Qiita - 人気の記事Oct 4

マイナンバーカードがiPhoneに入るので中身を見てみる
https://qiita.com/todotodo/items/75179d3bec8d9572fc98?utm_campaign=popular_items&utm_medium=feed&utm_source=popular_items

#qiita #Security #OpenSC #マイナンバーカード

マイナンバーカードがiPhoneに入るので中身を見てみる - Qiita

背景 マイナンバーカードがiPhoneに入る 2025年6月からマイナンバーカードをiPhoneに入れることができるようです 上記リンクの手順に従うと数分ほどの操作でウォレットアプリにマイナンバーカードが追加されます 何ができるの? 通常のマイナンバーカードと...

Qiita
Klaus FrankAug 17, 2025

Wow is the documentation for Smartcards shit. Like it impossible to even figure the basics out.

Like e.g. how do I delete the private key from this card? Why does "pkcs11-tool -b" not work? Why does it reply with a login error when I enter the correct pin and with an internal error if I enter an invalid one?
????

#smartcard #gpg #pkcs11 #opensc

Show threadMartin ███████Jun 12, 2025
Not sure if the package maintainer is following me here, but while upstream is entirely disinterested, the fix for "my" #OpenSC bug was backported from upstream's master branch *immediately* and already is in #Debian #Trixie. 🙏 Something *still* feels off now that I'm looking at it under the magnifying glass, though. I just can't tell for sure yet whether /usr/bin/pkcs11-register has maybe always exhibited that particular bit of wonkiness.
Martin ███████Jun 6, 2025
For this bug, I have a flawless, eternally robust and nearly organic workaround for all my enterprise users with their silly proprietary smartcards and probably should stop caring. 🤷‍♀️ #Debian #Trixie #OpenSC https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1107224
#1107224 - Incorrect invocation of /usr/bin/pkcs11-register in /etc/xdg/autostart/pkcs11-register.desktop - Debian Bug report logs

GNU/Trinukso ۞Mar 22, 2025
Qué puto asco da usar el #DNI electrónico... ¿a estás alturas no forma parte de #OpenSC?
Jan AntošFeb 26, 2025
It is so easy, #archlinux #greetd #opensc and pam_p11 auth module. Just add your #estonian id card certificate to trusted certs and configure (one line) pam_p11 in /etc/pam.d/system-auth and voila I can login to my computer using gov issued ID card.
Show threadOpenSoul ✅Jan 6, 2025

Siamo nel #2025 e con #Firefox sulle *buntu #Opensc e tutti i certificati #PKCS11 (quindi anche robe come la #CNS) continuano a *NON* funzionare grazie al fantastico sistema #SNAP che qualcuno nello staff di #Ubuntu ha detto semplicemente "freghiamocene", nonostante sia stato segnalato da ANNI il problema

Vediamo quanti anni devono passare ancora... Io sono senza parole 😞

OpenSoul ✅Jan 6, 2025

Siamo nel #2025 e con #Firefox sulle *buntu #Opensc e tutti i certificati #PKCS11 (quindi anche robe come la #CNS) continuano a *NON* funzionare grazie al fantastico sistema #SNAP che qualcuno nello staff di #Ubuntu ha detto semplicemente "freghiamocene", nonostante sia stato segnalato da ANNI il problema

Vediamo quanti anni devono passare ancora... Io sono senza parole 😞

BSI WID Advisories FeedSep 9, 2024

#BSI WID-SEC-2024-2075: [NEU] [UNGEPATCHT] [niedrig] #OpenSC: Schwachstelle ermöglicht Codeausführung

Ein Angreifer mit physischem Zugriff kann eine Schwachstelle in OpenSC ausnutzen, um beliebigen Programmcode auszuführen.

https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-2075

Warn- und Informationsdienst

BSI WID Advisories FeedSep 3, 2024

#BSI WID-SEC-2024-1969: [NEU] [UNGEPATCHT] [niedrig] #OpenSC: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen

Ein Angreifer mit physischem Zugriff kann mehrere Schwachstellen in OpenSC ausnutzen, um Informationen offenzulegen.

https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1969

Warn- und Informationsdienst