Are the nice folks of GPG Tools on here? Thanks for fixing an annoying multi account issue in the plugin with the latest Mail app.

#gpgtools

#macOS broke #scdaemon and support for certain #ccid devices a few iterations ago, but if you're running Sonoma or are using @GPGTools you have to make some changes to your PATH, gpg.conf, gpg-agent.conf, and scdaemon.conf files to get #GPG working with a @yubico #YubiKey. Otherwise, no matter what you do, GPG won't be able to recognize the YubiKey properly, or access the key material stored on it.

This is basically the result of macOS "forcing" the use of its native #PCSC #daemon, which conflicts with the GPG #scdaemon. In addition, if you use both #GPGTools and a version of GPG installed via #Homebrew you will need to ensure that the non-Homebrew version is first in your PATH even for #CLI stuff.

This is apparently a known issue, and has been for a while, but it's hard to find the solution if you don't know exactly what to look for. The fixes require a bit of cargo-cult configuration changes; I haven't managed to fine it down to the smallest set of necessary changes yet, and this one doesn't cover the shell updates, so feel free to post a link of you know of a better starting point than this one.

https://github.com/Homebrew/homebrew-core/pull/75755

I noticed #gpgtools on #macos does not have any timeout or whatsoever on caching keys for encrypted material : 1) Apple mail. 2) files.

This appears to me as a security conscious person quite problematic.

Any clues why is that so and how to prevent this? (There's an gpg-agent running and the config has TTLs configured.)

RTs appreciated

If you rely on GPGTools for your email, don’t upgrade to macOS Sonoma yet. Manual encryption and decryption seem to work without issues. https://gpgtools.org/sonoma

#gpg #pgp #gpgtools #macos #sonoma

Wow. Laptop upgraded GPGTools last night & ... this. Emailed devs & got a thoughtful reply in response.

Lesson here for those struggling with funding an OSS project - more around how you communicate a plea for support, to me.

Bad communication can lose your supporters faith - concerned the project was hijacked until heard back from Lukas (message signed of course)

Now purchased a "support contract", mostly in horror I'd used it for years & only ever donated $3.

#gpgtools #oss #funding