tag:gpgtools.tenderapp.com,2011-11-04:/discussions/problems/75050-gnupg-improperly-storing-yubikey-private-key-in-gpg-keychainGPGTools: Discussion 2018-09-20T16:22:54Ztag:gpgtools.tenderapp.com,2011-11-04:Comment/454006712018-06-02T01:26:08Z2018-06-02T01:26:09ZGnuPG improperly storing YubiKey private key in GPG Keychain<div><p>Hello!</p>
<p>I am creating a PGP 4096 bit key using the command gpg2 --card-edit then generate, and the private key gets stored in the GPG Keychain.<br>
Why is that happening? Isn't the whole point of a YubiKey to not have the private keys accessible?</p></div>deanlubakitag:gpgtools.tenderapp.com,2011-11-04:Comment/454006712018-07-07T17:00:26Z2018-07-07T17:00:26ZGnuPG improperly storing YubiKey private key in GPG Keychain<div><p>Hi dean,</p>
<p>could you please add some details what version of gpg2 you are using by running:</p>
<pre>
<code>gpg --version</code>
</pre>
<p>At one point gpg keys were always created offline and only later copied onto the card, but I don't think this should be the case any longer.</p></div>Luke Le