Recommendations for handling (multiple) user IDs - personal and company ones

Doug Barton dougb at dougbarton.us
Sat Jun 8 02:38:59 CEST 2013


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

On 06/07/2013 03:49 PM, Hauke Laging wrote:
| Am Fr 07.06.2013, 13:22:04 schrieb Doug Barton:
|
|> Personally I have used this strategy and it
|> has worked well for me.
|
|> OTOH, others on this list, and many keys that I have signed over the
|> years, have combined various roles (i.e., personal and work e-mail
|> addresses) on the same key, so that practice is not uncommon.
|
| The interesting point is: Has it worked well for them, too? Or was
just the
| pain of retiring the key (to separate the roles later) too heavy? ;-)

I can't speak for all of them of course, but I have dealt with a
non-zero amount of frustration on the part of some of those keyholders
after a signing party when old e-mail addresses that were supposed to be
working no longer are, etc. For myself, I'm certainly glad that I
created 2 separate keys.

| Meanwhile I am convinced that most OpenPGP users don't think a lot
about what
| their key should look like before they generate / publish it.

Right-O, so kudos to the OP for doing so.

Doug

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.19 (GNU/Linux)

iQEcBAEBCAAGBQJRsn0jAAoJEFzGhvEaGryEXd8H/2W4VpIAuUrjeN4sCnt4zb8S
Nz91s5nKyFb6u+GTgGBXQ5gBxAXg1GAyf9RlJYnNvMjRS3C6AUxb+Hlk2r+vSGlD
eKUNVtUNjwKzcBMWljTwWfqPv1T3/HX4gt7uMPk6drK+09QFh3zkm/bewsy66t/D
+0V3WZ1SvHXu7VHVV3dVy17EnYdnl3QUOtvc2A0wkYYdQSN8Sv0AaeNPRdxQ2qCx
9f0XvoMEwEHcJQVrJIfRkksEoKxkNBcIcR+f2AYGwq2Tg1raTgZUWnYDiWz4EaMd
Zvwpxui1So2LkM2s94RqgD+WSrmmFUXCeT4Bnpc5EzXQhWfcGQPXhYw5dz3tdYM=
=PPkG
-----END PGP SIGNATURE-----



More information about the Gnupg-users mailing list