GnuPG improperly storing YubiKey private key in GPG Keychain

deanlubaki's Avatar

deanlubaki

02 Jun, 2018 01:26 AM

Hello!

I am creating a PGP 4096 bit key using the command gpg2 --card-edit then generate, and the private key gets stored in the GPG Keychain.
Why is that happening? Isn't the whole point of a YubiKey to not have the private keys accessible?

  1. Support Staff 1 Posted by Luke Le on 07 Jul, 2018 05:00 PM

    Luke Le's Avatar

    Hi dean,

    could you please add some details what version of gpg2 you are using by running:

    gpg --version
    

    At one point gpg keys were always created offline and only later copied onto the card, but I don't think this should be the case any longer.

Reply to this discussion

Internal reply

Formatting help / Preview (switch to plain text) No formatting (switch to Markdown)

Attaching KB article:

»

Attached Files

You can attach files up to 10MB

If you don't have an account yet, we need to confirm you're human and not a machine trying to post spam.

Keyboard shortcuts

Generic

? Show this help
ESC Blurs the current field

Comment Form

r Focus the comment reply box
^ + ↩ Submit the comment

You can use Command ⌘ instead of Control ^ on Mac