https://bugzilla.redhat.com/show_bug.cgi?id=2291065
Larvitz christian@hofstede.de changed:
What |Removed |Added ---------------------------------------------------------------------------- Comment|0 |updated
--- Comment #0 has been edited ---
Hello,
There are modern implementations of openpgp-card (https://en.wikipedia.org/wiki/OpenPGP_card) supporting tools, written in Rust. They are easy to use, have less moving parts and are licensed as free software (MIT / Apache).
- openpgp-card-tools (https://codeberg.org/openpgp-card) - CLI utility to manage openpgp-cards --> crates.io: https://crates.io/crates/openpgp-card-tools/0.9.4
- openpgp-card-ssh-agent (https://codeberg.org/openpgp-card/ssh-agent) - Lightweight implementation of an ssh-agent to use with openpgp-cards --> crates.io: https://crates.io/crates/openpgp-card-tools
- oct-git (https://codeberg.org/openpgp-card/oct-git) - Lightweht tool to sign git commits using an openpgp-card --> crates.io: https://crates.io/crates/openpgp-card-tool-git
Using those tools, it is much easier to use a openpgp-card (or Yubikey/Nitrokey etc) to securely work with them and there are was less moving parts in comparison to the full gpg suite.
They are already packaged for other modern Linux distributions, but not in the Fedora ecosystem so far. I tried packaging them with rust2rpm for myself and invested two days into that but my technical expertise wasn't enough, to deal with all the rust dependencies that would be necessary.
I'd suggest to have those utilities packaged as Fedora packages to have them included in future releases and give users the option to utilize openpgp crypto cards for secure operations, git signing and ssh-authentication to remote systems.
Regards,
Larvitz
Reproducible: Always