GPG on different machines
Wed, 2 Aug 2000 18:00:26 +0200 (CEST)
On Tue, 1 Aug 2000, Sam Roberts wrote:
> Quoting Stefan Suurmeijer <email@example.com>, who wrote:
> > On Sun, 30 Jul 2000, Subba Rao wrote:
> > > I have installed GPG on 2 different machines. The different user accounts on these
> > > machines are identical. Very likely, I plan to have 2 sets of keys for each user account,
> > > one for each machine. Are there any good practices regarding the number of keys a user
> > > may have?
> > A lot of users have two, one at work and one private for instance. There
> > are no rules. But a different key for each machine seems a bit much. I'd
> > have to have dozens of keys. Help.
> I do this as well, but have some questions about good practice. Mail that gets sent to
> my home address (sroberts) also arrives at my work address. However, if it's encrypted
> I can't read it. So, I need to have my private key for sroberts at work, or do I?
Yes. If you want to decrypt mail for your private address at work or v.v.,
you need both keys. It's possible to transport your secret key to another
machine. Use gpg --export-secret-keys > filename. Then transport the file
you created by a safe means to your other machine. Mailing it encrypted to
your work address would work, or sftp if you have it. I wouldn't use ftp
etc, since that would send your private keys over the net for anyone to
> How is this dealt with? It's seeming complicated enough that I might as well just have
> one secret keyring, and just copy it to any machines that I read/send mail at/from.
Yup. See above
> Sam Roberts (firstname.lastname@example.org), Cogent Real-Time Systems (www.cogent.ca)
University of Groningen
tel: (+31) 50 363 3423
fax: (+31) 50 363 7272
E-mail (business): email@example.com
E-mail (private): firstname.lastname@example.org
Quis custodiet ipsos custodes? (Who'll watch the watchmen?) - Unknown
Archive is at http://lists.gnupg.org - Unsubscribe by sending mail
with a subject of "unsubscribe" to email@example.com