What should I do if my PGP key is revoked?
A:The easiest way to do this is: Make a backup of your public and secret keyrings. Revoke your key with pgp -kd youruserid. Extract the revoked key to a file with pgp -kxa youruserid. This file is what the manual calls the “revocation certificate.” Store the certificate in a safe location, for example on a floppy which you keep someplace else.
When do I need to sign my PGP public key?
You should sign your PGP public key immediately after generating your public/private key-pair. And now I wonder how I can check whether I already did that. So my question is: how can I tell if my own pgp public key is self-signed or not?
How to delete keys from public keyring in GPG?
You can do so (delete keys from your public keyring) with the following command: You can find the key-ID by listing your keys with the following command: This will list all your keys in your keyring. Below is an example of a key: Note: They key-ID in above key example is C5DB61BC. You can delete multiple keys with the following command:
How to check for self signatures in GnuPG?
Usually, self-signatures are created automatically by GnuPG, so you don’t need to care about anything. Using the terminal, checking for self signatures is achieved very easily.
What happens when a private key is revoked?
Only the person in possession of the secret private key can sign messsages to be verified with the public key and hence, a revocation is a “sending of a private key signed message, hash of message generated and assymetrically encrypted” kind of thing. My take on the further thing is that once revoked, the keypair is burned (trustwise worthless).
Where is the best place to store a PGP key?
The safest place to store a PGP key is on your computer. If you put it on a USB device, you might lose it. If you use a password manager, you might forget the password for your password manager or your computer might break then you lose all your passwords. – desbest Dec 9 ’15 at 14:33
How do I Revoke my IAS private key?
If you would like to permanently revoke your private key, simply import it into your keyring and send it to the keyserver. Be careful, once revoked, you cannot go back. You must create a new key at that time and go back through the process of keysigning.