Dear list,
Why is changing the --min-cert-level not enough to trigger an update
of the trust-db? Should it be?
Supposing a scenario in which a user is prepared to accept lower-level
certifications for low value communications, but requires higher level
certifications for others.
At present the
Hello,
for security reasons, I have decided to migrate my most important
subkeys to smartcards. I have a number of questions regarding the
transfer/migration.
a) I've bought two OpenPGP smartcards (v2). Their overprint says they
support RSA with up to 3072 bit. In the GnuPG 2.0.18 release notes
Am Dienstag, 30. August 2011, 17:54:32 schrieb Richard:
b) As far as I know, the cards can only store subkeys, i.e. no primary
key.
Citing the documentation (--edit-key):
keytocard
Transfer the selected secret subkey (or the primary key if no subkey has been
selected) to a smartcard.
On Tue, Aug 30, 2011 at 11:54 AM, Richard rich...@r-selected.de wrote:
Hello,
for security reasons, I have decided to migrate my most important
subkeys to smartcards. I have a number of questions regarding the
transfer/migration.
a) I've bought two OpenPGP smartcards (v2). Their overprint
On Tue, Aug 30, 2011 at 20:49, David Tomaschik da...@systemoverlord.com wrote:
No, you can store a primary key. And you can use the 3 slots for any
purpose (though I believe they must all tie to the same primary key.).
It would be common to combine signing certification into one key
(and I
Hello,
On Tue, Aug 30, 2011 at 21:08, David Tomaschik da...@systemoverlord.com wrote:
No, I was just stating common practice. You could do a
certification/primary key, a signing key, and an encryption key in the
3 slots.
are you sure about that? Everywhere I read the slots can only be used
On Tue, 30 Aug 2011 17:54, rich...@r-selected.de said:
a) I've bought two OpenPGP smartcards (v2). Their overprint says they
support RSA with up to 3072 bit. In the GnuPG 2.0.18 release notes
one change was to Allow generation of card keys up to 4096 bit. Does
that apply to the OpenPGP v2
Dear Richard,
* Richard rich...@r-selected.de [110830 20:30,
mID ca+wmqonz0asssnxzh4fgqrofevhqz2gj9xw5p0a0eq55mu-...@mail.gmail.com]:
Hello,
for security reasons, I have decided to migrate my most important
subkeys to smartcards. I have a number of questions regarding the
On Tue, Aug 30, 2011 at 2:56 PM, Richard rich...@r-selected.de wrote:
On Tue, Aug 30, 2011 at 20:49, David Tomaschik da...@systemoverlord.com
wrote:
No, you can store a primary key. And you can use the 3 slots for any
purpose (though I believe they must all tie to the same primary key.).
On 8/30/11 2:44 PM, Hauke Laging wrote:
Am Dienstag, 30. August 2011, 17:54:32 schrieb Richard:
Will that cause any problems in later GnuPG use as the cards' IDs are
different?
At least no serious ones. You will probably have to make gpg read the card
content by --card-status or
Thanks for all your help!
I just noticed that on my mobile computer (running Mac OS X) I am
still stuck with GnuPG 2.0.17 since MacGPG2 has not yet been updated.
I will have to wait for an updated package before I can start moving
my keys to smartcards.
Best,
Richard
11 matches
Mail list logo
