Hi, On 19.01.13 14:11, Alessandro Basili wrote: > Hi everyone, > > as you can see from the 'history' of (one of) my account: > > http://gpg.nebrwesleyan.edu:11371/pks/lookup?search=alessandro.basili%40cern.ch&op=vindex > > some of my previous keys were revoked since they were just trials. > > Unfortunately I lost my last -1 private key (0xBCF40F41) during my last > job change and even though I have the revocation certificate I do not > really know how to revoke it.
This is quite easy. Make sure that you have your old public key in your public keyring, e.g. by retrieving it from a keyserver. Then import your revocation certificate (OpenPGP -> Keymanagement. Then File -> Import Keys from File -> Select your revocation certificate. The revocation certificate is merged into your public key by adding a certain signature packet, marking it as revoked. If your public key was on a keyserver, please upload it. The revocation signature is then merged to your key on the server, marking it as revoked. Everybody trying to download it will see that it is revoked. Everybody who is refreshing their public keyring will then import the revocation certificate. > Moreover some people may have my previous key, how can I reliably make > sure that they don't use it anymore? Export your revoked public key to file and send it to them, asking them to import it. After that they are no longer able to encrypt to it. This will cover people that do not regularly refresh their public keyring. You should also tell people what your new key-Id is, or attach the new public key to the mail. HTH Ludwig _______________________________________________ enigmail-users mailing list [email protected] https://admin.hostpoint.ch/mailman/listinfo/enigmail-users_enigmail.net
