Re: rm ~/.gnupg/secring NOW!

To: debian-project@lists.debian.org
Subject: Re: rm ~/.gnupg/secring NOW!
From: Daniel Pocock <daniel@pocock.pro>
Date: Thu, 3 Aug 2017 09:54:28 +0100
Message-id: <[🔎] e51c40b0-4c4d-9b21-d02e-93b8ae2a688c@pocock.pro>
In-reply-to: <[🔎] 20170802203032.g57o4ckmmyjs57bc@angband.pl>
References: <[🔎] 20170802195327.in4zop47ybtogn55@angband.pl> <[🔎] 20170802203032.g57o4ckmmyjs57bc@angband.pl>

On 02/08/17 21:30, Adam Borowski wrote:
> On Wed, Aug 02, 2017 at 09:53:27PM +0200, Adam Borowski wrote:
>> If you have ever generated or imported a gpg secret key using gpg 1 or 2.0
>> (ie, before Stretch), then used --delete-secret-key, please
>> rm ~/.gnupg/secring.gpg
> Obviously, this assumes you did run a gpg command after upgrading from
> jessie and thus triggered the upgrade to 2.1 format.  Ie,
> ~/.gnupg/.gpg-v21-migrated exists.
>
> And if not... well, an opportunity to test your backups was overdue :p
>

Would problems like this be avoided by using the PGP/PKI Clean Room[1]?

I've proposed a discussion[2] about it for DebConf

Regards,

Daniel

1. https://danielpocock.com/dvd-based-clean-room-for-pgp-and-pki
2. https://debconf17.debconf.org/talks/66/

Reply to:

Follow-Ups:
- Re: rm ~/.gnupg/secring NOW!
  - From: Adam Borowski <kilobyte@angband.pl>

References:
- rm ~/.gnupg/secring NOW!
  - From: Adam Borowski <kilobyte@angband.pl>
- Re: rm ~/.gnupg/secring NOW!
  - From: Adam Borowski <kilobyte@angband.pl>

Prev by Date: Re: wanted: educate us please on key dongles
Next by Date: Re: vPro and secure Debian systems
Previous by thread: Re: rm ~/.gnupg/secring NOW!
Next by thread: Re: rm ~/.gnupg/secring NOW!
Index(es):
- Date
- Thread