ããã¯ãUbuntu OnlineãFedora OnlineãWindows ãªã³ã©ã€ã³ ãšãã¥ã¬ãŒã¿ãŒãMAC OS ãªã³ã©ã€ã³ ãšãã¥ã¬ãŒã¿ãŒãªã©ã®è€æ°ã®ç¡æãªã³ã©ã€ã³ ã¯ãŒã¯ã¹ããŒã·ã§ã³ã® XNUMX ã€ã䜿çšããŠãOnWorks ç¡æãã¹ãã£ã³ã° ãããã€ããŒã§å®è¡ã§ããã³ãã³ã gpg-agent ã§ãã
ããã°ã©ã ïŒ
NAME
gpg-agent - GnuPGã®ç§å¯éµç®¡ç
SYNOPSIS
gpg-agent [--homedir DIR] [-ãªãã·ã§ã³ file] [ãªãã·ã§ã³]
gpg-agent [--homedir DIR] [-ãªãã·ã§ã³ file] [ãªãã·ã§ã³] - ãµãŒã
gpg-agent [--homedir DIR] [-ãªãã·ã§ã³ file] [ãªãã·ã§ã³] - ããŒã¢ã³ [ã³ãã³ãã©ã€ã³]
DESCRIPTION
gpg-agent ã¯ããããã³ã«ããç¬ç«ããŠç§å¯ (ç§å¯) ããŒã管çããããŒã¢ã³ã§ãã ãã
ã®ããã¯ãšã³ããšããŠäœ¿çšãããŸã gpg & gpgsm ä»ã®ããã€ãã®ãŠãŒãã£ãªãã£ãåæ§ã§ãã
ãšãŒãžã§ã³ãã¯ããªã³ããã³ãã§èªåçã«èµ·åãããŸãã gpg, gpgsm, gpgconfãŸã㯠gpg æ¥ç¶ãšãŒãžã§ã³ã.
ãããã£ãŠãæåã§éå§ããçç±ã¯ãããŸããã ä»å±ã®Secureã䜿çšãããå Žå
ã·ã§ã« ãšãŒãžã§ã³ã 次ã䜿çšããŠãšãŒãžã§ã³ããéå§ã§ããŸãã
gpg-connect-agent /ããããªã
次ã®è¡ãåžžã«è¿œå ããå¿ èŠããããŸã .bashrc ãŸãã¯ä»»æã®åæåãã¡ã€ã«
ãã¹ãŠã®ã·ã§ã«åŒã³åºãã«äœ¿çšãããŸãã
GPG_TTY=$(tty)
GPG_TTY ããšã¯ã¹ããŒã
ãã®ç°å¢å€æ°ãåžžã«ã TTY
æ瀺ã W32 ã·ã¹ãã ã®å Žåããã®ãªãã·ã§ã³ã¯å¿ èŠãããŸããã
é©å㪠pinentry ããã°ã©ã ãããã©ã«ãã§ã€ã³ã¹ããŒã«ãããŠããããšã確èªããŠãã ããã
ãã¡ã€ã«å (ã·ã¹ãã ã«äŸåããŸã) ãŸãã¯ãªãã·ã§ã³ã䜿çšããŸã pinentry-ããã°ã©ã æå®ãã
ãã®ããã°ã©ã ã®ãã«ããŒã ã å€ãã®å Žåãå®éã®ãã¡ã€ã«ããã·ã³ããªã㯠ãªã³ã¯ãã€ã³ã¹ããŒã«ãããšäŸ¿å©ã§ãã
䜿çšããã pinentry (äŸ: '/usr/bin/pinentry-gtk') ãæåŸ ããããã®ã«å€æŽããŸã (äŸ:
'/usr/bin/pinentry'ïŒã
ã³ãã³ã
ã³ãã³ãã¯ãã³ãã³ãã XNUMX ã€ã ãã§ãããšããäºå®ãé€ããŠããªãã·ã§ã³ãšåºå¥ãããŸããã
ããšãã§ããŸããã
- ããŒãžã§ã³
ããã°ã©ã ã®ããŒãžã§ã³ãšã©ã€ã»ã³ã¹æ å ±ãåºåããŸãã ã§ããªãããšã«æ³šæããŠãã ããã
ãã®ã³ãã³ããççž®ããŸãã
- å©ããŠ
-h æã䟿å©ãªã³ãã³ãã©ã€ã³ ãªãã·ã§ã³ãèŠçŽãã䜿çšæ³ã¡ãã»ãŒãžãåºåããŸãã ãäºæ¿ãã ãã
ãã®ã³ãã³ããçç¥ããããšã¯ã§ããŸããã
--ãã³ããªãã·ã§ã³
䜿çšå¯èœãªãã¹ãŠã®ãªãã·ã§ã³ãšã³ãã³ãã®ãªã¹ããåºåããŸãã ã§ããªãããšã«æ³šæããŠãã ããã
ãã®ã³ãã³ããççž®ããŸãã
- ãµãŒã
ãµãŒã㌠ã¢ãŒãã§å®è¡ããã³ãã³ããåŸ ã¡ãŸãã stdinã ããã©ã«ãã®ã¢ãŒãã¯æ¬¡ã®ãšããã§ã
ãœã±ãããäœæããããã§ã³ãã³ãããªãã¹ã³ããŸãã
- ããŒã¢ã³ [ command ã©ã€ã³]
gpg-agent ãããŒã¢ã³ãšããŠèµ·åããŸãã ã€ãŸããã³ã³ãœãŒã«ããåãé¢ããŠå®è¡ããŸãã
èæ¯ã
å¥ã®æ¹æ³ãšããŠãgpg-agent ã®åãšããŠæ°ããããã»ã¹ãäœæããããšãã§ããŸãã gpg-agent
- ããŒã¢ã³ /bin/sh. ãã®ããã«ããŠãç°å¢ã»ããã¢ããã§æ°ããã·ã§ã«ãååŸããŸã
ãã¡ããš; ãã®ã·ã§ã«ãçµäºãããšãgpg-agent ã¯æ°ç§ä»¥å ã«çµäºããŸãã
ç§ã§ãã
OPTIONS
-ãªãã·ã§ã³ file
ããæ§æãèªã¿åããŸã file ããã©ã«ãã®ãŠãŒã¶ãŒããšã®èšå®ã®ä»£ããã«
ãã¡ã€ã«ã ããã©ã«ãã®æ§æãã¡ã€ã«ã®ååã¯ãgpg-agent.conf' ãããŠã
'.gnupg' ãŠãŒã¶ãŒã®ããŒã ãã£ã¬ã¯ããªçŽäžã®ãã£ã¬ã¯ããªã
--homedir DIR
ããŒã ãã£ã¬ã¯ããªã®ååã次ã®ããã«èšå®ããŸãã DIRã ãã®ãªãã·ã§ã³ã䜿çšããªãå ŽåãããŒã
ãã£ã¬ã¯ããªã®ããã©ã«ã㯠'ã/ .gnupg'ã ã³ãã³ãã§æå®ãããå Žåã«ã®ã¿èªèãããŸã
ã©ã€ã³ã ãŸããç°å¢å€æ°ãéããŠæå®ãããããŒã ãã£ã¬ã¯ããªããªãŒããŒã©ã€ããããŸãã
'ã°ãããããŒã ' ãŸã㯠(Windows ã·ã¹ãã ã®å Žå) ã¬ãžã¹ã㪠ãšã³ããªã䜿çšããŠ
HKCU\ãœãããŠã§ã¢\GNU\GnuPG:HomeDir.
Windows ã·ã¹ãã ã§ã¯ãGnuPG ãããŒã¿ãã« ã¢ããªã±ãŒã·ã§ã³ãšããŠã€ã³ã¹ããŒã«ã§ããŸãã ã®
ãã®å Žåããã®ã³ãã³ã ã©ã€ã³ ãªãã·ã§ã³ã®ã¿ãèæ ®ãããããŒã ãèšå®ããä»ã®ãã¹ãŠã®æ¹æ³ãèæ ®ãããŸãã
ãã£ã¬ã¯ããªã¯ç¡èŠãããŸãã
Windows äžã§ GnuPG ãããŒã¿ãã« ã¢ããªã±ãŒã·ã§ã³ãšããŠã€ã³ã¹ããŒã«ããã«ã¯ã空ã®ãã¡ã€ã«åãäœæããŸã
'gpgconf.ctl' ããŒã«ãšåããã£ã¬ã¯ããªå ã«ãããŸã 'gpgconf.exe'ã ã®æ ¹å
ã€ã³ã¹ããŒã«ã¯ãã®ãã£ã¬ã¯ããªããã§ãã ãŸãã¯ããgpgconf.exe' ã€ã³ã¹ããŒã«ãããŸãã
ãšããååã®ãã£ã¬ã¯ããªã®çŽäžãã³'ããã®èŠªãã£ã¬ã¯ããªã ãŸãã次ã®ããšãå¿ èŠã§ã
次ã®ãã£ã¬ã¯ããªãååšããæžã蟌ã¿å¯èœã§ããããšã確èªããŠãã ãã: 'ã«ãŒã/ããŒã ' ã«ãšã£ãŠ
GnuPG ããŒã ãš 'ROOT/var/cache/gnupg2' å éšãã£ãã·ã¥ ãã¡ã€ã«ã®å Žåã
-v
-詳现
å®è¡äžã«è¿œå æ å ±ãåºåããŸãã 次ã®ããã«ããŠåé·æ§ãé«ããããšãã§ããŸã
ããã€ãã®åé·ãªã³ãã³ããäžãã gpgsmãã-vvããªã©ã
-q
- éããª
ã§ããã ãéãã«ããããã«ããŠãã ããã
- ããã
pinentry ãåŒã³åºãããã人éã®ä»å ¥ãå¿ èŠãªãã®ä»ã®ããšãè¡ããªãã§ãã ããã
--åœã®ã·ã¹ãã æé æ代
ãã®ãªãã·ã§ã³ã¯ãã¹ãã®å Žåã«ã®ã¿åœ¹ç«ã¡ãŸãã ã·ã¹ãã æå»ãååŸã«èšå®ããŸãã
æ代 ãã㯠1970 幎ããã®çµéç§æ°ã§ãã
-ãããã°ã¬ãã« ã¬ãã«
åé¡ã調æ»ããããã®ãããã° ã¬ãã«ãéžæããŸãã ã¬ãã« æ°å€ãŸãã¯
ããŒã¯ãŒã:
ãªã ãããã°ã¯ãŸã£ãããããŸããã 1 æªæºã®å€ã代ããã«äœ¿çšããããšãã§ããŸãã
ããŒã¯ãŒãã
åºæ¬ ããã€ãã®åºæ¬çãªãããã° ã¡ãã»ãŒãžã 代ããã« 1 ïœ 2 ã®å€ã䜿çšã§ããŸãã
ããŒã¯ãŒãã
é«åºŠãª
ãã詳现ãªãããã° ã¡ãã»ãŒãžã 代ããã« 3 ïœ 5 ã®å€ã䜿çšã§ããŸãã
ããŒã¯ãŒãã
ãšãã¹ããŒã ããã«è©³ããã¡ãã»ãŒãžãã 代ããã« 6 ïœ 8 ã®å€ã䜿çšã§ããŸãã
ããŒã¯ãŒãã
ã°ã« ååŸã§ãããã¹ãŠã®ãããã° ã¡ãã»ãŒãžã 8 ãã倧ããå€ã䜿çšããããšãã§ããŸã
ããŒã¯ãŒãã®ä»£ããã«ã ããã·ã¥ ãã¬ãŒã¹ ãã¡ã€ã«ã®äœæã®ã¿ãæå¹ã«ãªããŸã
ããŒã¯ãŒãã䜿çšãããŠããå Žåã
ãããã®ã¡ãã»ãŒãžãå®éã®ãããã° ãã©ã°ã«ã©ã®ããã«ãããããããã¯æå®ãããŠãããã
ãã®ããã°ã©ã ã®æ°ãããªãªãŒã¹ã§ã¯å€æŽãããŸãã ãã ãããããã¯æè¯ã®ãã®ãæ éã«éžæãããŠããŸã
ãããã°ã«åœ¹ç«ã¡ãŸãã
- ãããã° ãã©ã°
ãã®ãªãã·ã§ã³ã¯ãããã°ã«ã®ã¿åœ¹ç«ã¡ãåäœã¯ãã€ã§ãå€æŽãããå¯èœæ§ããããŸãã
ç¡æã§ã FLAGS ã¯ããããšã³ã³ãŒããããŠãããéåžžã® C æ§æã§æå®ã§ããŸãã ã®
çŸåšå®çŸ©ãããŠãããããã¯æ¬¡ã®ãšããã§ãã
0 (1) X.509 ãŸã㯠OpenPGP ãããã³ã«é¢é£ããŒã¿
1 (2) 倧ããªæŽæ°ã®å€
2 (4) äœã¬ãã«ã®æå·æäœ
5 (32) ã¡ã¢ãªå²ãåœãŠ
6 (64) ãã£ãã·ã³ã°
7 (128)
ã¡ã¢ãªçµ±èšã衚瀺ããŸãã
9 (512)
ããã·ã¥ãããããŒã¿ã次ã®ååã®ãã¡ã€ã«ã«æžã蟌ã¿ãŸã dbgmd-000*
10 (1024)
Assuan ãããã³ã«ããã¬ãŒã¹ãã
12 (4096)
ãã¹ãŠã®èšŒææžã®æ€èšŒããã€ãã¹ãã
--debug-all
ãšåã --debug=0xffffffff
--debug-wait n
ãµãŒããŒã¢ãŒãã§å®è¡ããŠããå Žåã¯åŸ æ©ããŸã n å®éã®åŠçã«å ¥ãæ°ç§å
ã«ãŒãããŠpidãåºåããŸãã ããã«ããããããã¬ãæ¥ç¶ããæéãåŸãããŸãã
--ãããã°-ã¯ã€ãã¯-ã©ã³ãã
ãã®ãªãã·ã§ã³ã¯ãéåžžã«å®å šãªã©ã³ãã å質ã¬ãã« (Libgcrypt ã®
GCRY_VERY_STRONG_RANDOM)ããã¹ãŠã®ãªã¯ãšã¹ããæšæºã®ã©ã³ãã å質ãŸã§äœäžãããŸãã
ããã¯ãã¹ãã®ã¿ã«äœ¿çšããã補åå質ããŒã«ã¯äœ¿çšãããŸããã
ãã®ãªãã·ã§ã³ã¯ãã³ãã³ãã©ã€ã³ã§æå®ããå Žåã«ã®ã¿æå¹ã§ãã
--debug-pinentry
ãã®ãªãã·ã§ã³ã¯ãPinentry ã«é¢ããè¿œå ã®ãããã°æ å ±ãæå¹ã«ããŸãã ä»ã®ãšãã
ãšäžç·ã«äœ¿çšããå Žåã«ã®ã¿åœ¹ã«ç«ã¡ãŸãã - ãããã° 1024.
--ãã¿ãããªã
ããã»ã¹ãã³ã³ãœãŒã«ããåãé¢ããªãã§ãã ããã ããã¯äž»ã«ãããã°ã«åœ¹ç«ã¡ãŸãã
-s
- NS
-c
--csh æšæºã® Bourne ã·ã§ã«ãŸãã¯
ããããCã·ã§ã«ã ããã©ã«ãã§ã¯ãç°å¢å€æ°ã«åºã¥ããŠæšæž¬ããŸãã
SHELL ããã¯ã»ãšãã©ãã¹ãŠã®å Žåã«ãããŠæ£ããã§ãã
--æŽã¿çŠæ¢
pinentry ã«ãããŒããŒããšããŠã¹ãã€ããŸãªãããã«äŒããŸãã ãã®ãªãã·ã§ã³ã¯
äžè¬ã«ãX-ã¹ãããã£ã³ã°æ»æãåé¿ããããã«ã¯äœ¿çšãããŸããã
-ãã°ãã¡ã€ã« file
ãã¹ãŠã®ãã°åºåã次ã®å Žæã«è¿œå ããŸã fileã ããã¯ããšãŒãžã§ã³ããäœãããŠãããã確èªããã®ã«éåžžã«åœ¹ç«ã¡ãŸã
å®éã«ããã§ãã ãã° ãã¡ã€ã«ããã° ãã¡ã€ã«èšè¿°åãèšå®ãããŠããªãå Žåã¯ã
Windows ãã©ãããã©ãŒã ãã¬ãžã¹ã㪠ãšã³ã㪠HKCU\ãœãããŠã§ã¢\GNU\GnuPG:DefaultLogFileããã
set ã¯ããã°åºåãæå®ããããã«äœ¿çšãããŸãã
--no-allow-mark-trusted
ã¯ã©ã€ã¢ã³ããããŒãä¿¡é Œã§ãããã®ãšããŠããŒã¯ããããšãèš±å¯ããªãã§ãã ãããã€ãŸããããŒã
'ãã©ã¹ããªã¹ã.txt' ãã¡ã€ã«ã ããã«ããããŠãŒã¶ãŒã誀ã£ãŠ Root ãåãå ¥ããããšãé£ãããªããŸãã
CA ããŒã
--allow-ããªã»ãã-ãã¹ãã¬ãŒãº
ãã®ãªãã·ã§ã³ã«ããã次ã®äœ¿çšãå¯èœã«ãªããŸãã gpg ããªã»ãã ãã¹ãã¬ãŒãº ã®å éšãã£ãã·ã¥ãã·ãŒããã
gpg-agent ãã¹ãã¬ãŒãºä»ãã
--allow-loopback-pinentry
ã¯ã©ã€ã¢ã³ããã«ãŒããã㯠pinentry æ©èœã䜿çšã§ããããã«ããŸãã ãªãã·ã§ã³ãåç §ããŠãã ãã ãã³ãšã³ããªãŒã¢ãŒã
詳现ã«ã€ããŠã¯ã
--no-allow-å€éšãã£ãã·ã¥
ãã¹ãã¬ãŒãºã«å€éšãã£ãã·ã¥ã䜿çšããæ©èœãæå¹ã«ããªãããã« Pinentry ã«æ瀺ããŸãã
äžéšã®ãã¹ã¯ãããç°å¢ã§ã¯ãXNUMX ã€ã®ãã¹ã¿ãŒ ãã¹ã¯ãŒãã§ãã¹ãŠã®è³æ Œæ å ±ã®ããã¯ã解é€ããããšã奜ãå ŽåããããŸãã
è¿œå ã®å€éšãã£ãã·ã¥ã䜿çšãã Pinentry ãã€ã³ã¹ããŒã«ããŠããå¯èœæ§ããããŸãã
ãã®ãããªæ¿çãå®è¡ããŸãã ãã®ãªãã·ã§ã³ã䜿çšããå ŽåãPinentry ã¯æ¬¡ã®ããšãè¡ããªãããã«ããããšããå§ãããŸãã
ãã®ãããªãã£ãã·ã¥ã䜿çšãã代ããã«ãåžžã«ãŠãŒã¶ãŒã«èŠæ±ããããã¹ãã¬ãŒãºãå°ããŸãã
--allow-emacs-pinentry
Pinentry ã«æ©èœããã¹ãã¬ãŒãº ãšã³ããªãå®è¡äžã® Emacs ã«æµçšã§ããããã«æ瀺ããŸãã
å®äŸã ãããã©ã®ããã«æ£ç¢ºã«åŠçããããã¯ã䜿çšããã Pinentry ã®ããŒãžã§ã³ã«ãã£ãŠç°ãªããŸãã
--眲åçšãã£ãã·ã¥ãç¡èŠãã
ãã®ãªãã·ã§ã³ã«ããã gpg-agent ãã¹ãŠã®çœ²åã«å¯ŸããŠãã¹ãã¬ãŒãº ãã£ãã·ã¥ããã€ãã¹ãã
æè¡ã ãã®åäœãå¶åŸ¡ããã»ãã·ã§ã³ããšã®ãªãã·ã§ã³ãããããšã«æ³šæããŠãã ããã
ãã ãããã®ã³ãã³ã ã©ã€ã³ ãªãã·ã§ã³ãåªå ãããŸãã
--ããã©ã«ããã£ãã·ã¥-ttl n
ãã£ãã·ã¥ ãšã³ããªãæå¹ãªæéãèšå®ãã n ç§ã ããã©ã«ãã¯600ç§ã§ãã
ãã£ãã·ã¥ ãšã³ããªã«ã¢ã¯ã»ã¹ãããã³ã«ããšã³ããªã®ã¿ã€ããŒããªã»ãããããŸãã ãšã³ããªãèšå®ããã«ã¯
æ倧寿åœãäœ¿çš æ倧ãã£ãã·ã¥-ttl.
--default-cache-ttl-ssh n
SSH ããŒã«äœ¿çšããããã£ãã·ã¥ ãšã³ããªã®æå¹æéãèšå®ããŸãã n ç§ã ããã©ã«ãã¯
1800ç§ã ãã£ãã·ã¥ ãšã³ããªã«ã¢ã¯ã»ã¹ãããã³ã«ããšã³ããªã®ã¿ã€ããŒããªã»ãããããŸãã ã«
ãšã³ããªã®æ倧åç¶æéãèšå®ããã«ã¯ã䜿çšããŸã æ倧ãã£ãã·ã¥-ttl-ssh.
--max-ãã£ãã·ã¥-ttl n
ãã£ãã·ã¥ ãšã³ããªã®æå¹æéã®æ倧å€ã次ã®ããã«èšå®ããŸãã n ç§ã ãã®åŸã¯ãã£ãã·ã¥
ãšã³ããªã¯ãæè¿ã¢ã¯ã»ã¹ãããå ŽåããŸãã¯æ¬¡ã䜿çšããŠèšå®ãããå Žåã§ãæéåãã«ãªããŸãã
gpg ããªã»ãã ãã¹ãã¬ãŒãºã ããã©ã«ã㯠2 æé (7200 ç§) ã§ãã
--max-cache-ttl-ssh n
SSH ããŒã«äœ¿çšããããã£ãã·ã¥ ãšã³ããªã®æå¹æéã®æ倧å€ã次ã®ããã«èšå®ããŸãã n ç§ã åŸ
ä»åã¯ããã£ãã·ã¥ ãšã³ããªã¯ãæè¿ã¢ã¯ã»ã¹ãããå Žåã§ãæéåãã«ãªããŸãã
ã䜿çšããŠèšå®ãããŠããŸã gpg ããªã»ãã ãã¹ãã¬ãŒãºã ããã©ã«ã㯠2 æé (7200 ç§) ã§ãã
--enforce-ãã¹ãã¬ãŒãºå¶çŽ
ãŠãŒã¶ãŒããã¹ãã¬ãŒãºããã€ãã¹ã§ããªãããã«ããããšã§ããã¹ãã¬ãŒãºã®å¶çŽã匷å¶ããŸãã
ããšã«ããåãããã¿ã³ã
--min-ãã¹ãã¬ãŒãº-len n
ãã¹ãã¬ãŒãºã®æå°ã®é·ããèšå®ããŸãã æ°ãããã¹ãã¬ãŒãºãå ¥åããå Žåã¯çãããŠãã ãã
ãã®å€ãè¶ ãããšèŠåã衚瀺ãããŸãã ããã©ã«ã㯠8 ã§ãã
--min-ãã¹ãã¬ãŒãº-éã¢ã«ãã¡ n
ãã¹ãã¬ãŒãºã«å¿ èŠãªæ°åãŸãã¯ç¹æ®æåã®æå°æ°ãèšå®ããŸãã
ãã®æ¡æ°æªæºã®æ°ãããã¹ãã¬ãŒãºãŸãã¯ç¹æ®ãªãã¹ãã¬ãŒãºãå ¥åããå Žå
æåã衚瀺ããããšèŠåã衚瀺ãããŸãã ããã©ã«ã㯠1 ã§ãã
--ãã§ãã¯ãã¹ãã¬ãŒãºãã¿ãŒã³ file
ã§æå®ããããã¿ãŒã³ã«å¯ŸããŠãã¹ãã¬ãŒãºã確èªããŸãã fileã æ°èŠã«å ¥åããå Žå
ãã¹ãã¬ãŒãºããããã®ãã¿ãŒã³ã®ããããã«äžèŽãããšãèŠåã衚瀺ãããŸãã file ãã¹ã
絶察ãã¡ã€ã«åã«ããå¿ èŠããããŸãã ããã©ã«ãã§ã¯ããã¿ãŒã³ ãã¡ã€ã«ã¯äœ¿çšãããŸããã
ã»ãã¥ãªãã£äžã®æ³šæ: ãã¹ãã¬ãŒãºããã¿ãŒã³ã®ãªã¹ããŸãã¯
å®å šãªèŸæžã«å¯ŸããŠãããè¯ãããšã匷å¶ããã®ã«ããŸãå¹æçã§ã¯ãããŸãã
ãã¹ãã¬ãŒãºã ãŠãŒã¶ãŒã¯ããã«ããã®ãããªããªã·ãŒãåé¿ããæ¹æ³ãèŠã€ããã§ãããã ããè¯ã
ããªã·ãŒã¯ãé©åãªã»ãã¥ãªãã£è¡åã«ã€ããŠãŠãŒã¶ãŒãæè²ãããªãã·ã§ã³ã§
ãã¹ãã¬ãŒãº ã¯ã©ãã«ãŒã¯ããã¹ãŠã®ãŠãŒã¶ãŒã®ãã¹ãã¬ãŒãºãå®æçã«ç£èŠããŠãéåžžã«åçŽãªãã¹ãã¬ãŒãºãæ€åºããŸãã
ãã®ã
--æ倧ãã¹ãã¬ãŒãºæ¥æ° n
次ã®å Žåã¯ãŠãŒã¶ãŒã«ãã¹ãã¬ãŒãºãå€æŽããããã«äŸé ŒããŸãã n æåŸã®å€æŽããæ¥æ°ãçµéããŸããã
--enforce-ãã¹ãã¬ãŒãºå¶çŽ ãŠãŒã¶ãŒããã®ãã§ãã¯ããã€ãã¹ã§ããªãããã«èšå®ããŸãã
--enable-ãã¹ãã¬ãŒãºå±¥æŽ
ãã®ãªãã·ã§ã³ã¯ãŸã äœãè¡ããŸããã
--pinentry-invisible-char ãã£ãªãªãã
ãã®ãªãã·ã§ã³ã¯ Pinentry ã«äœ¿çšããããã«èŠæ±ããŸã ãã£ãªãªãã é ãæåã衚瀺ããããã®ãã®ã§ãã ãã£ãªãªãã
8 æåã® UTF-XNUMX æååã§ããå¿ èŠããããŸãã Pinentry ã¯ãã®èŠæ±ãåãå ¥ããå Žåãããã°ãåãå ¥ããªãå ŽåããããŸãã
--pinentry-ã¿ã€ã ã¢ãŠã n
ãã®ãªãã·ã§ã³ã¯ã次ã®åŸã« Pinentry ã«ã¿ã€ã ã¢ãŠããèŠæ±ããŸãã n ãŠãŒã¶ãŒå ¥åãªãã®ç§æ°ã ã®
ããã©ã«ãå€ã® 0 㯠pinentry ã«ã¿ã€ã ã¢ãŠããèŠæ±ããŸããããPinentry ã¯ã¿ã€ã ã¢ãŠããèŠæ±ããããšã¯ãããŸããã
ãã®å Žåãç¬èªã®ããã©ã«ãã®ã¿ã€ã ã¢ãŠãå€ã䜿çšãããŸãã Pinentry ã¯ãããå°éããå Žåãããã°ãå°éããªãå ŽåããããŸã
ãªã¯ãšã¹ãã§è©³çŽ°ã«æå®ãããéãã«ãªããŸãã
--pinentry-ããã°ã©ã ãã¡ã€ã«å
ããã°ã©ã ã䜿çšãã ãã¡ã€ã«å PIN å ¥åãšããŠã ããã©ã«ãã¯ã€ã³ã¹ããŒã«ã«äŸåããŸãã
ããã©ã«ãèšå®ã§ã¯ãããã©ã«ãã® pinentry ã®åå㯠'ãã³ãšã³ããªãŒ'; ãã
ãã®ãã¡ã€ã«ã¯ååšããŸããããããã³ãšã³ããªãŒ-åºæ¬' ãååšããå Žåã¯åŸè ã䜿çšãããŸãã
Windows ãã©ãããã©ãŒã ã§ã¯ãããã©ã«ãã§ã¯ããã®äžã®æåã®æ¢åããã°ã©ã ã䜿çšãããŸãã
ãªã¹ã: 'bin\pinentry.exe'ã'..\Gpg4win\bin\pinentry.exe'ã'..\Gpg4win\pinentry.exe'ã
'..\GNU\GnuPG\pinentry.exe'ã'..\GNU\bin\pinentry.exe'ã'bin\pinentry-basic.exe'
ããã§ããã¡ã€ã«å㯠GnuPG ã€ã³ã¹ããŒã« ãã£ã¬ã¯ããªããã®çžå¯Ÿãã¹ã§ãã
--pinentry-touch-file ãã¡ã€ã«å
ããã©ã«ãã§ã¯ãgpg-agent ããªã¯ãšã¹ãããªãã¹ã³ããŠãããœã±ããã®ãã¡ã€ã«åãæž¡ãããŸãã
Pinentry ã«ä¿åããçµäºããåã«ãã®ãã¡ã€ã«ã«ã¢ã¯ã»ã¹ã§ããããã«ããŸã (ãã㯠Pinentry ã§ã®ã¿å®è¡ãããŸã)ã
åªãã¢ãŒã)ã ãã®ãªãã·ã§ã³ã¯ãPinentry ã«æž¡ããããã¡ã€ã«ã次ã®ããã«å€æŽããŸãã ãã¡ã€ã«åãéžæããŸãã
ç¹å¥ãªåå / dev / null ãã®æ©èœãå®å šã«ç¡å¹ã«ããããã«äœ¿çšã§ããŸãã ãäºæ¿ãã ãã
Pinentry ã¯ãã®ãã¡ã€ã«ãäœæãããå€æŽãšã¢ã¯ã»ã¹ãå€æŽããã ãã§ãã
æéã
--scdaemon-ããã°ã©ã ãã¡ã€ã«å
ããã°ã©ã ã䜿çšãã ãã¡ã€ã«å ã¹ããŒãã«ãŒãããŒã¢ã³ãšããŠã ããã©ã«ãã¯ã€ã³ã¹ããŒã«ã§ã
äŸåããŠããã gpgconf
--disable-scdaemon
scdaemon ããŒã«ã¯äœ¿çšããªãã§ãã ããã ãã®ãªãã·ã§ã³ã¯ã
ã¹ããŒãã«ãŒãæäœãå®è¡ããæ©èœã å®è¡æã«ãã®ãªãã·ã§ã³ãæå¹ã«ããããšã«æ³šæããŠãã ããã
ãã§ã«ãã©ãŒã¯ããã scdaemon ã匷å¶çµäºããŸããã
--disable-check-own-socket
gpg-agent å®æçãªã»ã«ããã¹ãã䜿çšããŠãçé£ããããœã±ãããæ€åºããŸãã ããã¯éåžžã
ã® XNUMX çªç®ã®ã€ã³ã¹ã¿ã³ã¹ãæå³ããŸã gpg-agent ãœã±ãããä¹ã£åãã gpg-agent æå¿
ãã®åŸãããèªäœãçµäºããŸãã ãã®ãªãã·ã§ã³ã¯ããã®ã»ã«ããã¹ããç¡å¹ã«ããããã«äœ¿çšã§ããŸãã
ãããã°ç®çã
--æšæºãœã±ããã䜿çš
--no-use-standard-socket
--use-standard-socket-p
GnuPG 2.1 以éãæšæºãœã±ãããåžžã«äœ¿çšãããŸãã ãããã®ãªãã·ã§ã³ã¯ãããããŸãã
å¹æã ã³ãã³ã gpg-agent --use-standard-socket-p ãããã£ãŠåžžã«æ»ã£ãŠããŸã
æåã
- ç»é¢ æåå
--ttyname æåå
--ttytype æåå
--lc-ctype æåå
--lc-ã¡ãã»ãŒãž æåå
--xæš©é æåå
ãããã®ãªãã·ã§ã³ã¯ãããŒã«ãªãŒãŒã·ã§ã³æ å ±ãæž¡ãããã«ãµãŒã㌠ã¢ãŒãã§äœ¿çšãããŸãã
--keep-tty
--keep-display
çŸåšã®å€æŽãªã¯ãšã¹ããç¡èŠãã TTY ãŸã㯠X ãŠã£ã³ã㊠ã·ã¹ãã ã® DISPLAY å€æ°
ããããã ããã¯ããã³ãšã³ããªãããã¯ããŠæ¬¡ã®å Žæã«ãããã¢ããããã®ã«äŸ¿å©ã§ãã TTY ãŸãã¯ãã£ã¹ãã¬ã€
ãšãŒãžã§ã³ããéå§ããŸããã
--è¿œå ãœã±ãã å
ãŸããæå®ããããœã±ããäžã®ãã€ãã£ã GPG ãšãŒãžã§ã³ãæ¥ç¶ããªãã¹ã³ããŸãã 䜿çšç®ç
ãã®è¿œå ã®ãœã±ããã¯ããªã¢ãŒãããã® Unix ãã¡ã€ã³ ãœã±ãã転éãã»ããã¢ããããããšã§ãã
ãã·ã³ãããŒã«ã« ãã·ã³ã®ãã®ãœã±ããã«æ¥ç¶ããŸãã ã gpg ãªã¢ãŒããã·ã³äžã§å®è¡äž
ãã®åŸãããŒã«ã«ã® gpg-agent ã«æ¥ç¶ãããã®ç§å¯ããŒã䜿çšã§ããŸãã ããã«ããã
ç§å¯éµãä»äººã«å ¬éããã«ããªã¢ãŒã ãã·ã³äžã®ããŒã¿ã埩å·åãŸãã¯çœ²åããŸãã
ãªã¢ãŒããã·ã³ã
--enable-ssh-support
--enable-putty-support
OpenSSH ãšãŒãžã§ã³ã ãããã³ã«ãæå¹ã«ããŸãã
ãã®åäœã¢ãŒãã§ã¯ããšãŒãžã§ã³ã㯠gpg-agent ãå®è£ ããã ãã§ã¯ãããŸããã
ãããã³ã«ã ãã§ãªããOpenSSH ã«ãã£ãŠ (å¥ã®ãœã±ããçµç±ã§) 䜿çšããããšãŒãžã§ã³ã ãããã³ã«ãå«ãŸããŸãã
ãããã£ãŠãgpg-agent ãããããã€ã³ã®ä»£æ¿åãšããŠäœ¿çšã§ããã¯ãã§ãã
ããç¥ãããŠãã ssh-agent ã®å Žåã
ãšãŒãžã§ã³ããéããŠäœ¿çšããã SSH ããŒã¯ãgpg-agent ã«è¿œå ããå¿ èŠããããŸã
æå㯠ssh-add ãŠãŒãã£ãªãã£ã䜿çšããŸãã ããŒãè¿œå ããããšãssh-add ã¯æ¬¡ã®ããšãèŠæ±ããŸãã
æäŸãããã㌠ãã¡ã€ã«ã®ãã¹ã¯ãŒããå ¥åããä¿è·ãããŠããªãã㌠ãããªã¢ã«ã
ãšãŒãžã§ã³ã; ããã«ãããgpg-agent ã¯ãã¹ãã¬ãŒãºãèŠæ±ããŸãããã¹ãã¬ãŒãºã¯æ¬¡ã®ç®çã§äœ¿çšãããŸãã
æ°ããåä¿¡ããããŒãæå·åããããã gpg ãšãŒãžã§ã³ãåºæã®ãã£ã¬ã¯ããªã«ä¿åããŸãã
ãã®æ¹æ³ã§ããŒã gpg-agent ã«è¿œå ããããšãgpg-agent ã¯æ¬¡ã®ããšãè¡ãæºåãæŽããŸãã
ããŒã䜿çšããŸãã
泚: gpg-agent ã眲åãªã¯ãšã¹ããåä¿¡ããå ŽåããŠãŒã¶ãŒã¯æ¬¡ã®æäœãè¡ãå¿ èŠãããå ŽåããããŸãã
ä¿åãããããŒã埩å·åããããã«å¿ èŠãªãã¹ãã¬ãŒãºã®å ¥åãæ±ããããŸãã 以æ¥
ssh-agent ãããã³ã«ã«ã¯ããšãŒãžã§ã³ãã«ãããéç¥ããã¡ã«ããºã ãå«ãŸããŠããŸããã
å®è¡äžã®ãã£ã¹ãã¬ã€/ã¿ãŒããã«ãgpg-agent ã® ssh-support 㯠TTY ãŸã㯠X ã䜿çšããŸã
gpg-agent ãèµ·åãããå Žæã衚瀺ããŸãã ãã®è¡šç€ºãçŸåšã®è¡šç€ºã«åãæ¿ããã«ã¯
XNUMX ã€ã¯ã次ã®ã³ãã³ãã䜿çšã§ããå Žåã§ãã
gpg-connect-agent updatestartuptty /bye
ãã¹ãŠã® GnuPG ã³ã³ããŒãã³ãã¯å¿ èŠã«å¿ã㊠gpg-agent ãèµ·åããããšããŸãããããã¯äžå¯èœã§ã
ssh ãµããŒãã«ã€ããŠã¯ãssh ã¯èªèããªãããã§ãã ãããã£ãŠãGnuPG ããŒã«ããªãå Žåã¯ã
ãšãŒãžã§ã³ããå®è¡ãããŠããã¢ã¯ã»ã¹ã§ã¯ãssh ã gpg-agent ã䜿çšã§ãããšããä¿èšŒã¯ãããŸãã
èªèšŒçšã ãããä¿®æ£ããã«ã¯ãå¿ èŠã«å¿ããŠã次ã®ç°¡åãªæ¹æ³ã䜿çšã㊠gpg-agent ãèµ·åããŸãã
ã³ãã³ãïŒ
gpg-connect-agent /ããããªã
ãè¿œå ãã -詳现 ãšãŒãžã§ã³ãã®èµ·åã®é²è¡ç¶æ³ã瀺ããŸãã
ã --enable-putty-support Windows ã§ã®ã¿å©çšå¯èœã§ãgpg-agent ã®äœ¿çšãå¯èœã§ã
SSHå®è£ ã䜿ã£ãŠ ããã ããã¯éåžžã® ssh-agent ãµããŒããšäŒŒãŠããŸããã
å¿ èŠã«å¿ã㊠Windows ã¡ãã»ãŒãž ãã¥ãŒã䜿çšããŸãã ãã.
ãã¹ãŠã®é·ããªãã·ã§ã³ã¯ã
å é ã® XNUMX ã€ã®ããã·ã¥ã
äŸ
ãã°ã€ã³ ã·ã§ã«ã§ GPG_TTY ç°å¢å€æ°ãèšå®ããããšãéèŠã§ããããšãã°ã
ã®äžã« 'ã/ .bashrc' åæåã¹ã¯ãªãã:
GPG_TTY=$(tty) ããšã¯ã¹ããŒã
Ssh ãšãŒãžã§ã³ã ãµããŒããæå¹ã«ããå Žåã¯ãããã
ããªãã®åæåã¹ã¯ãªãã:
SSH_AGENT_PID ã®èšå®ã解é€ãã
if [ "${gnupg_SSH_AUTH_SOCK_by:-0}" -ne $$ ]; ãããã
ãšã¯ã¹ããŒã SSH_AUTH_SOCK="${HOME}/.gnupg/S.gpg-agent.ssh"
fi
onworks.net ãµãŒãã¹ã䜿çšã㊠gpg-agent ããªã³ã©ã€ã³ã§äœ¿çšãã