restoring a key

disastry@saiknes.lv.NO.SPaM.NET disastry@saiknes.lv.NO.SPaM.NET
Wed Oct 24 19:16:01 2001


-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160

> David Shaw wrote:
> > > If it's a signing subkey that expired (probably not), you'll need to
> > > select that subkey with "key the_subkey_number" before you type
> > > "expire".
> > > David
> >
> > if the signin subkey is expired, just generate new subkey.
> 
> Sure, but the question was how to do it without generating a new key.
> There are several reasons why someone might want to extend the
> lifetime of an existing key rather than generate a new one.
> David

yes.. keys life, but I can't find reason to extend subkeys's life.
I doub't it is even possible (I have not tested however).
RFC probably allows multiple subkey binding signatures (I'm not sure),
but gpg does not handle 'em well.
and if you extend keys (subkeys) life you'll sooner or
later will end with several self (binding) signatures
(because keyservers delete nothing)
__
Disastry  http://disastry.dhs.org/
http://disastry.dhs.org/pgp <----PGP plugins for Netscape and MDaemon
 ^--GPG for Win32 (supports loadable modules and IDEA)
 ^----PGP 2.6.3ia-multi05 (supports IDEA, CAST5, BLOWFISH, TWOFISH,
      AES, 3DES ciphers and MD5, SHA1, RIPEMD160, SHA2 hashes)
-----BEGIN PGP SIGNATURE-----
Version: Netscape PGP half-Plugin 0.15 by Disastry / PGPsdk v1.7.1

iQA/AwUBO9baxTBaTVEuJQxkEQMBygCfVKAp/PaDmF4h7YwuGKucHbbNQ7MAoMPY
KWNgGjkMcznT4SdCkPsQ6XHa
=6T5v
-----END PGP SIGNATURE-----