Tue Jul 29 06:43:02 2003
Content-Type: text/plain; charset=us-ascii
On 28-Jul-2003, J Irving wrote:
> Why expire keypairs? They can, afterall, be revoked.
Not if you lose (or lose access to) the secret key. Giving them an
expiry date guards against unrevocable keys (or subkeys) hanging around
> One reason I immediately come up with is that the longer they exist,
> the more likely they are to be compromised.
That's another good reason; having the expiry date is a good reminder of
\ "When I was little, my grandfather used to make me stand in a |
`\ closet for five minutes without moving. He said it was elevator |
_o__) practice." -- Steven Wright |
Ben Finney <email@example.com>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
-----END PGP SIGNATURE-----