Hi, is anybody using GnuPG for encrypting mail-messages ? My Question : If I made my private and public key and even a revocation-cert. Is the revocation-cert used to delete or deactivate my public key ( which has the sender ) or is it just a info-message for not using this key because it's insecure / no longer used or anything else ? regards, ..:: bruno ::..
On Wed, 2003-01-22 at 16:25, BLeonhardt@analytek.de wrote:
Hi,
is anybody using GnuPG for encrypting mail-messages ?
My Question :
If I made my private and public key and even a revocation-cert. Is the revocation-cert used to delete or deactivate my public key ( which has the sender ) or is it just a info-message for not using this key because it's insecure / no longer used or anything else ?
To deactivate your public key, you have to 'import' the revocation cert to the key server where your public key resides (if any) or send the revocation cert to everyone you send your public key to and ask them to import it into their keyrings (or just delete the public key from their keyring)
regards, ..:: bruno ::.. --
( Raymond Leach )
) Knowledge Factory (
( )
) Tel: +27 11 445 8100 (
( Fax: +27 11 445 8101 )
) (
( http://www.knowledgefactory.co.za/ )
) http://www.saptg.co.za/ (
o o o o .--. .--. | o_o| |o_o | | \_:| |:_/ | / / \\ // \ \ ( | |) (| | ) /`\_ _/'\ /'\_ _/`\ \___)=(___/ \___)=(___/
On Wed, Jan 22, 2003 at 03:25:16PM +0100, BLeonhardt@analytek.de wrote:
If I made my private and public key and even a revocation-cert. Is the revocation-cert used to delete or deactivate my public key ( which has the sender ) or is it just a info-message for not using this key because it's insecure / no longer used or anything else ?
Keys on a keyserver will not be deleted instead the revocation cert is appended to your key to mark it as revoked (just like any other update of your key). Note that there may be many users with local copies of your key that are not updated this way, so you may still receive messages encrypted with your revoked key. -- Michel Messerschmidt lists@michel-messerschmidt.de antiVirusTestCenter, Computer Science, University of Hamburg
* BLeonhardt@analytek.de wrote on Wed, Jan 22, 2003 at 15:25 +0100:
sender ) or is it just a info-message for not using this key because it's insecure / no longer used or anything else ?
Is it an "info-message" only. To make sure you should sent the revocation with explantation to your high-security peers to make sure that they will not use the key again. When they do signing and encrypting on non-wired stations they often won't even notice some online revocation info :) oki, Steffen -- Dieses Schreiben wurde maschinell erstellt, es trägt daher weder Unterschrift noch Siegel.
participants (4)
-
BLeonhardt@analytek.de
-
Michel Messerschmidt
-
Raymond Leach
-
Steffen Dettmer