Re: PGP key passphrase lost
- From: kara.ml@xxxxxxxx
- Date: Fri, 15 Oct 2010 15:24:55 +0200
Hi,
When I issue the command to revoke the key, I am prompted for the
passphrase (which, of course, I don't have). How can I revoke this key?
If I can't, how should I handle this situation? Generate a new key and
start over and just ignore the old one or....?
You can't, if you don't remember your passphrase.
You can add a comment like "old-key-id no longer in use" in the new key (with
your primary user-id or a special one).
And you can sign the old key with your new key and a cert notification like:
gpg --cert-notation old-key-id@xxxxxxxxxxxxxx="no longer in use, use
new-key-id" --sign-key old-key-id (export it and send it to keyserver and/or
friends) - substituting *-key-id with the real ones, so that users of your
new key see, that you no longer use the (not revoked) old key and users of
the old key see, that there exist a new key ;)
And for your next key(1): make a backup of your keyrings, issue a revocation
certificate and save it in a secure manner, so that you can revoke a key
under all circumstances by importing the revcert in your keyring and than
exporting/sending the key with the attached revcert.
gpg --gen-revoke key-id > key-id_revcert
later:
gpg --import key-id_revcert
gpg --export -ao revkey.asc key-id
(1) another method: use two keys, add one key as a designated revoker with
gpg --edit-key
addrevoker
--
Ciao
Kai
--
ubuntu-users mailing list
ubuntu-users@xxxxxxxxxxxxxxxx
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
- Follow-Ups:
- Re: PGP key passphrase lost
- From: Anthony Papillion
- Re: PGP key passphrase lost
- References:
- PGP key passphrase lost
- From: Anthony Papillion
- PGP key passphrase lost
- Prev by Date: Re: Anyone trying the "btrfs" file system?
- Next by Date: Cloning a disk pt2
- Previous by thread: PGP key passphrase lost
- Next by thread: Re: PGP key passphrase lost
- Index(es):
Relevant Pages
|
