SUB KEYS
L. Sassaman
rabbi@quickie.net
Fri, 21 Apr 2000 16:38:00 -0700 (PDT)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Right. You have the DSA signing key, with DH (ElGamal) subkeys. You would
add them to the keyring, and set their exp dates sequentially, of course.
Note that no one should ever use ElGamal Sign and Encrypt keys. There are
serious potential problems with them. (There are people who disagree with
this, so I don't want to start a flame war here... but I must advise
strongly against using ElGamal signing keys.)
- --Len.
On Sat, 22 Apr 2000, Brian Galbraith wrote:
> -----BEGIN PGPENVELOPE PROCESSED MESSAGE-----
>
> You think you know it all ....until you have to do it.
>
> I want to create subkeys to have a natural progression , over the next few
> years. I have a DH/DSA key..... I assume I just want to create new subkeys
> which are option 3 EIGamal encryption only, and not option 4 which is sign
> and encrypt?
>
> regards
>
> Brian
>
> ------------------------------------------------------------
> Brian Galbraith
>
> Sign Only Key 0x6A6DFEFB
> http://picard.uni-paderborn.de:11371/pks/lookup?op=get&search=0x6A6DFEFB
> Default Encryption Key 0x63EBA765 (DH/DSA)
> http://picard.uni-paderborn.de:11371/pks/lookup?op=get&search=0x63EBA765
>
> -----------------------------------------------------------
>
> -----BEGIN PGPENVELOPE INFORMATION-----
>
> gpg: Signature made Fri Apr 21 16:07:30 2000 PDT using DSA key ID 6A6DFEFB
> gpg: Good signature from "Brian Galbraith (GnuPG Sign) <brian.galbraith@bigfoot.com>"
> gpg: aka "Brian Galbraith (GnuPG Sign) <brian.galbraith@europe.com>"
> gpg: aka "Brian Galbraith (GnuPG Sign) <bgalbraith@penguinpowered.com>"
> gpg: WARNING: This key is not certified with a trusted signature!
> gpg: There is no indication that the signature belongs to the owner.
> gpg: Fingerprint: FF88 E743 25B8 59DC 73EC 6A6A D4C4 0D8F 6A6D FEFB
>
> -----END PGPENVELOPE INFORMATION-----
>
__
L. Sassaman
System Administrator |
Technology Consultant | [This space for rent]
icq.. 10735603 |
pgp.. finger://ns.quickie.net/rabbi |
-----BEGIN PGP SIGNATURE-----
Comment: OpenPGP Encrypted Email Preferred.
iD8DBQE5AOZePYrxsgmsCmoRAjYYAJ92+wxNjLuEIxY6zDsnNvEuRQ99zACfVjJ3
ry4Bnoibwxlpc/9D/EUXr6w=
=Hs9U
-----END PGP SIGNATURE-----