1 |
On Sun, Jan 11, 2015 at 8:34 PM, Brian Dolbec <dolsen@g.o> wrote: |
2 |
> But for the rest, yes, you don't need gkeys to create your key, It is |
3 |
> just most people seem to know little about using gpg, so creating the |
4 |
> template where you just filled out name, email, password, makes it easy. |
5 |
|
6 |
Makes sense. I can always create a new account, create a key, |
7 |
export/import, and delete the account. That will avoid messing with |
8 |
config files and such. |
9 |
|
10 |
> |
11 |
> From the above, it looks like you also need to create a signing subkey |
12 |
> with a preferred 1 yr. expiry. But it can be 5 years max. too. You |
13 |
> may also want to add an encryption subkey for encrypted email and such. |
14 |
|
15 |
From docs I was reading it sounds like a signing and encryption subkey |
16 |
are created by default (two keys total). Is there any difference |
17 |
between a "main key" and a subkey? I have to admit that I haven't |
18 |
kept up with gpg features over the years. |
19 |
|
20 |
> |
21 |
> I added a little more info to the First-Use wiki page, I included a |
22 |
> link to a great webpage about setting up gpg keys. |
23 |
> |
24 |
> https://alexcabal.com/creating-the-perfect-gpg-keypair/ |
25 |
> |
26 |
> there are lots more, but I like that one, it is clear, concise,... |
27 |
|
28 |
From that site: By default GPG creates one signing subkey (your |
29 |
identity) and one encryption subkey (how you receive messages intended |
30 |
for you)...Use GPG to add an additional signing subkey to your |
31 |
keypair. This new subkey is linked to the first signing key. Now we |
32 |
have three subkeys. |
33 |
|
34 |
But, whatever. If we want a total of three keys in the key then I |
35 |
don't really have a problem with that. I'm not sure what it buys you |
36 |
other than lots of confusion about how to sign the right thing with |
37 |
the right key. :) |
38 |
|
39 |
-- |
40 |
Rich |