gpg issues
John A Meinel
john at arbash-meinel.com
Tue Feb 14 18:12:09 GMT 2006
So I figured out why gpg cannot start the pinentry program. And it is
because we are piping the information into stdin, which means that there
is no terminal for pinentry to run on.
So what we want to be doing is creating a temporary file, and then using
"gpg --clearsign /tmp/foo.aoeuaoeu" rather than "echo 'foo' | gpg
--clearsign".
(Note I tested it, echo foo | gpg --cl does indeed fail to run pinentry).
I think this would be perfectly safe to do for gpg. But I have to ask
people who use other front-ends like agpg, etc. I would guess that they
let you supply the file to sign, otherwise they would not act like plain
gpg. (Also, are other front-ends as necessary now that gpg natively
supports gpg-agent?)
I just want to make sure that it is safe for me to make these changes.
I'm also wondering if we want the default command to be "gpg --batch
--no-tty". Probably not, but I thought I would ask.
John
=:->
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 249 bytes
Desc: OpenPGP digital signature
Url : https://lists.ubuntu.com/archives/bazaar/attachments/20060214/af080e49/attachment.pgp
More information about the bazaar
mailing list