change the passphrase

Mike Touloumtzis miket@bluemug.com
Thu Nov 15 21:36:01 2001


On Thu, Nov 15, 2001 at 12:32:06PM +0100, Marc Mutz wrote:
> 
> Speaking of being paranoid:
>   Make sure you delete all copies of the keyring that still contain the 
> old passphrase. And "delete != rm" here. "delete == shred(1)" at the 
> least or better: "delete == shred(physically) && burn".

Most people don't _begin_ to have the level of security needs that would
require them to physically destroy media, especially given the waste and
cost issues.  Given people advice based on an inappropriate threat model
is a great way to scare them off using GNUPG at all.

miket