different keys for different machine?
Wed Jan 29 17:25:13 2003
-----BEGIN PGP SIGNED MESSAGE-----
Am Dienstag, 28. Januar 2003 21:46 schrieb Aaron P. Martinez:
> Wow, this is way more in depth than i was hoping for...
> Ok...lets say, for security sake..that i really only need one, no lets
> say two..one linux and one window's box to send email from..I use an
> imap server so i often connect to the server from one of the two
> machines. The rest of the machines are server machines. My network is
> set up as such.....
> internet gateway/firewall/router----int. router/samba/fw/---internal ne=
> (ascii art---not my forte)
> The internal net is where my email boxes are of course. on the dmz
> currently i have one maching doing most work...SMTP, IMAP, HTTP, SSH,
> WEBMAIL, the ohter machine is just a haylafax server. and then there i=
> my internal router/firewall/samba server. I'm not sure this clears it
> up..but it sounds like what the best thing in this situation to do is
> share the key on my two workstation machines..(can i share the key on a
> windows and linux box?) and then create a seperate key for each of the
> other machines for encryption purposes? I suspect that for the main dm=
> machine, i should actually get a key through a CA so i don't get the
> dreaded "untrusted key" or worse yet, my customers?
I will give only a general answer. I use Samba as a "domain controler" an=
on with a samba/linux userid on my windows box. /home/userid is exported =
drive Z:. The registry-key to the key-ring is set to z:.gungp.=20
With gnupg 1.2.1 this works fine.
With an earlier version I had some problems I never investigated until th=
You can have more than one secret key in the keyring. best is to use for =
keys the same passphrase or matra (as it's called in the German version).=
Otherwise you will get a little confused.
You only need your private / secret key for signing and decryption. For=20
encryption you need the public key of the corrospondend you send your=20
> Hope this clears it up..and thanks for the quick responses.
> Aaron martinez
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
-----END PGP SIGNATURE-----