Local-signing without (offline) private master key
antony at blazrsoft.com
Mon Sep 12 13:45:38 CEST 2016
On September 12, 2016 6:58:08 AM EDT, Kristian Fiskerstrand <kristian.fiskerstrand at sumptuouscapital.com> wrote:
>I'd suggest creating another primary key for explicit local
>certification purposes you never use anywhere else, and can rotate that
>as often as wanted to start fresh from time to time.
That's what I do. I have a separate key on each machine dedicated to local certification that I don't use for anything else.
More information about the Gnupg-users