recommending to use the offline mainkey
also for encryption/decryption of files, that are so important that
subkey encryption/decryption is not secure enough.
Is there a reason for that? Am I missing something?
thanks a lot
suspekt
___
Gnupg-users mailing list
Am 01.06.2014 16:17, schrieb Hauke Laging:
Am So 01.06.2014, 12:54:30 schrieb Suspekt:
But I yet have to find someone recommending to use the offline
mainkey also for encryption/decryption of files, that are so
important that subkey encryption/decryption is not secure enough.
I do :-)
http
Am 01.06.2014 16:52, schrieb David Shaw:
On Jun 1, 2014, at 6:54 AM, Suspekt wrote:
Hi there, I understand the concept of using a secure offline key
and than creating one or multiple subkeys to use in rather insecure
environments like a internet-connected laptop or a smartphone.
Depending on
Am 01.06.2014 21:26, schrieb Hauke Laging:
Am So 01.06.2014, 21:12:49 schrieb Suspekt:
There are certain risks using the same RSA key for encryption and
signing. If you make a blind signature over data someone supplied
then you unintentionally decrypt the data (and send it back).
I don'
abilities to
> implement what you're talking about (signature notations to say "this
> is my high security key", for example) but it isn't done at this
> time.
>
> David
>
Correct me if I'm wrong but doesn'
I have read the article too but I have to disagree. People using gmail
will probably be logged in their google account all (most of the) the
time. So google knows what they're searching, watching, listen to music,
what the are talking about(g+) and so on. I think google has so massive
data abou
I just commented on things that I think you may change. I am no
GPG-Master though. Note that there are people on this list with far more
expertise than I have.
Am 05.06.2014 09:26, schrieb Cpp:
- Create a 4096-bit RSA certification key with unlimited expiry
Set an expiration date. You can exte
Hi,
I have some links about key creation and gpg in general that I would
provide of course. the problem is, that I don't know if/how correct they
are because I am not that into gpg yet. Some blogposts are rather old,
which can mean they are no longer up to date but doesn't have to. I
don't wan
Am 08.06.2014 18:28, schrieb Peter Lebbing:
On 08/06/14 17:49, Suspekt wrote:
I have some links about key creation and gpg in general that I would provide of
course.
There is a /lot/ of bad advice out there; I'd be wary of linking to it.
I understand that. But those links are out ther
