Malformed Revokation Certificate?
dougb at dougbarton.us
Fri Aug 10 01:33:27 CEST 2012
-----BEGIN PGP SIGNED MESSAGE-----
On 8/9/2012 4:30 PM, Kristian Fiskerstrand wrote:
> On 08/10/2012 01:09 AM, Doug Barton wrote:
>> Maybe I'm missing something in this conversation, and if so I
>> apologize. But how would attaching the revocation cert to a key
>> be possible in the scenario where the user lost the password?
> Hi Doug,
> The discussion entail having generated a revocation certificate
> using --gen-revoke while having the passphrase and private key
> (should usually be done at key generation and stored at a safe
> place, and is short enough that a printed copy can be stored and
> manually typed need be)
Yes, I got that bit. :)
> At the time of key revocation it is then appended to the public
> key using import, hence doesn't require a passphrase, the same way
> as A doesn't need B's passphrase when signing B's public key.
Ah, that's the bit I was missing ... thanks.
I am only one, but I am one. I cannot do everything, but I can do
something. And I will not let what I cannot do interfere with what
I can do.
-- Edward Everett Hale, (1822 - 1909)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (MingW32)
-----END PGP SIGNATURE-----
More information about the Gnupg-users