gpg-agent caching pinentry when it should not

steve's Avatar

steve

24 Apr, 2019 04:56 PM

gpg-agent.conf

pinentry-program /usr/local/MacGPG2/libexec/pinentry-mac.app/Contents/MacOS/pinentry-mac
enable-ssh-support
write-env-file
use-standard-socket
ignore-cache-for-signing
default-cache-ttl 0
max-cache-ttl 1
default-cache-ttl-ssh 0
max-cache-ttl-ssh 0

With the above config I expect to be prompted every time my key is accessed, however I am only prompted once and not again until i start a new session.

My environment:
gpg-agent (GnuPG/MacGPG2) 2.2.10
libgcrypt 1.8.3
GPG Suite 2018.5
macOS Mojave 10.14.4

  1. Support Staff 1 Posted by Luke Le on 03 May, 2019 10:56 AM

    Luke Le's Avatar

    Hi Steve,

    this does sound very strange.
    Is this happening when you are signing/decrypting data or if you are using gpg for ssh login?

Reply to this discussion

Internal reply

Formatting help / Preview (switch to plain text) No formatting (switch to Markdown)

Attaching KB article:

»

Already uploaded files

  • Untitled.png 76.8 KB

Attached Files

You can attach files up to 10MB

If you don't have an account yet, we need to confirm you're human and not a machine trying to post spam.

Keyboard shortcuts

Generic

? Show this help
ESC Blurs the current field

Comment Form

r Focus the comment reply box
^ + ↩ Submit the comment

You can use Command ⌘ instead of Control ^ on Mac