Dale,
From the GNU Privacy Handbook:
http://www.gnupg.org/gph/en/manual.html#AEN329
Since a lot of this is fresh in my head from recently setting up PGP,
most of the texts I consulted tended to suggest your PGP key for your
primary e-mail address should be non-expiring. Unless you know this
e-mail is going away shortly, I don't see a need to have a limited key
life. One of the examples given of a good use of expiration is to sign
items distributed at a conference that has a limited run time - ie: a
week long event. You can always issue a revocation if need be as well.
Feel free to correct me if I'm way off tho ;)
Kyle
* Dale Morris [EMAIL PROTECTED] [010806 10:13]:
Date: Mon, 6 Aug 2001 07:10:35 -0700
From: Dale Morris [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: pgp key expiring
User-Agent: Mutt/1.3.18i
When I created my last pgp key, I set it to expire in 3 months. I
didn't want to have any more pgp keys laying around that I could no
longer use. But now, it appears my debian distro has found a home on
my hard drive and I'm not having to reformat :-) ..
question is: can I extend the time before this key expires, or do I
have to create a new key? How do you guys handle this sort of thing?
What's a reasonable time period for a key?
thanks
dale
--
Kyle Knack
([EMAIL PROTECTED])
PGP signature
