Date: Thu, 15 Jul 2021 02:42:10 +0200 From: Tomasz CEDRO <tomek@cedro.info> To: tech-lists@zyxst.net Cc: FreeBSD Questions Mailing List <freebsd-questions@freebsd.org> Subject: Re: how to load ssh-agent into x11/sddm Message-ID: <CAM8r67DiN5NMeX5QqSLH2EuXK-E-q_rBeY2_TcOXVSzTSVoX%2BQ@mail.gmail.com> In-Reply-To: <YO8Z0Vb0puhNtPbq@ceres.zyxst.net> References: <YO8Z0Vb0puhNtPbq@ceres.zyxst.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Jul 14, 2021 at 7:16 PM tech-lists wrote: > (..) > What I'd like to know is, is it possible to load ssh-agent once either > before, or within, the sddm greeter so that previous ssh-agent behaviour > is restored? I assume you want to use gpg-agent to act as ssh-agent so you can use your smartcard for ssh? You can put that in your ~/.profile: GPG_TTY=$(tty) export GPG_TTY #/usr/local/bin/gpg-agent --daemon SSH_AUTH_SOCK="$HOME/.gnupg/S.gpg-agent.ssh"; export SSH_AUTH_SOCK You can uncomment the gpg-agent launcher line, but I prefer to start it by hand when needed. If you uncomment this line new agent wont spawn if there is already agent running. You can also set this in ~/.gnupg/gpg-agent.conf: enable-ssh-support pinentry-program /usr/local/bin/pinentry-qt5 This will allow you to use gpg with ssh. If you want to use usb smartcard with private key you also need scdaemon. All options explained here: https://www.gnupg.org/documentation/manuals/gnupg/Agent-Options.html Pinentry is the pop up window that will ask for card pin. For KDE that would be QT5 variant, but these are available: pinentry-1.1.1 pinentry-curses-1.1.1 pinentry-efl-1.1.1 pinentry-fltk-1.1.1 pinentry-gnome3-1.1.1 pinentry-gtk2-1.1.1 pinentry-qt5-1.1.1 pinentry-tty-1.1.1 Hope that helps :-) -- CeDeROM, SQ7MHZ, http://www.tomek.cedro.info
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAM8r67DiN5NMeX5QqSLH2EuXK-E-q_rBeY2_TcOXVSzTSVoX%2BQ>