revoked key - was: Re: key-signing for pseudonyms

Jerry Windrel jerry.windrel at verizon.net
Mon May 17 16:14:20 CEST 2004


If you don't mind saying, why did you revoke it?

----- Original Message ----- 
From: "Atom 'Smasher'" <atom-gpg at suspicious.org>
To: <gnupg-users at gnupg.org>
Sent: Monday, May 17, 2004 9:40 AM
Subject: revoked key - was: Re: key-signing for pseudonyms


> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> (note the new subject.)
>
> On Mon, 17 May 2004, Jerry Windrel wrote:
>
> > Have you considered starting over with a brand new key that is not
connected
> > to a revoked key?
> =======================
>
> yes, but doing it this way means that my old and new key remain compatible
> with each other... i can sign something with the new key, and it still
> verifies with my old key: someone can encrypt to my old key, and i can
> decrypt with my new key. this also means that anyone who "trusts" the old
> key should "trust" the new key, since it incorporates the old key.
>
> if someone doesn't know that the old key is revoked, everything still
> works fine. if they notice the revocation, they might also notice the
> revocation comment that directs people to the new key.
>
>
> ...atom




More information about the Gnupg-users mailing list