Re: revoking public key

To: debian-user@lists.debian.org
Subject: Re: revoking public key
From: "John L. Fjellstad" <john-debian@fjellstad.org>
Date: Thu, 25 Sep 2003 10:45:38 +0200
Message-id: <[🔎] 200309251045.38921.john-debian@fjellstad.org>
In-reply-to: <[🔎] 200309242342.41491.newsScott@gmx.de>
References: <[🔎] 200309242030.04938.john-debian@fjellstad.org> <[🔎] 200309242342.41491.newsScott@gmx.de>

On Wednesday 24 September 2003 23:42, Henning Moll wrote:

> > Is there a way to revoke a gpg key if you have lost the password and
> > didn't create a revocation certificate?
> No, not really. You can start a brute force attack. If you used a

Tried, won't work. I do remember I mixed words and numbers, with two unrelated 
words with a random two digit number between the words... And I didn't put a 
timelimit on the key...:-(

> > What happens if I just upload a new public key?
>
> Nothing, except that the new one gets uploaded ;-)
> Both keys are available then...

Actually, I was more thinking like this.  I upload a new key with the same 
email address.  Then starts signing with my new key.  What happens when 
people download my public key for checking? Do they check against both keys, 
and show correct when one matches or what?

Reply to:

Follow-Ups:
- Re: revoking public key
  - From: Ashish Ariga <akariga@axes-mach01.usa.alcatel.com>

References:
- revoking public key
  - From: "John L. Fjellstad" <john-debian@fjellstad.org>
- Re: revoking public key
  - From: Henning Moll <newsScott@gmx.de>

Prev by Date: error message after kernel upgrade
Next by Date: Lapack libraries
Previous by thread: Re: revoking public key
Next by thread: Re: revoking public key
Index(es):
- Date
- Thread