On Thu, 2019-04-25 at 07:32 -0400, Rich Freeman wrote:
> The intent of the separate primary key is to reduce the risk of it
> being compromised by keeping it offline. However, if it were
> generated on a smartcard it would be exclusively be maintained
> offline, so it is counterproductive to
On 25.04.2019 14:32, Rich Freeman wrote:
> [snip]
> Patch follows:
>
>
> diff --git a/glep-0063-v3.rst b/glep-0063-v3.rst
> index 5895873..86e5fd9 100644
> --- a/glep-0063-v3.rst
> +++ b/glep-0063-v3.rst
> @@ -12,6 +12,12 @@ OpenPGP key management policies for the Gentoo
> Linux distribution.
>
On 2019-04-25 12:32, Rich Freeman wrote:
> The OpenPGP smartcard standard, and the Nitrokey Pro smartcards that
> are being distributed to Gentoo developers, do not support having a
> separate primary/signing key for keys that are generated on the cards.
> As a result they can only be used in