add subkey vs generate new set?
Werewolf
werewolf6851 at gmail.com
Fri Oct 17 04:31:27 CEST 2008
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Thanks for the informative Web site (wget a wonderful tool)
But never got a signature myself. After made my first key, later I
generated a second pair for signing RPM packages on my system. so used
one to sign the other, etc. So have key with interesting email
addresses. like one use for this list, then another more -business
casual- type contacts. End of the month Moving to Wisconsin, and hope
find a active LUG, then might actually acquire sigs.
Using that methode kinda like having a keywallet that folks say is you,
and can change out the inside keys as need be, and the outer ID with a
Notarized Signature. Hmms, that be cool, if A Notary had a key signing
service as well for pgp/gpg keys
- --
Werewolf
=======================================
http://spandex31095.tripod.com/
Skype: Werewolf6851
===== Instant Messenger Accounts ======
Yahoo: lover_of_lycra
ICQ: 304325894
MSN: lover_of_lycra at hotmail.com
AIM: LycraloverWolf
=======================================
GPG key 76E6C1BC with following fingerprint
D508 2C9D B3A9 2F0E E472 95A8 2D8C B9E6 76E6 C1BC
=======================================
("The Man They Call Jayne" is being sung in the background)
Mal: "Uh, Jayne?"
Jayne: "Yeah, Mal?"
Mal: "You got any light you'd like to shed on this development?"
Jayne: "No, Mal."
Simon: "No... *This* must be what going mad feels like..."
--Episode #7, "Jaynestown"
Faramir wrote:
> Werewolf escribió:
>> Another Pondering as every year need bigger bit sized keys to be secure
>> Benefits and Cons
>
> IMHO, I would just use 2048 bits keys and focus in keeping the keys
> safe... and using good algorithms. But consider I am not an expert, and
> I am not even an experienced user...
>
> I found a document today, maybe it is worth taking a look at it:
> http://csrc.nist.gov/publications/nistpubs/800-57/SP800-57-Part1.pdf
>
>> Wondering if adding a bigger encryption/signing sub keys to current key
>> on keyserver leaves the benefit keeping the same finger print? So don't
>> have inform all your corresondences to get a new key from you? They
>> just have --refresh their public keyrings
>
> Yes, you can keep the primary key and change the subkeys... you can
> even remove the primary key (and store it SAFE) and work with the
> subkeys... there is a tutorial about that, and was posted in this list a
> while ago...
>
> Look at "Secure Key Generation" in the site
> http://tjl73.altervista.org/index_en.html
>
>> Just setting old key to expire and Generate a new set, collect
>> signatures again, change info on web pages and/or bussiness cards?
>
> I have not collected a single strong signature in 5 months, so if I
> ever get one, I won't be happy if I have to revoke my key (lol).
>
> Best Regards
_______________________________________________
Gnupg-users mailing list
Gnupg-users at gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Portable Thunderbird version 2.0.0.17 (20080914)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iEYEARECAAYFAkj3+P8ACgkQLYy55nbmwbyh1gCgz3ThBIaSMxvoRE57jnWLkZWg
xo4AoMJ5haFwAhBSz9+Djm4rLovXB4eF
=gSiP
-----END PGP SIGNATURE-----
More information about the Gnupg-users
mailing list