| 1 |
>> It looks like I've imported a pub/sec keypair now. Should I remove |
| 2 |
>> the public key for security? Maybe I misunderstood from the beginning |
| 3 |
>> and having both keys on the same system isn't a security issue? |
| 4 |
>> |
| 5 |
>> - Grant |
| 6 |
>> |
| 7 |
> |
| 8 |
> It is still a security issue, but only as much as any other data on your |
| 9 |
> machine. Physical access to the box, or being remotely hacked will |
| 10 |
> always be a security risk. |
| 11 |
> |
| 12 |
> And yes, if someone does break in and copy your pub/sec keypair, they |
| 13 |
> will have full ability to masquerade as you in signed and encrypted emails. |
| 14 |
> |
| 15 |
> You have to weigh it up for yourself really. Many, many keep pub/sec |
| 16 |
> keypairs for their email on more than one machine. Of course it would be |
| 17 |
> a lot of work for someone to compromise your system for your gpg keys, |
| 18 |
> so your email would have to be of value to them. |
| 19 |
|
| 20 |
Can I configure this so that I don't have the two keys on the same |
| 21 |
system? I'd like encrypt with my remote system and decrypt with my |
| 22 |
local system. Is that possible? It seems like importing my private |
| 23 |
key also imports the public key. |
| 24 |
|
| 25 |
- Grant |
Archives