Best practice for periodic key change?
dougb at dougbarton.us
Thu May 5 22:10:21 CEST 2011
On 05/04/2011 23:52, Andreas Heinlein wrote:
> We have a OpenPGP key which we use for signing our software releases.
> That key should be changed yearly and carry an expiration date to
> enforce this change.
What are you trying to accomplish by doing it this way? I've yet to see
a good rationale for setting expiration dates on keys, but perhaps you
can be the first. :)
Nothin' ever doesn't change, but nothin' changes much.
-- OK Go
Breadth of IT experience, and depth of knowledge in the DNS.
Yours for the right price. :) http://SupersetSolutions.com/
More information about the Gnupg-users