-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Hi
On Monday 7 July 2014 at 10:49:23 PM, in
<mid:1319122865.20140707144...@gmail.com>, eMyListsDDg wrote:
> i have mulitple email accounts and in the past had
> generated a key/pair for each, each with its own unique
> passphrase. i'm rethinking that approach.
> curious how other uses in this situation manage their
> gnupg?
I use multiple email addresses and frequently change some of them. I
have included no "real" name or valid email address in my key's
user-id: the way I use email addresses would otherwise require
multiple keys and/or an accumulation of redundant UIDs (if the keys
were on keyservers - otherwise I could just delete the redundant
UIDs).
Also, I happen to believe that:-
(1) knowing an email address or a (sufficiently unique) name should
enable somebody to find a key to use for encryption.
(2) access to a public key should not of itself compromise the
privacy of the key "owner" by leaking additional personal data
about said "owner."
My current solution achieves (2) nut not (1).
There are two down sides to this approach. Firstly, the lack of email
address makes it harder for other people to use my key. Secondly, if I
wanted to participate in the web of trust, the lack of "real" name
would make it difficult.
- --
Best regards
MFPA mailto:2014-667rhzu3dc-lists-gro...@riseup.net
Raining cats and dogs is better than hailing taxis.
-----BEGIN PGP SIGNATURE-----
iPQEAQEKAF4FAlO8cHlXFIAAAAAALgAgaXNzdWVyLWZwckBub3RhdGlvbnMub3Bl
bnBncC5maWZ0aGhvcnNlbWFuLm5ldEJBMjM5QjQ2ODFGMUVGOTUxOEU2QkQ0NjQ0
N0VDQTAzAAoJEKipC46tDG5pkIwD/i4nTlHppDY20AgJDnzjZliQ4GtJcrgwVmo3
Kw8FYb7ogJy0p/bfjd4NOpq/IDrcOv6FMLpHLgDPUO1PGfVr1fLRghvC0yZYnd/O
6AOSNUfZWmKoUIYsUIGeZTfn6vfutWmb44mjp+Nn0CKc2OuEO8Ts5Jyzlax/8gcM
NK44+wR8
=Drdk
-----END PGP SIGNATURE-----
_______________________________________________
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users
