From 9a85fdd22872db25c550db7a491579f74830d667 Mon Sep 17 00:00:00 2001 From: clippy Date: Fri, 15 May 2026 17:16:39 -0400 Subject: [PATCH 1/2] link to pgp login data object documentation --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index d0d47847..dbf04603 100644 --- a/README.md +++ b/README.md @@ -893,7 +893,7 @@ quit EOF ``` -[Smart card attributes](https://gnupg.org/howtos/card-howto/en/smartcard-howto-single.html) can also be set with `gpg --edit-card` and `admin` mode. Use `help` to see available options. The `login` attribute is [required](https://github.com/drduh/YubiKey-Guide/issues/461). +[Smart card attributes](https://gnupg.org/howtos/card-howto/en/smartcard-howto-single.html) can also be set with `gpg --edit-card` and `admin` mode. Use `help` to see available options. The [login](https://www.gnupg.org/documentation/manuals/gnupg/gpg_002dcard.html) attribute is [required](https://github.com/drduh/YubiKey-Guide/issues/461). Run `gpg --card-status` to verify results (*Login data* field). From b554ff47fc29532602c5b91c2b6d4c307322169b Mon Sep 17 00:00:00 2001 From: clippy Date: Fri, 15 May 2026 17:42:27 -0400 Subject: [PATCH 2/2] Use separate variable for gpg login attribute --- README.md | 11 +++++++++-- 1 file changed, 9 insertions(+), 2 deletions(-) diff --git a/README.md b/README.md index dbf04603..046c1a3e 100644 --- a/README.md +++ b/README.md @@ -881,13 +881,20 @@ ykman openpgp access set-retries 5 5 5 -f -a $ADMIN_PIN ## Set attributes -Use previously set values: +Set a public identifier for the gpg subsystem: +```console +export GPG_LOGIN_ATTR="My Cool YubiKey - 2025" +``` +> [!IMPORTANT] +> Anyone with access to the yubikey can see this attribute, even without authentication. It is recommended not to include personally identifiable information in this field to prevent a bad actor from associating a lost yubikey with its owner. + +Update the login attribute: ```console gpg --command-fd=0 --pinentry-mode=loopback --edit-card <