Child pages
  • Preventing Gnome-Keyring from caching GPG keys forever

Versions Compared


  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Migrated to Confluence 5.3

Gnome-Keyring of current Debian stable always memorizes decrypted GPG keys for the complete session (i.e. until logging out). This is far too long and pretty dangerous and currently there is no way to change this in any settings GUI.

Here is how to do it on command line:

No Format
gsettings set org.gnome.crypto.cache gpg-cache-method 'timeout'
# values are 'session', 'idle', 'timeout'
gsettings set org.gnome.crypto.cache gpg-cache-ttl 300
# value is in seconds
#gsettings set org.gnome.crypto.cache gpg-cache-authorize false
# no idea what this means, my XFCE4 desktops have it set to false