Selecting subkeys while using GnuPG

John Clizbe JPClizbe at
Sat Jan 7 18:45:47 CET 2006

Nicky wrote:
> I have two encryption keys and three signing keys:
> pub  4096R/057AC4BC  created: 2005-12-08  expires: never       usage: CS
> sub  4096R/0DBBD3FD  created: 2005-12-08  expires: never       usage: SEA
> sub  4096g/E3DD0205  created: 2005-12-29  expires: 2006-04-29  usage: E
> sub  1024D/CC89E9DE  created: 2005-12-30  expires: 2006-04-30  usage: S
> but while signing a message, GnuPG uses the DSA key as the default signing
> key and the ELG-E key as the default encryption key. Is there a way to spe
> cify which subkey GnuPG should use to sign/encrypt?

Stick a "!" after the keyid you specify and GnuPG will use it

  gpg -u 0xDecafBad! --sign .....
> For example this message was signed using the 1024-bit DSA key using the
> SHA1 digest algorithm.

SHA-1 implies DSA which would mean a DSA key. What happen if you specify SHA-256
without explicitly selecting the subkey?

John P. Clizbe                   Inet:   JPClizbe(a)comcast DOT nyet
Golden Bear Networks             PGP/GPG KeyID: 0x608D2A10
"Be who you are and say what you feel because those who mind don't matter
and those who matter don't mind." - Dr Seuss, "Oh the Places You'll Go"

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 669 bytes
Desc: OpenPGP digital signature
Url : /pipermail/attachments/20060107/fead3f09/signature-0001.pgp

More information about the Gnupg-users mailing list