Importance of time in pgp algorithms

Chris Fox dissectingtable at comcast.net
Tue Jan 27 14:58:34 CET 2004


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Nicholas Paul Johnson wrote:
| Hello,
|
| I've two questions.
|
| 1.) I have a laptop that does not keep good time.  Will the clock skew
| affect GPG adversely while encrypting or decrypting emails?
|
| 2.) I also use a desktop.  Is it secure for me to simply duplicate my
| ~/.gnupg directories on each machine (assuming that I copy the files in a
| secure way), or should I create a different key-pair for the desktop
| machine?

You should very rarely generate a new keypair.  As for the security of
your keyrings, that pretty much depends on the security of your
passphrase; we have to be able to move keyrings from machine to machine
otherwise we're only identifying machines, not ourselves.

When I first got into PGP I went hog wild and created keypairs for every
email address.  I came to regret it.
- --
Chris Fox, Linux User #341856
"Many who can accept the premises of quantum mechanics when it comes to
photons and polarization suffer a philosophical loss of nerve at the
suggestion that it could actually be a description of nature."
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFAFu0a9jaRInQzvmsRAvAYAJ9kHJvCkJs/UaGgPzpwFwBGKrdUJgCgqOJ6
mBwj/J7zq3pKmK8fbQNyTFKIPwMFAUAW7Rq2gOp1BO9b9hEC8BgAoKZxi0qH0NsF
MFbuCT1JeoHoR7vIAJ0Wt82cjaBz58cCbltctYr7fKLgmA==
=Qo4/
-----END PGP SIGNATURE-----




More information about the Gnupg-users mailing list