On 17.12.2018 03:28, Louis Opter wrote:
> Where is the procedure to remove shadow files documented? I found this to be
> confusing to do, hence why I favored different subkeys for different
> smartcards.
Uhm, this is kind of internal GnuPG details so I guess it's not documented
anywhere.
But
On Sat, Dec 15, 2018, at 12:53 AM, Wiktor Kwapisiewicz wrote:
> 1. I use one smartcard as a primary device so T2291 isn't that critical, if
> that
> one fails I can just remove shadow files and --card-status a new card, it will
> work. That doesn't happen frequently so manual removal of shadow
Hi Louis,
I have a very similar setup.
After working with several different options and encountering the same problems
as you have (GPG does not encrypt to all encryption subkeys, not possible to
have the same subkeys on different smartcards) I observed the following facts:
1. I use one
Hello,
I have a certify-only master keypair in an air-gapped machine. I only
use that machine to create subkeys and sign other people keys. The
subkeys are copied onto smartcards which I use in daily life.
Assuming that smartcards aren't indestructible and can be lost I always
have a backup
