Lost passphrase
John W. Moore III
jmoore3rd at bellsouth.net
Tue Apr 17 14:51:23 CEST 2007
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
> - i can't revoke it --> no passphrase :-(
> - i still need the email adresses with the useless keys
> - i definitely can't find the passphrase
OK, Stupid Response Question First:
Did You have the common sense to generate a Revocation Certificate
immediately after creating the Key? (i.e. While You could remember the
passphrase)
If You did; then simply Import the this Revoke Cert and ship the Dead
Key to the Servers. If not; and I suspect this is the case, then You
have a Major Problem. You may be screwed; However You are not the first
individual to confront this problem and, sadly, won't be the last.
If You are unable to Revoke the former Key then by all means; Generate a
New Key (and create a standby Revoke cert) and Publish this Key *AND*
notify every critical correspondent of the new Key! Still, those folks
who Search for your Key via Email Address may send You encrypted Email
using the Former/Compromised Key. (Shake Head sadly and mutter, "Ah Shit")
I suggest You Move On (sadder but wiser) and accept that that You have
made a common misstep on the path to Secure Communication.
JOHN ;)
Timestamp: Tuesday 17 Apr 2007, 08:51 --400 (Eastern Daylight Time)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.8-svn4476: (MingW32)
Comment: Public Key at: http://tinyurl.com/8cpho
Comment: Gossamer Spider Web of Trust: http://www.gswot.org
Comment: My Homepage: http://tinyurl.com/yzhbhx
iQEcBAEBCgAGBQJGJMLEAAoJEBCGy9eAtCsPFnwH/0COq203wlxm7kEidOk741RS
+XKbKhTzGOyRjTAeH47sqXXSHjLQyUr7/p/YV3RFsq8eh4fBC2wrYhsqIE/TaWE+
8ven/9QMEzHCik3h4pGZ12TyGN4Ze9AqBvsftYj5tbXIu+v/vFF8aj/zxj4Hkdp1
NTzDq7igh56Bi6ABHWww0I5ddvVvHu6e+aUNEN1OE+g8Jjs8ALCC7QTk24D2FiwP
tL7CIWCT4xZcmS13eAAHLOlgnpbRXleU5YywGLNBz+rXDanQVnjCx/5YuRt8clLt
u3RHhw83DukwZtNnlmb+c0p9lOkzHtdrn7999YUWODt9gvKGWVI3inWTUaqi8u8=
=yVFN
-----END PGP SIGNATURE-----
More information about the Gnupg-users
mailing list