some beginner questions

Peter Lebbing peter at
Mon Apr 3 13:20:53 CEST 2017

On 02/04/17 21:00, Neal H. Walfield wrote:
> In short, the main key acts as a level of indirection, which separates
> your identity from your encryption/signing keys.

I'd like to extend this short description a bit :-). There is one
important somewhat-caveat, which is that you can't delegate the Certify
capability to a subkey. This means you always need to use the primary
key to sign other OpenPGP *keys*. Signing data can be delegated to a subkey.



I use the GNU Privacy Guard (GnuPG) in combination with Enigmail.
You can send me encrypted mail if you want some privacy.
My key is available at <>

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: OpenPGP digital signature
URL: </pipermail/attachments/20170403/6a58afa1/attachment.sig>

More information about the Gnupg-users mailing list