 30, 2011 at 11:54 AM, Richard wrote:
> Hello,
>
> for security reasons, I have decided to migrate my most important
> subkeys to smartcards. I have a number of questions regarding the
> transfer/migration.
>
> a) I've bought two OpenPGP smartcards (v2). Their overprint says they
> supp
Am Dienstag, 30. August 2011, 17:54:32 schrieb Richard:
> b) As far as I know, the cards can only store subkeys, i.e. no primary
> key.
Citing the documentation (--edit-key):
keytocard
Transfer the selected secret subkey (or the primary key if no subkey has been
selected) to a smartcard.
> W
Hello,
for security reasons, I have decided to migrate my most important
subkeys to smartcards. I have a number of questions regarding the
transfer/migration.
a) I've bought two OpenPGP smartcards (v2). Their overprint says they
support "RSA with up to 3072 bit". In the GnuPG 2.0.18 release notes
17 matches
Mail list logo