On Monday, March 10, 2014 09:07:04 Michael Muller wrote: > Chris Knadle wrote: > > On Sunday, March 09, 2014 23:59:35 Jack Chastain wrote: > > > Yep - the issue was "conceptual" I think. It appears (to Joe and me) > > > that > > > the instructions for the sub-key was under the assumption that your > > > laptop > > > was your mobile system and your "base" computer was something less > > > portable. The idea being that the server that you actually did key work > > > on > > > was NOT portable... and would therefore have ALL the keys.... > > > > That's the most common way in which I think this is done, but it's not the > > only way. > > > > > Ah, assumptions. > > > > > > So - with Joe's assistance, I deleted my key and re-added it from my > > > saved > > > keys on the USB stick - and was THEN able to sigh keys. > > > > Right. The catch comes when you later want to remove the full key and > > only import the relevant subkey bits (public and private). Hopefully > > you've got instructions for that bit, as you probably did it in the > > first place. > > Yeah, the tool is picky about the kinds of things that you can merge into > your key-tree. I deleted and re-imported a couple of times while playing > around with this. > > As an alternative to key wrangling, though, for the specific problem of > signing with a secured master key you can mount the flash-drive and then > specify the gpg --homedir option to indicate that the tool should use the > mounted directory instaad of ~/.gnupg
That's /much/ cleaner than the whole delete/import/sign/delete/import_partial procedure. Cool. -- Chris -- Chris Knadle [email protected] _______________________________________________ Mid-Hudson Valley Linux Users Group http://mhvlug.org https://mhvlug.org/cgi-bin/mailman/listinfo/mhvlug Upcoming Meetings (6pm - 8pm) Vassar College Apr 2 - Nginx: High-Performance HTTP Server, Reverse Proxy, and IMAP/POP3 Proxy Server May 7 - Google App Engine Jun 4 - Samba: Can We All Just Get Along?
