Is it possible to remove capabilities from an existing key?

Hauke Laging mailinglisten at
Thu Sep 12 15:07:39 CEST 2013

Am Do 12.09.2013, 14:53:29 schrieb Philip Jägenstedt:

> what I'm actually considering is how to remove the
> private master key from my laptop, so that if it's lost/stolen I only
> need to revoke the subkeys.

gpg --armor --export-secret-keys "$mykeyid" > key.secret-mainkey.asc
gpg --armor --export-secret-subkeys "$mykeyid" > key.secret-subkeys.asc
gpg --delete-secret-key "$mykeyid"
gpg --import key.secret-subkeys.asc

Crypto für alle:
OpenPGP: 7D82 FB9F D25A 2CE4 5241 6C37 BF4B 8EEF 1A57 1DF5
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 572 bytes
Desc: This is a digitally signed message part.
URL: </pipermail/attachments/20130912/331335b4/attachment.sig>

More information about the Gnupg-users mailing list