From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) by finch.gentoo.org (Postfix) with ESMTP id A33BE138A05 for ; Wed, 13 Feb 2013 20:30:25 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 9EB8221C097; Wed, 13 Feb 2013 20:30:16 +0000 (UTC) Received: from spot.xmw.de (spot.xmw.de [176.9.87.236]) by pigeon.gentoo.org (Postfix) with ESMTP id 8942C21C061 for ; Wed, 13 Feb 2013 20:30:15 +0000 (UTC) Received: from [IPv6:2001:6f8:1cd1:0:21d:72ff:fe88:9ac1] (x.l.xmw.de [IPv6:2001:6f8:1cd1:0:21d:72ff:fe88:9ac1]) by spot.xmw.de (Postfix) with ESMTPSA id 652C01410EB23 for ; Wed, 13 Feb 2013 21:30:14 +0100 (CET) Message-ID: <511BF7CA.1090106@gentoo.org> Date: Wed, 13 Feb 2013 21:30:02 +0100 From: Michael Weber User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130114 Thunderbird/17.0.2 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@lists.gentoo.org Reply-to: gentoo-dev@lists.gentoo.org MIME-Version: 1.0 To: gentoo-dev@lists.gentoo.org Subject: Re: [gentoo-dev] Re: [gentoo-dev-announce] please sign your manifests References: <20130212211415.GA4364@linux1> <1993687.8ZKES3KpCB@devil> In-Reply-To: <1993687.8ZKES3KpCB@devil> X-Enigmail-Version: 1.5 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit X-Archives-Salt: 67dc0dbf-6c4d-4729-a445-58dbaa627f6e X-Archives-Hash: 6a3e0e8395522a8fb542a606d4b75073 On 02/13/2013 09:07 PM, Agostino Sarubbo wrote: > As most of us do, I do the commit from another machine, not mine. So, for ssh > I'm using ssh -A to forward the key and I'm interested to find a way to do it > for the gpg key. > > I found an how-to that uses socat ( http://superuser.com/questions/161973/how- > can-i-forward-a-gpg-key-via-ssh-agent ) but does not work as expected. GPG agents do not transport keys, just passphrases. I once used a patch against openssh to enable forwarding of domain sockets, it applies to current 6.1_p1. http://www.25thandclement.com/~william/projects/streamlocal.html Maybe we should add this to our openssh version, I'd appreciate it. > This is an example: http://sources.gentoo.org/cgi-bin/viewvc.cgi/gentoo- > x86/app-portage/splat/Manifest?revision=1.45&view=markup > > The manifest apparently is signed, but there is no really gpg sign. look closely to the output of repoman commit, there is a small "gpg failed" or somethink like that. -- Michael Weber Gentoo Developer web: https://xmw.de/ mailto: Michael Weber