Migrating keys
Ingo Klöcker
ingo.kloecker at epost.de
Tue Nov 25 00:05:46 CET 2003
On Monday 24 November 2003 23:49, Jens Kubieziel wrote:
> Hi,
>
> I'm planning to migrate to a new generated key (0x38CB4232).
> Currently i have lots of signatures on my recent key (0xEE0977E8).
> Therefore I'm planning to write all signees an signed and encrypted
> mail requesting for a signature to my new key. Because they verified
> my old key and I through signing with my old key I assure that also
> the new key belongs to me.
>
> Do you think that behaviour is appropriate or do I have an error in
> reasoning?
Yes, the other key could belong to someone else who happens to have the
same name as you. And the email addresses probably also don't prove
much since the average lifespan of freemail addresses (I didn't have a
look at your key so maybe this doesn't apply to your key) is rather
short.
FWIW, I wouldn't sign your new key.
Regards,
Ingo
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: signature
Url : /pipermail/attachments/20031125/b3176c5d/attachment.bin
More information about the Gnupg-users
mailing list