Re: SSL for debian.org/security?
On Tue, Nov 12, 2013 at 10:58 AM, Henrik Ahlgren <firstname.lastname@example.org> wrote:
> But there is the significant downside that it is not possible to
> backup the key, so if the card gets destroyed in a fire or just fails
> and stops working, the key needs to be revoked, since only one
> physical copy of the private key exists. (Which also means that only
> one machine can sign with the key.)
Correct me if I'm wrong but if the key is destroyed, then you revoke
it with the signing third party that signed the key.