I'm a bit confused about this too.
http://fsfe.org/en/card/howto/subkey_howto says:
This howto describes setting up your computer to use the Fellowship
card with subkeys only. We recommend this, as it is the most secure
usage."
For what reasons is it more secure than putting (or generating) your
primary signing key on the card?
On 10/30/06, Henry Bremridge <[EMAIL PROTECTED]> wrote:
Running Debian-Etch
I deleted my decryption sub-key by mistake and my back up was incomplete...
After taking advice it seems that the only way forward is (in order) to:
- Issue a new keypair
- Sign the new-keypair with my current signature
- Tell all those who signed my old-key of my new key ID
- Revoke my old keypair
- Publish my key
Question:
- The FSFE website states that the recommended procedure is to use the
smart card with sub-keys only. If however I am creating a new
key-pair and backing up the secret key to a safe place, then what is
the problem?
If I lose my smart card would I not be able to continue with the
backed up secret-key?
- Is there any way to add a uid to the generated smart card, or is it
possible to only use one identity?
Any assistance would be much appreciated
--
Henry
Sun Oct 29 18:25:08 GMT 2006
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)
iD8DBQFFRPIMFr/I+3p/xIIRAhlQAJsHpA+45jAtBkmmiMNyr8US8+BM0gCePnpH
n+n5BSmw27qhdbkCTNLWcQs=
=euo3
-----END PGP SIGNATURE-----
_______________________________________________
Gnupg-users mailing list
[email protected]
http://lists.gnupg.org/mailman/listinfo/gnupg-users
_______________________________________________
Gnupg-users mailing list
[email protected]
http://lists.gnupg.org/mailman/listinfo/gnupg-users
