Best practice for periodic key change?

Doug Barton dougb at dougbarton.us
Thu May 5 22:10:21 CEST 2011


On 05/04/2011 23:52, Andreas Heinlein wrote:
> We have a OpenPGP key which we use for signing our software releases.
> That key should be changed yearly and carry an expiration date to
> enforce this change.

What are you trying to accomplish by doing it this way? I've yet to see 
a good rationale for setting expiration dates on keys, but perhaps you 
can be the first. :)


-- 

	Nothin' ever doesn't change, but nothin' changes much.
			-- OK Go

	Breadth of IT experience, and depth of knowledge in the DNS.
	Yours for the right price.  :)  http://SupersetSolutions.com/




More information about the Gnupg-users mailing list