Re: Store revoke cert. in symmetric file?

2010-12-08 Thread Faramir
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 El 07-12-2010 16:32, David Shaw escribió: > On Dec 7, 2010, at 11:56 AM, Chris Poole wrote: > >>> Why not just store the GPG encrypted file directly with the "strong >>> passphrase that I know" ? >> >> I'm happy to do that, I'm just trying to keep

Re: Store revoke cert. in symmetric file?

2010-12-07 Thread Grant Olson
On 12/7/10 2:22 PM, ved...@nym.hush.com wrote: > Here is an option to do what you want without remembering any other > passphrases except for the secret key you already have: > > [1] Encrypt any file (preferably a very short text message so that > you can type the ciphertext as backup) to your e

Re: Store revoke cert. in symmetric file?

2010-12-07 Thread David Shaw
On Dec 7, 2010, at 11:56 AM, Chris Poole wrote: >> Why not just store the GPG encrypted file directly with the "strong >> passphrase that I know" ? > > I'm happy to do that, I'm just trying to keep the "very long, > complicated passphrases I have to remember" to as few as possible. > > I really

Store revoke cert. in symmetric file?

2010-12-07 Thread vedaal
Chris Poole lists at chrispoole.com wrote on Tue Dec 7 17:56:06 CET 2010 : >I'm happy to do that, I'm just trying to keep the "very long, >complicated passphrases I have to remember" to as few as possible. There are many different ways to approach storing a revocation cerificate. ( I have a spec

Re: Store revoke cert. in symmetric file?

2010-12-07 Thread Chris Poole
> Why not just store the GPG encrypted file directly with the "strong > passphrase that I know" ? I'm happy to do that, I'm just trying to keep the "very long, complicated passphrases I have to remember" to as few as possible. I really just want to make sure that storing my revoke certificate th

Re: Store revoke cert. in symmetric file?

2010-12-07 Thread David Shaw
On Dec 7, 2010, at 8:05 AM, Chris Poole wrote: > I want to check I'm not doing something stupid. > > I have backed up my .gnupg directory, including my revoke certificate, > to a symmetrically-encrypted tar file. > > The password for this is a 50 character randomly-generated, stored in > my KeeP

Store revoke cert. in symmetric file?

2010-12-07 Thread Chris Poole
I want to check I'm not doing something stupid. I have backed up my .gnupg directory, including my revoke certificate, to a symmetrically-encrypted tar file. The password for this is a 50 character randomly-generated, stored in my KeePass database (protected via a strong passphrase that I know).