GPG key renewal
Tue 02 February 2016
[caption id="" align="alignright" width="75" class="zemanta-img"] standard key (Photo credit: Wikipedia)[/caption]
What happen when a PGP key expire? Obvious answer: you can no longer securely use it. Nevertheless, you may not delete it as you must be able to read your encrypted files.
Basics step that should be done are:
- generate a new (sub)key
- publish your key
- test your newly generated key
generate a new key
first setup
gpg --gen-key
On some installation, you may have used gpg --full-gen-key to a obtain a dialog for each option
key rotation
You must generate a new subkey:
gpg --edit-key > addkey > save
publish your key
quite simple:
gpg --keyserver pool.sks-keyservers.net --send-keys
you may use any keyserver of your choice. A short list include pgp.mit.edu, keys.gnupg.net, subkeys.pgp.net, keyserver.ubuntu.com.
test your key
You may use Adele (adele-en@gnupp.de). Send an email to Adele. It is quite straightforward.
Related articles (or not):
- loop devices
- awesome global shortcut
- vim spell checker
- How to make section in a movable type entry
- email confidentiality
Category: network security Tagged: FAQs Help and Tutorials Mail tools