added note about GnuTLS patch for "gnu-dummy" S2K extension

author Daniel Kahn Gillmor <dkg@fifthhorseman.net>

Thu, 14 Aug 2008 03:01:03 +0000 (23:01 -0400)

committer Daniel Kahn Gillmor <dkg@fifthhorseman.net>

Thu, 14 Aug 2008 03:01:03 +0000 (23:01 -0400)
author Daniel Kahn Gillmor <dkg@fifthhorseman.net>
Thu, 14 Aug 2008 03:01:03 +0000 (23:01 -0400)
committer Daniel Kahn Gillmor <dkg@fifthhorseman.net>
Thu, 14 Aug 2008 03:01:03 +0000 (23:01 -0400)
diff --git a/website/bugs/handle-passphrase-locked-secret-keys.mdwn b/website/bugs/handle-passphrase-locked-secret-keys.mdwn

index a61b5ba369317eb8a367007fa96cd3f87f0e7dd8..b66e4c7a98401523d368176ea2e5e8910749d744 100644 (file)
--- a/website/bugs/handle-passphrase-locked-secret-keys.mdwn
+++ b/website/bugs/handle-passphrase-locked-secret-keys.mdwn
@@ -41,6 +41,13 @@ work for reasonable values of `$KEYID`:
         (cd "$TMPDIR" && ssh-add -c "$kname")
         rm -rf "$TMPDIR"        
  
+Good news!  [I've crafted a patch for GnuTLS to enable it to read
+exported subkeys using this GNU
+extension](http://lists.gnu.org/archive/html/gnutls-devel/2008-08/msg00005.html),
+so if we can get it incorporated into upstream (and/or into debian),
+we have a possible solution, as long as the authentication key is a
+subkey, and not a primary key.
+
  ---------
  
  Ben Laurie and Rachel Willmer's
author	Daniel Kahn Gillmor <dkg@fifthhorseman.net>
	Thu, 14 Aug 2008 03:01:03 +0000 (23:01 -0400)
committer	Daniel Kahn Gillmor <dkg@fifthhorseman.net>
	Thu, 14 Aug 2008 03:01:03 +0000 (23:01 -0400)