Orphaned secret subkeys

Nikola Lečić nikola.lecic at anthesphoria.net
Fri Feb 22 04:37:19 CET 2008


-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160

On Thu, 21 Feb 2008 15:11:57 +0100
Sebastien Chassot <sinux at fsfe.org> wrote:
 
> On Wed, 2008-02-20 at 23:22 +0100, Nikola Lečić wrote:
> > -----BEGIN PGP SIGNED MESSAGE-----
> > Hash: RIPEMD160
> > 
> > On Thu, 31 Jan 2008 02:37:10 +0100
> > Nikola Lečić <nikola.lecic at anthesphoria.net> wrote:
> >  
> > > I wasn't aware that one had to 'save' a key immediately after
> > > deleting a subkey (using delkey) in order to replace that subkey
> > > with a new one (using addkey). Now I have this situation:
> > 
> > Hi again,
> > 
> > It seems that not so many mails remain unanswered on this list... So
> > please let me know if I should report my question with more details
> > or clarify something.
> 
> Hi,
> 
> You just have to toggle to secret keyring, select key (> key 4) and
> run delkey. You'd be asked if you realy want delete a secret subkey.

Sebastien, thank you for the reply.

That's exactly why I asked: I can't do this. :-) It seems that GnuPG
always wants me to return to the public ring:

%gpg --edit-key 7B063EAA
[...]
Secret key is available.

[...]
Command> toggle  

sec  2048R/7B063EAA  created: 2008-01-30  expires: never     
ssb  1024R/35E8152C  created: 2008-01-30  expires: never
ssb  2048R/AE444AB1  created: 2008-01-30  expires: never
ssb  1024g/FA352C19  created: 2008-01-30  expires: never    <--- orphan
ssb  1024R/44EDC121  created: 2008-01-30  expires: never    <--- orphan
ssb  2048R/C0AD5BE4  created: 2008-01-30  expires: never

Command> key 4
...
ssb* 1024R/44EDC121  created: 2008-01-30  expires: never
...
Command> delkey
Please use the command "toggle" first.

Command> 

> That's what you did in public keyring but there is two keyring one
> public and one secret. You could have run "gpg --delete-keys" and "gpg
> --delete-secret-keys" too.

I understood that delete{,-secret}-keys can't delete subkeys.

- -- 
Nikola Lečić = Никола Лечић
fingerprint : FEF3 66AF C90E EDC3 D878  7CDC 956D F4AB A377 1C9B
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.4 (FreeBSD)

iQCVAwUBR75DfvzDP9K2CKGYAQMSKQP/bfExJd9RSzyC3cJlgbQ3im23+6Mj5UMz
7Dp5NWcEO+o6+162gdaNebqOPyK5+kDcdR+34Sbx8X+w1Xb9waVzBdRa/wS1QEdE
2YP/0bs+2DAcOUZL8O+3pfRKidMkXcCuHiUp/6A8//DfNH08+KIp4yETICvCe/wg
1uJTFWY3US4=
=/epJ
-----END PGP SIGNATURE-----


More information about the Gnupg-users mailing list