Changing the email address of a key

Peter Lebbing peter at digitalbrains.com
Thu Aug 30 10:48:19 CEST 2012


On 30/08/12 10:25, Richi Lists wrote:
> Using the primary key was what I tried first. But when I saw the error
> message "signing failed", I thought I'd have to force the proper signing
> subkey, like I have to do for signing emails.
> 
> My setup is more or less the following:
> http://wiki.fsfe.org/Card_howtos/Card_with_subkeys_using_backups
> with the addition of a sub key for ssh authentication:
> http://www.programmierecke.net/howto/gpg-ssh.html -> section "with
> smartcard (openpgp)"

The thing is that for a new UID, you need the, what they call, master key. That
would be the primary key. So when you followed the instructions under the
heading "Remove the master key from the keyring", you where after that unable to
use your master/primary key to create a new UID.

So you go back a little in the document to the part where you had your USB stick
with the primary key and all subkeys guarded by Orcs or some other fearsome
creature. Plead with the creature to have your USB stick back, once again follow
the section "Go offline", import your primary key from the USB stick (wipe away
the Orc spittle before inserting; ignore the chew marks on the protective cap).

After you have created the new UID with the primary key and exported the whole
to the USB stick, re-remove the primary key from the system.

Oh, by the way, the reason you need the exclamation mark to specify which key to
use to sign is because you have two signing keys. Apparently GnuPG tries it with
the one you don't have the secret part for if you don't give the exclamation
mark. But bear in mind the difference between a signature on a key(/UID) and on
data. The signing subkey is for signatures on data.

Good luck,

Peter.

-- 
I use the GNU Privacy Guard (GnuPG) in combination with Enigmail.
You can send me encrypted mail if you want some privacy.
My key is available at http://wwwhome.cs.utwente.nl/~lebbing/pubkey.txt



More information about the Gnupg-users mailing list