I've been putting off generating a new key because I want to make sure I know how I'm going to manage the new one before I generate it (i.e. avoiding leaving it sitting on my desktop machine, not typing the passphrase on that machine, etc.).
Has anyone written up "key management for Debian developers"? - how does everybody else do it? I'm sure I've heard a wide variety of answers when I've asked in the past - e.g. "I keep it on a USB key and only plug it in when needed", "I keep it on a separate machine that has no network connection and transfer everything to and from signing by sneakernet", "I use some kind of hardware dongle to hold it" etc. Cheers, Nick -- Nick Phillips / nick.phill...@otago.ac.nz / 03 479 4195 # These statements are mine, not those of the University of Otago
