aboutsummaryrefslogtreecommitdiffstatshomepage
Commit message (Collapse)AuthorAgeFilesLines
* Script to switch between two Yubikeys with identical keysIan Stanley2021-05-051-0/+23
| | | | | | | | | | | | | | | | | Some GitHub users have asked in the issues why can't I use two Yubikeys (one as a backup). It's a question often asked The usual answer given across the web is that you can't as GPG replaces the key with key stubs when you quit and save (if you don't save then the Yubikey appears useless as GPG doesn't delete the keys and carries on using them off the keyring. If once you have run keytocard to transfer your keys to the Yubikey#1 you QUIT WITHOUT SAVING then you can repeat the whole process again and put in your Yubikey#2 and keytocard again. this time QUIT AND SAVE. GPG will now replace the keys with a key stub pointing to the Yubikey with the card serial number (see Yubikey serial on back of key) when you try to decrypt/sign/authenticate. The first Yubikey will be ignored despite the fact it has a copy of the Yubikey. However you can use gpg-connect-agent to force read the Yubikey and repoint the key stubs to the keys on the Yubikey inserted. Just run the script and insert whichever key you have to have (primary or backup) when prompted NB once this script has been run GPG will be pointing the stubs at the recently used Yubikey ... to go back to your first Yubikey again switch Yubikeys and re-run script Simples :)
* Merge pull request #242 from inducer/patch-1drduh2021-02-111-1/+1
|\ | | | | Fix: "quit" to save -> "save" to save
| * Fix: "quit" to save -> "save" to saveAndreas Klöckner2021-01-131-1/+1
| |
* | Merge pull request #240 from basbebe/macOS-GUI-setupdrduh2021-02-081-2/+61
|\ \ | | | | | | Add SSH setup for macOS GUI applications
| * | Add SSH setup for macOS GUI applicationsbasbebe2021-01-101-2/+61
| |/ | | | | | | | | | | On macOS, a LaunchAgent needs to be created to overwrite the system's SSH agent. see https://github.com/drduh/YubiKey-Guide/issues/229
* | Merge pull request #243 from berwag/patch-1drduh2021-02-041-0/+6
|\ \ | | | | | | Additions to "Required Software"
| * | Update README.mdberwag2021-02-041-1/+1
| | |
| * | Update README.mdberwag2021-01-281-1/+1
| | | | | | | | | changed wording according to yubischiess' comment
| * | Additions to "Required Software"berwag2021-01-271-0/+6
|/ / | | | | proposed change according to Issue#215
* | Merge pull request #241 from basbebe/fish-configdrduh2021-01-181-0/+7
|\ \ | |/ |/| add fish config
| * add fish configbasbebe2021-01-101-0/+7
|/
* Merge pull request #225 from ZenithalHourlyRate/gpg-agent-forwarddrduh2020-12-301-41/+139
|\ | | | | Add New Agent Forward Method and Clarify Two Methods
| * Rephrase one sentence according to one comment on drduh/YubiKey-Guide#225Zenithal2020-12-241-1/+1
| |
| * Add subsections on chained agent forwardingZenithal2020-12-241-4/+35
| |
| * Add note on chained agent forwardingZenithal2020-12-031-0/+4
| |
| * Correct WSL agent forwardingZenithal2020-12-031-4/+8
| | | | | | | | | | This is a mix of two forwarding method, this commit separates them
| * Change note in alter agent sectionZenithal2020-12-031-1/+2
| | | | | | | | Different methods have different requirements
| * Add new method for ssh-agent forwardingZenithal2020-12-031-4/+45
| |
| * Add details to GPG-Agent forward; Alter structureZenithal2020-12-031-56/+73
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | GPG Agent forwarding has a broader usage, not only limited to ssh-agent forwarding. In this commit gpg-agent forwarding is raised as a separate section as it can not be contained by #SSH any longer. More details are added for gpg-agent forwarding, including some important notes taken from practice and analysis. For ssh-agent forward, older method are contained, and new method will be included as framework has been structured.
* | Merge pull request #224 from ZenithalHourlyRate/mutt-emaildrduh2020-12-251-1/+10
|\ \ | |/ |/| Add Mutt email client gpg config and Some note when configuring
| * Change format of important notes in mutt subsectionZenithal2020-12-021-1/+1
| |
| * Add Mutt subsection in Email sectionZenithal2020-12-021-0/+9
| |
| * Add Mutt in Email introZenithal2020-12-021-1/+1
|/
* Merge pull request #218 from DevSecNinja/devsecninja/addPowerShellCommanddrduh2020-11-211-3/+10
|\ | | | | Add PowerShell command to get YubiKey name
| * Change edit to create or editJean-Paul van Ravensberg2020-10-311-1/+1
| | | | | | As gpg-agent.conf didn't exist on my system
| * Add PowerShell command to get YubiKey nameJean-Paul van Ravensberg2020-10-311-2/+9
| |
* | Merge pull request #213 from linutsdc/fix-linksdrduh2020-11-211-2/+2
|\ \ | | | | | | Fix links with parentheses
| * | Fix links with parenthesesandy2020-09-171-2/+2
| |/
* | Merge pull request #211 from rgevaert/patch-1drduh2020-11-211-0/+2
|\ \ | | | | | | unset GNUPGHOME variable
| * | unset GNUPGHOME variableRudy Gevaert2020-09-011-0/+2
| |/ | | | | | | | | if not done, in the next step you get error: gpg: keyblock resource '/home/..../gnupg-workspace/pubring.kbx': No such file or directory gpg: no writable keyring found: Not found
* | Merge pull request #214 from anmull/debian-iso-versiondrduh2020-11-211-4/+4
|\ \ | | | | | | Changes command to download Debian ISO to use the value in the SHA512SUMS file
| * | Update verification of Debian ISO to not hardcode the version.Anthony Muller2020-09-251-2/+2
| | |
| * | Change Debian ISO url to be generated from the contents of SHA512SUM.Anthony Muller2020-09-251-2/+2
| |/ | | | | | | | | This removes the need to maintain the version number, which is currently out of date.
* | Merge pull request #219 from captn3m0/patch-1drduh2020-11-141-1/+1
|\ \ | | | | | | Fix reset command
| * | Fix reset commandNemo2020-11-141-1/+1
|/ / | | | | gpg-connect-agent uses `-r/--run` not `-R`
* | Merge pull request #201 from dragon788/update-python-refsdrduh2020-11-081-6/+14
|\ \ | |/ |/| Python2 is EOL, update packages/references to Py3
| * Merge branch 'master' into update-python-refsdragon7882020-09-022-3/+49
| |\ | |/ |/|
* | Merge branch 'Amolith-master'drduh2020-08-301-3/+35
|\ \
| * | Merge branch 'master' of https://github.com/Amolith/YubiKey-Guide into ↵drduh2020-08-301-3/+35
|/| | | | | | | | | | | Amolith-master
| * | change defaults and add info to #Require touchAmolith2020-08-261-3/+35
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | As mentioned in #197, the previous behaviour would require users to touch their key any time an authentication, signing, or encryption operation was performed. In some situations, this behaviour would be undesirable and the only way to revert it would be fully resetting the key and starting from scratch. Rather than using `fixed`, this commit simply turns the feature `on` so the user can change it later if they wish. Additionally, a note about the other policies was included so users can decide for themselves which fits their situation better.
* | | Create FUNDING.ymldrduh2020-08-301-0/+1
| | |
* | | Merge pull request #209 from mirko/masterdrduh2020-08-301-0/+13
|\ \ \ | |/ / |/| | Add option to retrieve additionaly entropy from YubiKey itself
| * | Add option to retrieve additionaly entropy from YubiKey itselfMirko Vogt2020-08-291-0/+13
|/ /
| * Merge branch 'master' into update-python-refsdragon7882020-08-231-2/+39
| |\ | |/ |/|
* | Merge pull request #203 from bengim/bengim-patch-PyOpenSSLdrduh2020-08-221-0/+2
|\ \ | | | | | | fixing wrong cryptography version
| * | Update README.mdbengim2020-08-221-0/+2
| | | | | | | | | fixing wrong cryptography version by explicitly installing PyOpenSSL
* | | Merge pull request #200 from returntrip/masterdrduh2020-08-221-0/+27
|\ \ \ | |/ / |/| | Add: notations to be used for identity proofs
| * | Correct spellingStefano Figura2020-08-141-3/+3
| | |
| * | Update wording Stefano Figura2020-08-141-1/+3
| | | | | | | | | Ensure that is clear that we do not need to modify keys or even plug the yubikey
| * | Update notation sectionStefano Figura2020-08-131-1/+1
| | |
generated by cgit, for Dennis Eriksen