RE: Mainkey with many subkeys??

Kristian, I am a little bit confused about your key design ;) Main key has options SC. There is an active newer signing key S, so this will be always used for signing? And there are two active encryption keys E: GPG uses in my opinion only the key generated latest, isn't it? So how to desire whi

Re: Mainkey with many subkeys??

On 12/07/2014 10:16 PM, Kristian Fiskerstrand wrote: > On 12/07/2014 10:11 PM, Doug Barton wrote: > >> Why do you believe that you will be creating and revoking so many >> subkeys? > > ...expiration of encryption subkeys > and key rotation. Hey, thanks for the answers so far! The most important

Re: Mainkey with many subkeys??

On Mon, Dec 8, 2014 at 10:12 AM, gnupgpacker wrote: > Kristian, > I am a little bit confused about your key design ;) > > Main key has options SC. > There is an active newer signing key S, so this will be always used for > signing? My understanding is that if you have multiple signing subkeys on

Re: Mainkey with many subkeys??

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 12/08/2014 10:12 AM, gnupgpacker wrote: > Kristian, I am a little bit confused about your key design ;) Fair enough, > > Main key has options SC. There is an active newer signing key S, so > this will be always used for signing? Correct > >

Re: Mainkey with many subkeys??

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 12/08/2014 12:31 AM, MFPA wrote: > Hi > > > On Sunday 7 December 2014 at 10:01:55 PM, in > , Duplicity Mailing List wrote: > > >> Stupid question inbound:- If you make a bunch of subkeys, say, >> one for your phone, one for your desktop and o

FAQ - configuration file location on Windows

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 From :- > 8.6 Where does GnuPG look for configuration options? > > GnuPG looks at a file called gpg.conf to determine various runtime > parameters. On UNIX systems this file can be

RE: Gnupg-users Digest, Vol 135, Issue 13

On Sun, 07 Dec 2014 13:27:23 -0800, Rex Kneisley wrote: >>I am running Debian 7.7 >> >>I have installed GNUPG version 2.1 (modern) >> >>I have also installed GPA successfully. (so it says) >> >>When I type "gpa" at the command line, I am greeted with: >> >>relocation error: gpa: symbol gpgme_op_s

Re: Mainkey with many subkeys??

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 12/08/2014 04:28 PM, gnupgpacker wrote: > Hello, > >> -Original Message- From: Kristian Fiskerstrand Sent: >> Monday, December 08, 2014 12:44 PM >> >>> Main key has options SC. There is an active newer signing key >>> S, so this will be

Re: Mainkey with many subkeys??

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 I recently created a key, with a RSA 4096-bit main key (certify only) and 4 subkeys: one DSA for signing, and one ELGamal for encryption, for communicating with people who I don't know are using ECC, and one each of ED25519 and nistp384 for people wh

Re: Mainkey with many subkeys??

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On Monday 8 December 2014 at 3:37:20 PM, in , Kristian Fiskerstrand wrote: > Changing this would require a new > self-signature limiting the use flags, but this is not > worthwhile to do. Is there a method to do this within GnuPG? I have not hea

Convert GPG key to ssh key

Hi everyone, I am just trying to convert gpg key to ssh key to be able use it in authorized_keys file and I am using *`gpgkey2ssh $key_id` *command. However this command does not work properly and gives this error : gpg: error reading key: public key not found gpgkey2ssh: gpgkey2ssh.c:278: main:

Re: Mainkey with many subkeys??

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 12/08/2014 05:18 PM, MFPA wrote: > > > On Monday 8 December 2014 at 3:37:20 PM, in > , Kristian Fiskerstrand > wrote: > > >> Changing this would require a new self-signature limiting the use >> flags, but this is not worthwhile to do. > > I

Re: Convert GPG key to ssh key

On 12/08/2014 11:05 AM, Salih Kardan wrote: > I am just trying to convert gpg key to ssh key to be able use it in > authorized_keys file and I am using *`gpgkey2ssh $key_id` *command. > However this command does not work properly and gives this error : > gpg: error reading key: public key not fo

Re: Convert GPG key to ssh key

On Mon, 8 Dec 2014 17:05, karda...@gmail.com said: > I am just trying to convert gpg key to ssh key to be able use it in > authorized_keys file and I am using *`gpgkey2ssh $key_id` *command. No need to convert a key if you are using gnupg 2.1. Run gpg -K --with-keygrip USERID and pick the

Can't Encrypt in Freebsd 10.1

Hi All, I've got some problem recently with GnuPG2 and FreeBSD 10.1. I've install it from port, everthing was fine but when I wanna try to encryt, it says Abort ! Key are installed and trust: root@WebBSD:~ # gpg -k /root/.gnupg/pubring.gpg pub 2048R/C81E7C1B 2014-12-06

Re: Convert GPG key to ssh key

Hi Daniel and Werner, Thanks for the quick repsonse and more inline... > Is they key you're looking to convert an RSA key or a DSA key? > The above suggests that it is not. (see the list of publickey algorithms > for OpenPGP [0]). > I am trying to convert RSA key and I am just avoiding use an e

Re: Mainkey with many subkeys??

Am 08.12.2014 um 00:40 schrieb MFPA: > > > On Sunday 7 December 2014 at 3:04:09 PM, in > , Tomo Ruby wrote: > > >> If I create a main key to certify >> and subkeys for everything else, won't there be dozens >> of subkeys on my main key after years of creating and >> revoking subkeys? > > When

Re: Mainkey with many subkeys??

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On Monday 8 December 2014 at 6:48:23 PM, in , Tomo Ruby wrote: > as I wrote in the mail from Sun Dec 7 22:38:03 CET > 2014: I know I could just set a new expiration date but > most times it's recommended to use a key for two years > at the longes

Re: Mainkey with many subkeys??

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On Monday 8 December 2014 at 4:50:57 PM, in , Kristian Fiskerstrand wrote: > It involve using a hacked version of gpg and generating > a new self-signature, which, as I said is not > worthwhile (as it doesn't do anything practically). But > you

Re: Mainkey with many subkeys??

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On Monday 8 December 2014 at 3:28:49 PM, in , gnupgpacker wrote: > Some corporate partners are still using older versions > of Symantec's PGP with WinXP, mostly for intranet. > Problems with signing keys are known, sometimes it > works, sometimes