HOWTO Revoke a key without having any backup of the key pair
????
Armin Schöch
schoech@iap-kborn.de
Wed Feb 13 15:06:02 2002
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi !
> Unfortunatelly, I haven't done such a revocation certificate :(
>
> But I guess there must be some system administrator/moderators or so for
> these key server, right ?
>
> Someone somewhere must exist to give me some help on this :)
> no ?
No, because there is no way for anyone to know for sure that you are
the legal owner of the key you want to have deleted. That's what you
have your revocation certificate for (this is a good time to make one
myself :-)
Another problem is: Once you have placed a key on one keyserver, it is
automatically distributed to all keyservers worldwide. So even if you
can convince one administrator to remove your key, there will be many
many copies left on other keyservers and on harddisks of other people
who downloaded your key.
The revocation certificate on the other hand takes the same way as
your key when you upload it to a keyserver and will render your key
invalid everywhere. People who have downloaded your key have to update
their keyring and will get the certificate from the keyserver, IIRC.
Sorry to give you no better news !
Bye,
Armin
- --
Am Hasenberg 26 office: Institut für Atmosphärenphysik
D-18209 Bad Doberan Schloss-Straße 6
Tel. 0160/4046859 (mobil) D-18225 Kühlungsborn / GERMANY
Email: schoech@iap-kborn.de Tel. +49-(0)38293-68-102
WWW: http://armins.cjb.net/ Fax. +49-(0)38293-68-50
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.4 (GNU/Linux)
Comment: Weitere Infos: siehe http://www.gnupg.org
iD8DBQE8anIcG8Xv4GxznLoRAj23AKCFklvnigo1Wyu1+HUr5/VloMMiRACdGJ89
/JWZsr1zuhFo5G4R4Y+1MyM=
=6AZY
-----END PGP SIGNATURE-----