User Tools

Site Tools


osx:start

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
osx:start [2019/05/23 10:33]
robm [GPG with remote forwarding]
osx:start [2019/05/23 10:36] (current)
robm [GPG with remote forwarding]
Line 921: Line 921:
   - Configure SSH to forward agent socket   - Configure SSH to forward agent socket
   - Disable systemd stuff which creates (unused) gpg sockets and/or configure SSHd to allow you to delete and recreate those sockets   - Disable systemd stuff which creates (unused) gpg sockets and/or configure SSHd to allow you to delete and recreate those sockets
 +
 +Gotchas to document:
 +
 +Invalid ioctl for device means the GPG agent was attempting to open a TTY. The agent lives on my MacBook, but the request comes from a remote system. So the remote system'​s GPG_TTY value is utterly useless on my MacBook, hence the error. Pinentry is the method by which the end-user (me) is prompted to enter a passphrase of the decryption key, the default is TTY, which doesn'​t work in this scenario. Using a GUI based one (line pinentry-mac) solves this, since the GUI always pops up on my Macbook.
  
 https://​www.binarybabel.org/​2017/​03/​10/​setting-up-pin-entry-for-gpg-under-macos/​ https://​www.binarybabel.org/​2017/​03/​10/​setting-up-pin-entry-for-gpg-under-macos/​
osx/start.txt · Last modified: 2019/05/23 10:36 by robm