| Kuzman Ganchev on Sat, 5 Jan 2002 17:14:47 +0100 |
|
The drawback of keeping it on a floppy is that if something happens to the floppy (like it dies, or gets lost), then you have no way to revoke the key... or do you have a revocation certificate ready-made for that purpose? Kuzman On Sat, Jan 05, 2002 at 12:00:08PM -0000, Greg Sabino Mullane wrote: > > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > >> AFAIK, the old one was GPG version 1.0.6, and so is the > >> new one. So how do I import this data? > >> Can I just copy the files or is there some fancy way? > > > Copying the files is all you need to do. > > A better idea is to put your secret key on a floppy. Not only > will this protect it against another install :) but is far more > secure. If your system gets hacked, your key is still safe. If > someone breaks into your house, they may steal your computer > (and hard drive) but probably won't steal that old floppy > in the back of your drawer. Better still, bring it with you when > you leave. Or bury it in a pile of 245 other floppies. > > Someday I'm going to consolidate all my notes about this into > a "PGP (crypto?) best practices" HOW-TO... > > Greg Sabino Mullane > greg@turnstep.com > PGP Key: 0x14964AC8 200201050658 > > -----BEGIN PGP SIGNATURE----- > Comment: http://www.turnstep.com/pgp.html > > iQA/AwUBPDbquLybkGcUlkrIEQJKDwCg4sdjyBkC4jm5YtvEEtIRpFFfIrsAoKHt > XgCAryNQX4k3020LkqkMXoiS > =C5GA > -----END PGP SIGNATURE----- > > > > > ______________________________________________________________________ > Philadelphia Linux Users Group - http://www.phillylinux.org > Announcements-http://lists.phillylinux.org/mail/listinfo/plug-announce > General Discussion - http://lists.phillylinux.org/mail/listinfo/plug > Attachment:
pgpcnhgVjzjgQ.pgp
|
|