WATCHGNUPG(1) GNU Privacy Guard 2.1 WATCHGNUPG(1)
watchgnupg – Read and print logs from a socket
watchgnupg [–force] [–verbose] socketname
Most of the main utilities are able to write their log files to a Unix
Domain socket if configured that way. watchgnupg is a simple listener
for such a socket. It ameliorates the output with a time stamp and
makes sure that long lines are not interspersed with log output from
other utilities. This tool is not available for Windows.
watchgnupg is commonly invoked as
watchgnupg –force ~/.gnupg/S.log
watchgnupg understands these options:
Delete an already existing socket file.
Instead of reading from a local socket, listen for connects on
TCP port n.
Enable extra informational output.
Print version of the program and exit.
–help Display a brief help page and exit.
$ watchgnupg –force /home/foo/.gnupg/S.log
This waits for connections on the local socket ‘/home/foo/.gnupg/S.log’
and shows all log entries. To make this work the option log-file needs
to be used with all modules which logs are to be shown. The value for
that option must be given with a special prefix (e.g. in the conf
For debugging purposes it is also possible to do remote logging. Take
care if you use this feature because the information is send in the
clear over the network. Use this syntax in the conf files:
You may use any port and not just 4711 as shown above; only IP
addresses are supported (v4 and v6) and no host names. You need to
start watchgnupg with the tcp option. Note that under Windows the reg‐
istry entry HKCU\Software\GNU\GnuPG:DefaultLogFile can be used to
change the default log output from stderr to whatever is given by that
entry. However the only useful entry is a TCP name for remote debug‐
The full documentation for this tool is maintained as a Texinfo manual.
If GnuPG and the info program are properly installed at your site, the
should give you access to the complete manual including a menu struc‐
ture and an index.
GnuPG 2.1.11 2016-01-21 WATCHGNUPG(1)