Am Donnerstag, 8. März 2012, 00:39:11 schrieb Faramir: > El 07-03-2012 18:24, MFPA escribió: > ... > > >> Only your private key can generate the revocation certificate, > > > > Can't you add another key as a designated revoker, and then > > generate the revocation certificate with that other private key? > > You are right, I forgot that because I don't really know how to do > that (and I don't know who would I make my designated revoker). Lets > ask if there was a designated revoker, that would explain it all.
The statement "Only your private key can generate the revocation certificate" is not wrong, at least not in a useful understanding which is: "It is impossible to revoke a key without using the private key." As you need the private key to add a designated revoker just in the same way as you need the private key in order to add/revoke UIDs, subkeys and so on. You need the command --edit-key and in its menu the command addrevoker. Hauke -- PGP: D44C 6A5B 71B0 427C CED3 025C BD7D 6D27 ECCB 5814
signature.asc
Description: This is a digitally signed message part.
_______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users