| 1 |
On Sun, Jan 11, 2015 at 8:34 PM, Brian Dolbec <dolsen@g.o> wrote: |
| 2 |
> But for the rest, yes, you don't need gkeys to create your key, It is |
| 3 |
> just most people seem to know little about using gpg, so creating the |
| 4 |
> template where you just filled out name, email, password, makes it easy. |
| 5 |
|
| 6 |
Makes sense. I can always create a new account, create a key, |
| 7 |
export/import, and delete the account. That will avoid messing with |
| 8 |
config files and such. |
| 9 |
|
| 10 |
> |
| 11 |
> From the above, it looks like you also need to create a signing subkey |
| 12 |
> with a preferred 1 yr. expiry. But it can be 5 years max. too. You |
| 13 |
> may also want to add an encryption subkey for encrypted email and such. |
| 14 |
|
| 15 |
From docs I was reading it sounds like a signing and encryption subkey |
| 16 |
are created by default (two keys total). Is there any difference |
| 17 |
between a "main key" and a subkey? I have to admit that I haven't |
| 18 |
kept up with gpg features over the years. |
| 19 |
|
| 20 |
> |
| 21 |
> I added a little more info to the First-Use wiki page, I included a |
| 22 |
> link to a great webpage about setting up gpg keys. |
| 23 |
> |
| 24 |
> https://alexcabal.com/creating-the-perfect-gpg-keypair/ |
| 25 |
> |
| 26 |
> there are lots more, but I like that one, it is clear, concise,... |
| 27 |
|
| 28 |
From that site: By default GPG creates one signing subkey (your |
| 29 |
identity) and one encryption subkey (how you receive messages intended |
| 30 |
for you)...Use GPG to add an additional signing subkey to your |
| 31 |
keypair. This new subkey is linked to the first signing key. Now we |
| 32 |
have three subkeys. |
| 33 |
|
| 34 |
But, whatever. If we want a total of three keys in the key then I |
| 35 |
don't really have a problem with that. I'm not sure what it buys you |
| 36 |
other than lots of confusion about how to sign the right thing with |
| 37 |
the right key. :) |
| 38 |
|
| 39 |
-- |
| 40 |
Rich |
Archives