Why is this option/action offered to the user at all?
seems useles and dangerous
>From gpg man page:
--export-secret-keys
--export-secret-subkeys
Same as --export, but exports the secret keys instead. This
is normally not very useful and a security
risk. The second form of the command has the special property to
render the secret part of the primary key
useless; this is a GNU extension to OpenPGP and other
implementations can not be expected to successfully
import such a key. See the option --simple-sk-checksum if you
want to import such an exported key with an
older OpenPGP implementation.
--
Seahorse doesn't warn the user when a private key is exported
https://bugs.launchpad.net/bugs/269403
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
