1 |
>> It looks like I've imported a pub/sec keypair now. Should I remove |
2 |
>> the public key for security? Maybe I misunderstood from the beginning |
3 |
>> and having both keys on the same system isn't a security issue? |
4 |
>> |
5 |
>> - Grant |
6 |
>> |
7 |
> |
8 |
> It is still a security issue, but only as much as any other data on your |
9 |
> machine. Physical access to the box, or being remotely hacked will |
10 |
> always be a security risk. |
11 |
> |
12 |
> And yes, if someone does break in and copy your pub/sec keypair, they |
13 |
> will have full ability to masquerade as you in signed and encrypted emails. |
14 |
> |
15 |
> You have to weigh it up for yourself really. Many, many keep pub/sec |
16 |
> keypairs for their email on more than one machine. Of course it would be |
17 |
> a lot of work for someone to compromise your system for your gpg keys, |
18 |
> so your email would have to be of value to them. |
19 |
|
20 |
Can I configure this so that I don't have the two keys on the same |
21 |
system? I'd like encrypt with my remote system and decrypt with my |
22 |
local system. Is that possible? It seems like importing my private |
23 |
key also imports the public key. |
24 |
|
25 |
- Grant |