GPG key renewal
Tue 02 February 2016
What happen when a PGP key expire? Obvious answer: you can no longer securely use it. Nevertheless, you may not delete it as you must be able to read your encrypted files.
Basics step that should be done are:
- generate a new (sub)key
- publish your key
- test your newly generated key
generate a new key
On some installation, you may have used gpg --full-gen-key to a obtain a dialog for each option
You must generate a new subkey:
gpg --edit-key > addkey > save
publish your key
gpg --keyserver pool.sks-keyservers.net --send-keys
you may use any keyserver of your choice. A short list include pgp.mit.edu, keys.gnupg.net, subkeys.pgp.net, keyserver.ubuntu.com.
test your key
You may use Adele (firstname.lastname@example.org). Send an email to Adele. It is quite straightforward.