[prev in list] [next in list] [prev in thread] [next in thread]
List: gnupg-users
Subject: Re: adding card keys and make them non exportable
From: Damien Goutte-Gattat <dgouttegattat () incenp ! org>
Date: 2015-09-29 21:07:11
Message-ID: 560AFD7F.5040607 () incenp ! org
[Download RAW message or body]
[Attachment #2 (multipart/signed)]
On 09/29/2015 09:51 PM, Heiko Folkerts wrote:
> AFAIK the exports contain a valid looking key block.
It *looks like* a valid key block, but--if the keytocard operation was
indeed successful--it's actually only a "stub" that does not contain any
private material.
You can check the actual contents of the exported data with the
--list-packets option:
$ gpg --list-packets your_exported_private_keys.gpg
Look for the following lines in the output:
:secret sub key packet:
[...]
gnu-divert-to-card S2K, [...]
serial-number: <your card serial number>
You should see those lines once for each subkey that you moved to the card.
["signature.asc" (application/pgp-signature)]
_______________________________________________
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic