Mouse
Mouse
My use case: dealing with email that includes both S/MIME and OpenPGP pieces. Applications (e.g., Thunderbird) usually support this and allow choosing per-individual-email-piece.
In short, I don't see benefits in 40% rule.
Offhand, I suspect that you're creating "fat" binaries that on top of that statically link all the libraries, like OpenSSL. Whether that's sufficient to explain such an increase in size...
I can only say that on my MacOS systems I link OpenSC dynamically with Macports-installed OpenSSL (was 1.1.1, now 3.0.1). Everything seems to be working fine, including apps that use...
Yes, on all of my machines everything is either linked against the single Macports-provided dynamic (.dylib) OpenSSL, or MacOS-provided LibreSSL (only OS-provided binaries). I don't know how hard it would...
SSH works perfectly well with PIV keys. I recommend you use it instead of trying what you currently do. See `--read-ssh-key` argument (either `pkcs11-tool` or `pkcs15-tool`).
Another problem you have is that the bone-headed GnuPG developers insist on opening the token in exclusive mode. Which means - what you want just cannot work with the stock...
Let me repeat myself: you are likely to address your needs with the least amount of blood if you switch to PIV-only. If you insist on using both on the...
It looks like he’s trying to pull (X.509?) certificates from an OpenPGP applet. Ain’t going to happen. Way back I suggested to stick to one PIV applet, and warned that...
You seem to be using Yubikey, which has PIV applet. Yet you seem to be doing everything in your power to avoid using it, trying to implement an OpenPGP-based approach...