Re: Migrating to GPG - A mini-HOWTO
On Sep 14, Jason Gunthorpe <email@example.com> wrote:
>But we decided that we do not -want- to create a new web of trust, it is
>too much work and totally unnecessary. The RSA patent expires in 11
>months, it is wastefull to throw everything away now.
I signed my DSS key with the old RSA key and then asked people who
signed the old key to sign the new one with their DSS key.
This is easy and secure.
> 4) Maintaing our web of trust is important. New keys should be
> always be signed by older keys - where possible.
I can't think about any situation where this is not possible.
> 8) Participants of 'signing parties' are encouraged to use OpenPGP keys
> (remember that a PGP 2.x key cannot be signed by an OpenPGP key
It can, but then some PGP 2.x versions will barf on it.