On Sun, 30 Jul 2017 22:19:22 +0200 Dirk-Willem van Gulik <di...@webweaving.org> wrote:
> I see a growing number of keys that have well managed & expired > separate subkeys for Signing, Encryption and Authentication switch > from ‘SC’ on the master key to just ‘C’ (all RSA, ignoring DSA). > > Would anyone know if there is some documented best practice ? Could probably be a direct application of this Debian article (1) on subkeys. And meant to to facilitate the recovery of the web of trust in case of disaster. On a separate tutorial (2), Alan Eliasen strongly advises against this practice. (1) https://wiki.debian.org/Subkeys?action=show&redirect=subkeys (2) https://futureboy.us/pgp.html#PerfectKeypair MF
pgp5ZUFDCq3yg.pgp
Description: OpenPGP digital signature
_______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users