one key/pair for multiple email accounts

MFPA 2014-667rhzu3dc-lists-groups at riseup.net
Wed Jul 9 00:27:49 CEST 2014


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Hi


On Monday 7 July 2014 at 10:49:23 PM, in
<mid:1319122865.20140707144923 at gmail.com>, eMyListsDDg wrote:


> i have mulitple email accounts and in the past had
> generated a key/pair for each, each with its own unique
> passphrase. i'm rethinking that approach.

> curious how other uses in this situation manage their
> gnupg?

I use multiple email addresses and frequently change some of them. I
have included no "real" name or valid email address in my key's
user-id: the way I use email addresses would otherwise require
multiple keys and/or an accumulation of redundant UIDs (if the keys
were on keyservers - otherwise I could just delete the redundant
UIDs).

Also, I happen to believe that:-
 (1) knowing an email address or a (sufficiently unique) name should
     enable somebody to find a key to use for encryption.
 (2) access to a public key should not of itself compromise the
     privacy of the key "owner" by leaking additional personal data
     about said "owner."

My current solution achieves (2) nut not (1).

There are two down sides to this approach. Firstly, the lack of email
address makes it harder for other people to use my key. Secondly, if I
wanted to participate in the web of trust, the lack of "real" name
would make it difficult.

- --
Best regards

MFPA                    mailto:2014-667rhzu3dc-lists-groups at riseup.net

Raining cats and dogs is better than hailing taxis.
-----BEGIN PGP SIGNATURE-----

iPQEAQEKAF4FAlO8cHlXFIAAAAAALgAgaXNzdWVyLWZwckBub3RhdGlvbnMub3Bl
bnBncC5maWZ0aGhvcnNlbWFuLm5ldEJBMjM5QjQ2ODFGMUVGOTUxOEU2QkQ0NjQ0
N0VDQTAzAAoJEKipC46tDG5pkIwD/i4nTlHppDY20AgJDnzjZliQ4GtJcrgwVmo3
Kw8FYb7ogJy0p/bfjd4NOpq/IDrcOv6FMLpHLgDPUO1PGfVr1fLRghvC0yZYnd/O
6AOSNUfZWmKoUIYsUIGeZTfn6vfutWmb44mjp+Nn0CKc2OuEO8Ts5Jyzlax/8gcM
NK44+wR8
=Drdk
-----END PGP SIGNATURE-----




More information about the Gnupg-users mailing list