<div dir="ltr">I don't know what you know about GPG, so I will just go through a basic explaination:<div><br></div><div>Your GPG key is a password by itself. It is supposed to remain secret, never share it. But as a mean of security when you create your GPG key, you may provide a password to encrypt it.</div><div><br></div><div>* When you do the pass init, you tell pass which GPG key to use as a password.</div><div>* When you do a pass insert something, pass asks you twice the password you want to insert into the storage to be sure you do not make a mistake when typing it. This password you inserted is then encrypted using your GPG key.</div><div> * If this GPG key is itself encrypted, you gpg agent will prompt you for a password to unencrypt the gpg key in order to use it as a password</div><div> * If this GPG key is not encrypted, then gpg will directly use it as the password</div><div><br></div><div>In my understanding you are in the case with an unencrypted GPG key.</div></div><div class="gmail_extra"><br><div class="gmail_quote">2016-11-23 14:34 GMT+01:00 GOYOT Martin <span dir="ltr"><<a href="mailto:martin@piwany.com" target="_blank">martin@piwany.com</a>></span>:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr">I am just guessing out of the blue: your gpg key has no password associated with it.<div><br></div><div>When you do pass insert it inserts a new password so it ask it twice to check you know what you are entering. But this has nothing to do with your gpg key.</div></div><div class="HOEnZb"><div class="h5"><div class="gmail_extra"><br><div class="gmail_quote">2016-11-23 14:31 GMT+01:00 Cycle London <span dir="ltr"><<a href="mailto:cycle.london.67@gmail.com" target="_blank">cycle.london.67@gmail.com</a>></span>:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr">Yes, it is encrypted. <br></div><div class="m_-1592915310590501266HOEnZb"><div class="m_-1592915310590501266h5"><div class="gmail_extra"><br><div class="gmail_quote">On 23 November 2016 at 13:26, Lenz Weber <span dir="ltr"><<a href="mailto:mail@lenzw.de" target="_blank">mail@lenzw.de</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div bgcolor="#FFFFFF" text="#000000">
<p>sorry, then I interpreted your "enter password twice" wrong.</p>
<p>take a look at the encrypted file
(~/.password-store/<a href="http://google.com/gmail/example@gmail.com.gpg" target="_blank">google.com/<wbr>gmail/example@gmail.com.gpg</a> ) - is
it in fact encrypted with gpg for that key?<br>
</p><div><div class="m_-1592915310590501266m_2276090150426052718h5">
<br>
<div class="m_-1592915310590501266m_2276090150426052718m_-5004803443720967894moz-cite-prefix">On 11/23/2016 02:23 PM, Cycle London
wrote:<br>
</div>
</div></div><blockquote type="cite"><div><div class="m_-1592915310590501266m_2276090150426052718h5">
<pre>Agent *is* running, but how could that cache my passphrase, when in fact I
have not entered that passphrase once, since the last time the Mac was
rebooted?
On 23 November 2016 at 13:21, Lenz Weber <a class="m_-1592915310590501266m_2276090150426052718m_-5004803443720967894moz-txt-link-rfc2396E" href="mailto:mail@lenzw.de" target="_blank"><mail@lenzw.de></a> wrote:
</pre>
</div></div><blockquote type="cite">
<pre><div><div class="m_-1592915310590501266m_2276090150426052718h5">most likely you have a gpg-agent running that caches your passphrase?
On 11/23/2016 02:16 PM, Cycle London wrote:
Hello,
Trying to use 'pass' on my Mac, but it is displaying passwords without
asking for my GPG ID.
I run : `pass init 0x123456789`
That gets me:
Password store initialized for 0x123456789
I then add a password to test:
`pass insert <a class="m_-1592915310590501266m_2276090150426052718m_-5004803443720967894moz-txt-link-abbreviated" href="mailto:google.com/gmail/example@gmail.com" target="_blank">google.com/gmail/example@gmail<wbr>.com</a>`
That gets me a password prompt twice, so I enter the password.
I then try:
`[~] john@Mac% (126) pass <a class="m_-1592915310590501266m_2276090150426052718m_-5004803443720967894moz-txt-link-abbreviated" href="mailto:google.com/gmail/example@gmail.com" target="_blank">google.com/gmail/example@gmail<wbr>.com</a>`
test
Why doesn't it ask for my passphrase?
FYI, '0x123456789' is what I get from `gpg --list-keys` and is the ID that
comes after the key length in the output.
What am I doing wrong, or is the Mac version broken ?
Hello,
Trying to use 'pass' on my Mac, but it is displaying passwords without
asking for my GPG ID.
I run : `pass init 0x123456789`
That gets me:
Password store initialized for 0x123456789
I then add a password to test:
`pass insert <a class="m_-1592915310590501266m_2276090150426052718m_-5004803443720967894moz-txt-link-abbreviated" href="mailto:google.com/gmail/example@gmail.com" target="_blank">google.com/gmail/example@gmail<wbr>.com</a>`
</div></div><a class="m_-1592915310590501266m_2276090150426052718m_-5004803443720967894moz-txt-link-rfc2396E" href="http://google.com/gmail/example@gmail.com%60" target="_blank"><http://google.com/gmail/examp<wbr>le@gmail.com%60></a><span>
That gets me a password prompt twice, so I enter the password.
I then try:
`[~] john@Mac% (126) pass <a class="m_-1592915310590501266m_2276090150426052718m_-5004803443720967894moz-txt-link-abbreviated" href="mailto:google.com/gmail/example@gmail.com" target="_blank">google.com/gmail/example@gmail<wbr>.com</a>`
</span><a class="m_-1592915310590501266m_2276090150426052718m_-5004803443720967894moz-txt-link-rfc2396E" href="http://google.com/gmail/example@gmail.com%60" target="_blank"><http://google.com/gmail/examp<wbr>le@gmail.com%60></a><div><div class="m_-1592915310590501266m_2276090150426052718h5">
test
Why doesn't it ask for my passphrase?
FYI, '0x123456789' is what I get from `gpg --list-keys` and is the ID that
comes after the key length in the output.
What am I doing wrong, or is the Mac version broken ?
______________________________<wbr>_________________
Password-Store mailing <a class="m_-1592915310590501266m_2276090150426052718m_-5004803443720967894moz-txt-link-abbreviated" href="mailto:listPassword-Store@lists.zx2c4.comhttp://lists.zx2c4.com/mailman/listinfo/password-store" target="_blank">listPassword-Store@lists.zx2c4<wbr>.comhttp://lists.zx2c4.com/mai<wbr>lman/listinfo/password-store</a>
</div></div></pre><div><div class="m_-1592915310590501266m_2276090150426052718h5">
<br>
<fieldset class="m_-1592915310590501266m_2276090150426052718m_-5004803443720967894mimeAttachmentHeader"></fieldset>
<br>
<div dir="ltr">Agent *is* running, but how could that cache my
passphrase, when in fact I have not entered that passphrase
once, since the last time the Mac was rebooted? <br>
</div>
<div class="gmail_extra"><br>
<div class="gmail_quote">On 23 November 2016 at 13:21, Lenz
Weber <span dir="ltr"><<a href="mailto:mail@lenzw.de" target="_blank">mail@lenzw.de</a>></span>
wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div bgcolor="#FFFFFF" text="#000000">
<p>most likely you have a gpg-agent running that caches
your passphrase?<br>
</p>
<div>
<div class="m_-1592915310590501266m_2276090150426052718m_-5004803443720967894h5"> <br>
<div class="m_-1592915310590501266m_2276090150426052718m_-5004803443720967894m_6713691847109040821moz-cite-prefix">On
11/23/2016 02:16 PM, Cycle London wrote:<br>
</div>
</div>
</div>
<blockquote type="cite">
<div>
<div class="m_-1592915310590501266m_2276090150426052718m_-5004803443720967894h5">
<pre>Hello,
Trying to use 'pass' on my Mac, but it is displaying passwords without
asking for my GPG ID.
I run : `pass init 0x123456789`
That gets me:
Password store initialized for 0x123456789
I then add a password to test:
`pass insert <a class="m_-1592915310590501266m_2276090150426052718m_-5004803443720967894m_6713691847109040821moz-txt-link-abbreviated" href="mailto:google.com/gmail/example@gmail.com" target="_blank">google.com/gmail/example@gmail<wbr>.com</a>`
That gets me a password prompt twice, so I enter the password.
I then try:
`[~] john@Mac% (126) pass <a class="m_-1592915310590501266m_2276090150426052718m_-5004803443720967894m_6713691847109040821moz-txt-link-abbreviated" href="mailto:google.com/gmail/example@gmail.com" target="_blank">google.com/gmail/example@gmail<wbr>.com</a>`
test
Why doesn't it ask for my passphrase?
FYI, '0x123456789' is what I get from `gpg --list-keys` and is the ID that
comes after the key length in the output.
What am I doing wrong, or is the Mac version broken ?
</pre>
<fieldset class="m_-1592915310590501266m_2276090150426052718m_-5004803443720967894m_6713691847109040821mimeAttachmentHeader"></fieldset>
<div dir="ltr">
<div>
<div>
</div>
Hello,
Trying to use 'pass' on my Mac, but it is displaying passwords
without asking for my GPG ID.
I run : `pass init 0x123456789`
</div>
<div>That gets me:
Password store initialized for 0x123456789
</div>
<div>I then add a password to test:
`pass insert <a href="http://google.com/gmail/example@gmail.com%60" target="_blank">google.com/gmail/example@gmail<wbr>.com`</a>
</div>
<div>That gets me a password prompt twice, so I enter the
password.
</div>
<div>I then try:
`[~] john@Mac% (126) pass <a href="http://google.com/gmail/example@gmail.com%60" target="_blank">google.com/gmail/example@gmail<wbr>.com`</a>
test
</div>
<div>Why doesn't it ask for my passphrase?
</div>
<div>FYI, '0x123456789' is what I get from `gpg --list-keys` and
is the ID that comes after the key length in the output.
</div>
<div>What am I doing wrong, or is the Mac version broken ?
</div>
</div>
<fieldset class="m_-1592915310590501266m_2276090150426052718m_-5004803443720967894m_6713691847109040821mimeAttachmentHeader"></fieldset>
</div></div><pre>______________________________<wbr>_________________
Password-Store mailing list
<a class="m_-1592915310590501266m_2276090150426052718m_-5004803443720967894m_6713691847109040821moz-txt-link-abbreviated" href="mailto:Password-Store@lists.zx2c4.com" target="_blank">Password-Store@lists.zx2c4.com</a>
<a class="m_-1592915310590501266m_2276090150426052718m_-5004803443720967894m_6713691847109040821moz-txt-link-freetext" href="http://lists.zx2c4.com/mailman/listinfo/password-store" target="_blank">http://lists.zx2c4.com/mailman<wbr>/listinfo/password-store</a>
</pre>
</blockquote>
</div>
</blockquote></div>
</div>
</div></div></blockquote></blockquote>
</div></blockquote></div><br></div>
</div></div><br>______________________________<wbr>_________________<br>
Password-Store mailing list<br>
<a href="mailto:Password-Store@lists.zx2c4.com" target="_blank">Password-Store@lists.zx2c4.com</a><br>
<a href="http://lists.zx2c4.com/mailman/listinfo/password-store" rel="noreferrer" target="_blank">http://lists.zx2c4.com/mailman<wbr>/listinfo/password-store</a><br>
<br></blockquote></div><br></div>
</div></div></blockquote></div><br></div>