Creating signatures with expiration time

Daniel Kahn Gillmor dkg at fifthhorseman.net
Thu Apr 14 06:05:18 CEST 2011


On 04/13/2011 10:43 PM, Jesus Cea wrote:
> My idea was to create a signature with a expiration date, so signatures
> should be renewed every year. The OpenPGP Standard documents this type
> of signature <http://tools.ietf.org/html/rfc4880#section-5.2.3.10>, but
> GPG doesn't seems to have the option to create them.

Look in the man pages for --default-cert-expire and --ask-cert-expire.

If these do what you want, you can also set them in ~/.gnupg/gpg.conf so
that you don't have to supply them on the command line every time.

hth,

	--dkg

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 1030 bytes
Desc: OpenPGP digital signature
URL: </pipermail/attachments/20110414/7c0d5102/attachment-0001.pgp>


More information about the Gnupg-users mailing list