Re: GnuPGv2 & 'pinentry' on Linux w/ remote access

Quoting Ryan Beethe (r...@splintermail.com): > I also was frustrated with how GPG pinentry worked by default. > What I did was write a custom pinentry wrapper, which I call rpinentry. > It just dispaches either the curses-based pinentry or a gui pinentry > based on the environment variable

Re: GnuPGv2 & 'pinentry' on Linux w/ remote access

On Tue, 7 Nov 2017 14:45, gnupg-users@gnupg.org said: > Could you elaborate on the 'why' part of this enforced pinentry usage > with GnuPG? It wasn't mandatory in 1.x, now it's forced on us. It is definitely not new. GnuPG 1.9 was released 14 years ago (it was renamed to 2.0 2.0 11 years ago).

Re: GnuPGv2 & 'pinentry' on Linux w/ remote access

On Wed, 8 Nov 2017 12:28, r...@splintermail.com said: > Yes, I reset my gpg-agent (killall -1 gpg-agent) each time, and was > prompted with a pinentry prompt each time. [ Please use "pkill -HUP gpg-agent" and never ever killall - which has, aehm, funny effects on other Unices. ] gpgconf

Re: GnuPGv2 & 'pinentry' on Linux w/ remote access

On Wed, Nov 08, 2017 at 10:50:45AM +0100, Sander Smeenk via Gnupg-users wrote: > Quoting Ryan Beethe (r...@splintermail.com): > > > Well... it happens that when I copy your script to my archlinux > > machine, everything works fine. > > Are you sure your key wasn't already unlocked in the

Re: GnuPGv2 & 'pinentry' on Linux w/ remote access

Quoting Ryan Beethe (r...@splintermail.com): > Well... it happens that when I copy your script to my archlinux > machine, everything works fine. Are you sure your key wasn't already unlocked in the gpg-agent? > It also happens that when I copy your script into my ubuntu machine, I > had to

Re: GnuPGv2 & 'pinentry' on Linux w/ remote access

On Tue, Nov 7, 2017 at 5:45 AM, Sander Smeenk via Gnupg-users wrote: > Could you elaborate on the 'why' part of this enforced pinentry usage > with GnuPG? It wasn't mandatory in 1.x, now it's forced on us. > > Where did that come from? > What problem did it solve? I'm

Re: GnuPGv2 & 'pinentry' on Linux w/ remote access

Well... it happens that when I copy your script to my archlinux machine, everything works fine. It also happens that when I copy your script into my ubuntu machine, I had to change both references of `gpg` to `gpg2`, since in ubuntu gpg is not the same program as gpg2. I also would find it

Re: GnuPGv2 & 'pinentry' on Linux w/ remote access

Quoting Ryan Beethe (r...@splintermail.com): > I think my setup might be almost a drop-in fix for your gpg-over-ssh > issue, although you will have to figure out where to set the > environment variable for your particular window manager. Thanks for your tips and tricks. It's the less bodgy

Re: GnuPGv2 & 'pinentry' on Linux w/ remote access

Quoting Werner Koch (w...@gnupg.org): > > It's rather cumbersome and very dodgy at least. How do others deal with > > this? Or is everyone using GPG solely in GUI environments nowadays? ;) > The current develppment version of Pinentry uses this info on Linux to > to show the process name in the

Re: GnuPGv2 & 'pinentry' on Linux w/ remote access

On Mon, 6 Nov 2017 22:49, gnupg-users@gnupg.org said: > It's rather cumbersome and very dodgy at least. How do others deal with > this? Or is everyone using GPG solely in GUI environments nowadays? ;) If I want to test the curses Pinentry I simply run DISPLAY= gpg ... and get the curses

Re: GnuPGv2 & 'pinentry' on Linux w/ remote access

Hi Sander, I also was frustrated with how GPG pinentry worked by default. In particular, I *almost* always want to use the ncurses pinentry, unless through a key shortcut my window manager tries to call gpg (for my password manager). But if I want to encrypt a file with mutt, I don't want a

GnuPGv2 & 'pinentry' on Linux w/ remote access

Hi! Some time ago in March i was asking about the way the pinentry works and i have not yet been able to get this working properly. I have this vim macro that automatically decrypts and encrypts files named .gpg. I use this in a terminal through SSH on my server and it basically pipes a buffer

Re: GnuPGv2 & 'pinentry' on Linux w/ remote access

Quoting Peter Lebbing (pe...@digitalbrains.com): > > | GPG_TTY=$(tty) > > | export GPG_TTY > > | eval $(gpg-agent --daemon) > This is the style for GnuPG 2.0, not for 2.1. 2.1 uses a standard > socket location and the OpenPGP part of the agent will Just Work(tm). > You still need something for

Re: GnuPGv2 & 'pinentry' on Linux w/ remote access

Hi! On 22/03/17 15:46, Sander Smeenk via Gnupg-users wrote: > I'm on Linux and i am not using Unity/Gnome/whatever, so i start X by > calling 'startx' and it invokes my .xsession that has ... > > | GPG_TTY=$(tty) > | export GPG_TTY > | eval $(gpg-agent --daemon) This is the style for GnuPG 2.0,

Re: GnuPGv2 & 'pinentry' on Linux w/ remote access

Quoting Peter Lebbing (pe...@digitalbrains.com): > > I'm trying to make the big step from GnuPG v1 to v2 but i'm experiencing > > agonizing pains caused by the forced use of "pinentry" by gpg-agent and > > friends, or rather the way the GPG_TTY stuff works? > The first thing we really need to know

Re: GnuPGv2 & 'pinentry' on Linux w/ remote access

Hi Sndr, On 22/03/17 15:46, Sander Smeenk via Gnupg-users wrote: > I'm trying to make the big step from GnuPG v1 to v2 but i'm experiencing > agonizing pains caused by the forced use of "pinentry" by gpg-agent and > friends, or rather the way the GPG_TTY stuff works? The first thing we really

GnuPGv2 & 'pinentry' on Linux w/ remote access

Hi, I'm trying to make the big step from GnuPG v1 to v2 but i'm experiencing agonizing pains caused by the forced use of "pinentry" by gpg-agent and friends, or rather the way the GPG_TTY stuff works? I'm on Linux and i am not using Unity/Gnome/whatever, so i start X by calling 'startx' and it