For this example, we use the "edit" function. Revoking a signature on a key with the commandline gpg utility is fairly straightforward. This way, it let's others know who download or update the key, that you no longer trust the validity of the key. In this situation, you can revoke your signature on the key. And the valid key has your signature on it. This poses an issue if you have signed their key, because without revoking the key, it remains valid. Unfortunately, we are sometimes met with a situation where the person who no longer represents the email address in the key can't or won't revoke the key. If anyone does use the key, it is a mistake or malicious. This way we protect others by saying, we no longer represent the email addresses in this key, we aren't going to use it anymore. If we no longer have the need for a GnuPG/PGP key, we should revoke it and spread around the revoked key. As we build a larger and more robust web of trust with our GnuPG/PGP keyrings, we inevitably fall into the situation where we need to remove a trust relationship.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |