[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Duplicity-talk] gpg: sign+symmetric
From: |
Richard |
Subject: |
Re: [Duplicity-talk] gpg: sign+symmetric |
Date: |
Wed, 5 Oct 2011 10:40:22 +0200 |
On 4 October 2011 23:23, <address@hidden> wrote:
> i tried to reproduce this and played around with gpg a bit
>
> it knows two modi as it seems, notice you have to define the key to sign with
> as default key
>
> 1.
> '--passphrase-fd 0' plus a piped password, totally ignores gpg-agent, even if
> setup properly
> e.g.
> echo passphrase | /usr/bin/gpg --sign --default-key 01234567 --passphrase-fd
> 0 -o /tmp/out --batch -c /tmp/in
>
>
> 2.
> no specific arguments, and no piped data if -o -i are set (this throws a
> general error)
> e.g.
> /usr/bin/gpg --sign --default-key 01234567 -o /tmp/out --batch -c /tmp/in
>
> the tests lead to the conclusions
>
> signed symmetric encryption with commandline gpg is only possible if either
>
> A. both passphrase (symmetric and sign keys) are entered with gpg-agent
> or
> B. using '--passphrase-fd 0' and the sign key has an empty passphrase
> or
> C. using '--passphrase-fd 0' and both passphrase (symmetric and sign keys)
> are identical#
>
> the manpage has to be updated on this
>
Thanks for having looked into this.