Ripping my hair out, a.k.a. trying to use GPG
-
-
@bascule@matthew_d_green@tqbf Huh? I've got a few PGP smart cards and USB dongles, they work with GnuPG as easily as anything else. -
@petertoddbtc@matthew_d_green@tqbf are you 1) using Linux instead of OS X? 2) not backing them up? 3) not using authentication keys? -
@bascule@matthew_d_green@tqbf 1) using Linux 2) master key is backed up; subkeys aren't, 3) using auth keys for ssh w/ gpg-agent -
@petertoddbtc@matthew_d_green@tqbf if you think GPG UX is great, try using it on !Linux -
@bascule@matthew_d_green@tqbf I never said GPG UX is good, just that HW tokens are *no harder* than anything else in GPG. -
@petertoddbtc@matthew_d_green@tqbf did I mention the part where I have to tweak environment variables to get curses PIN entry to work? -
@petertoddbtc@matthew_d_green@tqbf and even when it does, backspace doesn't work? -
@petertoddbtc@matthew_d_green@tqbf and the only other options are GTK and Qt... - 7 more replies
New conversation -
-
-
-
@thinkpanzer@tqbf I'm making backups of all of the original keys. Future UX ideas here: https://www.mail-archive.com/messaging@moderncrypto.org/msg01296.html … -
-
@thinkpanzer@tqbf in theory you can't exfiltrate private keys from the token which is PIN-protected and bricks the token after 3 failures -
-
@thinkpanzer@tqbf ideally I think you'd have a unique key per token and encrypt to all enrolled tokens. That makes for easy revocation -
New conversation -
-
-
@bascule@matthew_d_green@tqbf what do you think about this? https://www.nitrokey.com/ gpg, ssh and all other fancy stuffThanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.