Here are some good documents I've found regarding GPG best practices:
http://wiki.debian.org/subkeys https://we.riseup.net/riseuplabs+paow/openpgp-best-practices The first document, in particular, tells you how to set up a master key that is kept separate from your subkeys, so if your day-to-day keyring is every compromised, you can revoke your old subkeys and generate new ones and carry on without losing all of your signatures. ============================================================================= michaelMuller = [email protected] | http://www.mindhog.net/~mmuller ----------------------------------------------------------------------------- We are the music-makers, and we are the dreamers of dreams - Arthur O'Shaughnessy ============================================================================= _______________________________________________ Mid-Hudson Valley Linux Users Group http://mhvlug.org https://mhvlug.org/cgi-bin/mailman/listinfo/mhvlug Upcoming Meetings (6pm - 8pm) Vassar College Mar 5 - 11th Anniversary Meeting - Home Network Show and Tell Apr 2 - Nginx: High-Performance HTTP Server, Reverse Proxy, and IMAP/POP3 Proxy Server May 7 - Google App Engine
