OT: Revoking Old Keys... my problem
Greg Sabino Mullane
greg at turnstep.com
Thu May 6 13:14:00 CEST 2004
-----BEGIN PGP SIGNED MESSAGE-----
> Just remember that you can't store the revocation certificate in
> an encrypted form, so anybody hacking your webmail account
> (or any sysadmin...) could revoke your key.
Of course you can encrypt it. It's just a file like any other, so
just "gpg -ca" and then you can store it anywhere you like, where
you at least have the additional barrier of another password to
learn before the revocation cert can be used.
I'd personally rather leave a copy with a friend rather than an
online web mail service, but either way please encrypt it first.
You could even leave the password to open it with a second friend.
Greg Sabino Mullane greg at turnstep.com
PGP Key: 0x14964AC8 200405060713
-----BEGIN PGP SIGNATURE-----
-----END PGP SIGNATURE-----
More information about the Gnupg-users