Re: cannot decrypt file symmetric encrypted
On Monday, August 6, 2018 9:28:21 AM CEST Stefano Tranquillini wrote: > i don't think that's the case. is there aa way to force the program to ask > passphrase? Try adding "--pinentry mode loopback" to your command. Maybe there is a problem with your installation / pinentry program so that it does not start or you are acidentally using a dummy / test pinentry which provides the wrong passphrase. -- Andre Heinecke | ++49-541-335083-262 | http://www.intevation.de/ Intevation GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 18998 Geschäftsführer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner signature.asc Description: This is a digitally signed message part. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: Encrypt USB-HDD with LUKS using OpenPGP smartcard?
On Wed, Aug 1, 2018 at 7:32 PM Peter Lebbing wrote: > AFAIK, this is just systemd delegating passphrase querying to the > physically present user. I suppose if you could somehow influence where > it got the passphrase from, there might be a way to achieve it, but I > have no idea how. That's all the direction I can provide. I have a similar setup where at boot time I use GnuPG to decrypt my drive with keys protected by GnuPG (instead of using LUKS). I have managed to instruct GnuPG to use `systemd-ask-password` to retrieve the password. However I imagine that with some "tinkering" one can implement a simple PIN-entry application to use `systemd-ask-password`, and thus manage to make the whole setup work with a smart card. My script and systemd service file can be found at the following link: https://gist.github.com/cipriancraciun/c8a0dfb973b586053c167fec91093d9c You just need to place these somewhere, update your paths (especially in the `.service` file by replacing `store` and `lvm` with appropriate tokens), and it should work by just updating your `/etc/fstab`. (These were developed and tested only on OpenSUSE.) Hope it helps, Ciprian. P.S.: I really love GnuPG for its crypto-related features, but on the flip-side I really hate it for it's "integration" related features within environments where it shouldn't double fork processes (like its agent), muck with the TTY (like when reading passwords by the agent), and in general just be "well behaved"... ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: cannot decrypt file symmetric encrypted
i don't think that's the case. is there aa way to force the program to ask passphrase? On Fri, Aug 3, 2018 at 10:34 PM FuzzyDrawrings via Gnupg-users < gnupg-users@gnupg.org> wrote: > Stefano Tranquillini wrote: > > > the fact is that no passphrase is asked > > When you hit the Enter key after typing your decrypt command, it might > also be closing the pinentry dialog immediately before it can appear on > screen. Make sure you don't hold down the Enter key at all - just tap it > once as briefly as possible. > > ___ > Gnupg-users mailing list > Gnupg-users@gnupg.org > http://lists.gnupg.org/mailman/listinfo/gnupg-users > -- Stefano ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users