martin f. krafft [2017-06-14 22:13:16+02] wrote: > While normal gpg-agent operation regarding --default-cache-ttl and > --max-cache-ttl is exactly as documented, these values are completely > ignored when using keys stored on a Yubikey (a GPG 2.1 compatible > smartcard). Instead, the PIN seems to be cached forever, including > across system suspends.
That's because the OpenPGP card (Yubikey) itself goes to authenticated mode and don't require the PIN anymore. The PIN is not cached at all in gpg-agent so its config TTL values don't work. NIIBE Yutaka explains it a bit in here: https://lists.gnupg.org/pipermail/gnupg-users/2017-April/058069.html -- /// Teemu Likonen - .-.. <https://keybase.io/tlikonen> // // PGP: 4E10 55DC 84E9 DFF6 13D7 8557 719D 69D3 2453 9450 ///
signature.asc
Description: PGP signature
