User Tools

Site Tools


osx:start

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision Both sides next revision
osx:start [2019/05/23 09:33]
robm [GPG with remote forwarding]
osx:start [2019/05/23 09:36]
robm [GPG with remote forwarding]
Line 921: Line 921:
   - Configure SSH to forward agent socket   - Configure SSH to forward agent socket
   - Disable systemd stuff which creates (unused) gpg sockets and/or configure SSHd to allow you to delete and recreate those sockets   - Disable systemd stuff which creates (unused) gpg sockets and/or configure SSHd to allow you to delete and recreate those sockets
 +
 +Gotchas to document:
 +
 +Invalid ioctl for device means the GPG agent was attempting to open a TTY. The agent lives on my MacBook, but the request comes from a remote system. So the remote system's GPG_TTY value is utterly useless on my MacBook, hence the error. Pinentry is the method by which the end-user (me) is prompted to enter a passphrase of the decryption key, the default is TTY, which doesn't work in this scenario. Using a GUI based one (line pinentry-mac) solves this, since the GUI always pops up on my Macbook.
  
 https://www.binarybabel.org/2017/03/10/setting-up-pin-entry-for-gpg-under-macos/ https://www.binarybabel.org/2017/03/10/setting-up-pin-entry-for-gpg-under-macos/
osx/start.txt · Last modified: 2022/05/13 13:19 by robm