using a second OpenPGP card
Matthias Apitz
guru at unixarea.de
Mon Feb 26 10:34:15 UTC 2024
El día sábado, febrero 24, 2024 a las 05:44:11 +0100, Morten Kjærulff escribió:
> Hi.
>
> Not sure exactly how, but you should be able to init your store for
> both keys. You can then copy both from old to new and new to old. You
> can also sync via a git repo.
I have here an example file of an entry 'test' in my .password-storage:
purism at pureos:~$ pass test
┌──────────────────────────────────────────────┐
│ Please unlock the card │
│ │
│ Number: 0005 0000A6FE │
│ Holder: Matthias Apitz │
│ │
│ PIN ________________________________________ │
│ │
│ <OK> <Cancel> │
└──────────────────────────────────────────────┘
secret
purism at pureos:~$ file .password-store/test.gpg
.password-store/test.gpg: PGP RSA encrypted session key - keyid: 39BDCE02 5E4698B6 RSA (Encrypt or Sign) 2048b .
purism at pureos:~$ gpg -da .password-store/test.gpg
┌──────────────────────────────────────────────┐
│ Please unlock the card │
│ │
│ Number: 0005 0000A6FE │
│ Holder: Matthias Apitz │
│ │
│ PIN ________________________________________ │
│ │
│ <OK> <Cancel> │
└──────────────────────────────────────────────┘
gpg: encrypted with 2048-bit RSA key, ID 39BDCE025E4698B6, created 2021-10-30
"Matthias Apitz (GnuPG CCID L5) <guru at unixarea.de>"
secret
Said/showed that, I can't imagine that, when I SCP the file
.password-store/test.gpg to another system with another OpenPGP card,
that this system would be able to decrypt the file and reencrypt it
again with the second card.
matthias
--
Matthias Apitz, ✉ guru at unixarea.de, http://www.unixarea.de/ +49-176-38902045
Public GnuPG key: http://www.unixarea.de/key.pub
I am not at war with Russia. Я не воюю с Россией.
Ich bin nicht im Krieg mit Russland.
More information about the Password-Store
mailing list