Different signing & encryption keys

2014-08-12 Thread Phillip Susi
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 We used to use different keys for signing and encrypting ( DSA & El Gammel ), but these days just seem to use a single RSA key by default. Is it still possible and/or beneficial to use two separate subkeys for signing and encrypting? -BEGIN PGP

Re: Different signing & encryption keys

2014-08-12 Thread Peter Lebbing
On 12/08/14 19:50, Phillip Susi wrote: > but these days just seem to use a single RSA key by default. The default is an RSA-2048 primary key with certify[1] and sign abilities, and an RSA-2048 subkey with encryption capability. I think you're mistaken. > Is it still possible and/or beneficial to

Re: Different signing & encryption keys

2014-08-12 Thread Werner Koch
On Tue, 12 Aug 2014 19:50, ps...@ubuntu.com said: > We used to use different keys for signing and encrypting ( DSA & El > Gammel ), but these days just seem to use a single RSA key by default. That is not the case. GnuPG creates an RSA signing key and an RSA encryption subkey by default. These a

Re: Different signing & encryption keys

2014-08-12 Thread Phillip Susi
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 08/12/2014 03:05 PM, Werner Koch wrote: > On Tue, 12 Aug 2014 19:50, ps...@ubuntu.com said: >> We used to use different keys for signing and encrypting ( DSA & >> El Gammel ), but these days just seem to use a single RSA key by >> default. > > Th

Re: Different signing & encryption keys

2014-08-12 Thread Robert J. Hansen
> How do you tell which one is which? It used to be that the 'D' prefix > meant DSA, which was signing only, and 'g' or 'G' was for el gammel > signing or encryption, but now they all just show 'R'. gpg --edit-key [keyID] Look at the right hand side. For each subkey (including the main signing

Re: Different signing & encryption keys

2014-08-13 Thread Werner Koch
On Wed, 13 Aug 2014 06:29, r...@sixdemonbag.org said: > Look at the right hand side. For each subkey (including the main > signing key) there will be an entry for "usage". This field can contain > the letters S, C, A, or E. Using --edit-key is a bit cumbersome and --with-colons is hard to read.

Re: Different signing & encryption keys

2014-08-13 Thread Philip Jackson
On 12/08/14 21:05, Werner Koch wrote: > On Tue, 12 Aug 2014 19:50, ps...@ubuntu.com said: >> We used to use different keys for signing and encrypting ( DSA & El >> Gammel ), but these days just seem to use a single RSA key by default. > > That is not the case. GnuPG creates an RSA signing key and

Re: Different signing & encryption keys

2014-08-13 Thread Peter Lebbing
On 13/08/14 10:56, Philip Jackson wrote: > I don't recall having been prompted by gpg to specify a sub-key so I could say > that gpg produced a single key 'by default'. You say you generated it with the --batch command, and go on to say you weren't prompted. Since --batch, unattended key generatio

Re: Different signing & encryption keys

2014-08-13 Thread Peter Lebbing
On 13/08/14 09:37, Werner Koch wrote: > Thus what about this new option: That sounds like a nice thing to have. Peter. -- I use the GNU Privacy Guard (GnuPG) in combination with Enigmail. You can send me encrypted mail if you want some privacy. My key is available at