On Wed, Jul 21, 2010 at 09:29:01AM +0800, Paul Wise wrote: > They are also useful to discover and educate folks who do not > regularly refresh keys from the keyserver network. On more than one > occasion I've had folks tell me my key was expired when I'd updated > the expiry and pushed it to the keyserver network months ago. Such > folks are likely to miss revocation events, pushing expiry events to > these folks is a good way to educate them refreshing keys and about > other best practices.
Prior to this discussion I had never even considered purposefully setting an expiration date without intending to actually decommission the key when that date rolled around. I must say I find the concept quite bizarre, but then I don't use renewable tickets in Kerberos either. _______________________________________________ Debconf-discuss mailing list [email protected] http://lists.debconf.org/mailman/listinfo/debconf-discuss
