El día miércoles, mayo 10, 2017 a las 09:39:03a. m. +0200, Matthias Apitz escribió:
> Alexander,
>
> Thanks for your explanations. I will opt for the Omnikey 6121 Mobile USB
> and see what I can do with it. It sells for around 20 euro, shipping
> to .de included.
Hello,
Since some time I'm using now the above mentioned GnuPG CCID card in the
Omnikey 6121 Mobile USB stick to held my private key for SSH and signing
of mail. This works very fine con two remaining issues:
1)
the USB stick is sometimes not detected on power-on boot and on plug-in
into an already running FreeBSD (12-CURRENT, amd64); when it is detected
on boot or later plug-in, it is always detected; when it is not, only a
reboot solves it; this seems to be some timing issue of the FreeBSD USB
driver and I'm testing the different 'hw.usb.timings' values, to find a
solution;
2)
due to the unreliable of 1) I can not launch the daemon /usr/local/sbin/pcscd
at boot time, because the system would hang while the daemon is trying
to get to the USB card device; so I have to launch it after boot as
'root' when the USB card device is seen (if not, I have to reboot); the
problem now is, that normaly the /usr/local/sbin/pcscd is hot-plugable,
i.e. one can withdraw the USB stick, move away from the computer and
re-attach it later again; the re-attach is seen by the daemon as I can
see in its debug messages, but the background processes gpg-agent and scdaemon
can not use the card correctly again for, for example, access to the
private key for SSH. I have to restart the /usr/local/sbin/pcscd again
after attach and all is fine.
Any hints on this?
matthias
--
Matthias Apitz, ✉ g...@unixarea.de, ⌂ http://www.unixarea.de/ ☎
+49-176-38902045
signature.asc
Description: PGP signature
