ssh /gnupg passwords storage
Hi,
i have a question on security with regards to key pairs.
I have created a keypair on my server so i can log on to me server from
my pc. Do i leave the keypair in ~/.ssh or do i move them (especially the private key)? What is regarded as being a safe medium? CD-RW or anything not connected to the server i guess?
Same question could go for gnugp. I've only tested this with WinPT on my win machine at work. I suppose that once the keypair is generated, it would be safer to move the private key to another medium or do you leave the pair on the win 'puter.
I suppose encrypting the ssh key pair on the disk/cd where i would keep them would be overkill :-) ?
Thanks for any info.
Reply to: