2 files changed, 37 insertions, 0 deletions

diff --git a/scripts/reset-yubikey b/scripts/reset-yubikey
new file mode 100644
index 0000000..a7f38c1
--- /dev/null
+++ b/scripts/reset-yubikey
@@ -0,0 +1,14 @@
+/hex
+scd serialno
+scd apdu 00 20 00 81 08 40 40 40 40 40 40 40 40
+scd apdu 00 20 00 81 08 40 40 40 40 40 40 40 40
+scd apdu 00 20 00 81 08 40 40 40 40 40 40 40 40
+scd apdu 00 20 00 81 08 40 40 40 40 40 40 40 40
+scd apdu 00 20 00 83 08 40 40 40 40 40 40 40 40
+scd apdu 00 20 00 83 08 40 40 40 40 40 40 40 40
+scd apdu 00 20 00 83 08 40 40 40 40 40 40 40 40
+scd apdu 00 20 00 83 08 40 40 40 40 40 40 40 40
+scd apdu 00 e6 00 00
+scd apdu 00 44 00 00
+/echo Card has been successfully reset.
+/bye
diff --git a/scripts/switch-to-backup-yubikey b/scripts/switch-to-backup-yubikey
new file mode 100644
index 0000000..e4d877a
--- /dev/null
+++ b/scripts/switch-to-backup-yubikey
@@ -0,0 +1,23 @@
+#!/bin/sh
+#
+# To make a duplicate Yubikey for GPG keys
+# 1. Insert Yubikey1
+# 2. Create keys/subkeys
+# 3. Run keytocard to transfer keys to Yubikey1
+# 4. QUIT WITHOUT SAVING!!!!! 
+#
+# This will leave the keys on the Yubikey but NOT change the 
+# GPG keyring to point to the Yubikey1 with a stub
+# 
+# 5. Insert Yubikey2
+# 6. Run keytocard to transfer keys to Yubikey2
+# 7. QUIT and SAVE to make GPG point it's stubs to Yubikey2
+#
+# Running any decrypt, auth or sign will now ask you to insert Yubikey2
+# To switch to Yubikey1 at any time run this script to force GPG 
+# to repoint the key stubs to the inserted Yubikey
+
+read -p "Insert the Yubikey you want to use ....  "   ignore
+echo "Switching GPG to backup Yubikey ..."
+
+gpg-connect-agent "scd serialno" "learn --force" /bye