New GPG Key
It was time to finally replace my old GPG key. I created the key in 2008 and from today’s perspective a 1024 bit DSA key is really weak. Thus, today I decided to move to a new key and created a 4096 bit RSA key.
My old key was
pub 1024D/446DB306 2008-07-15 [expires: 2017-07-13]
Key fingerprint = 0E75 62A5 405E 65B1 B477 4215 D9B3 5173 446D B306
And the new key is:
pub 4096R/8D2DD9BD 2014-01-15 [expires: 2019-01-14]
Key fingerprint = 08E6 6E72 A83A 9871 CD49 3441 E81B C307 8D2D D9BD
For those of you who already trust my old key I created a transition note which is signed by both my old and my new key.
To import my new key to your key chain you can use the following command:
gpg --keyserver pgp.mit.edu --recv-key 8D2DD9BD
The new key is already signed by the old key. Those of you trusting my old key may verify the signature using:
gpg --check-sigs 8D2DD9BD
To sign the new key execute the following command:
gpg --sign-key 8D2DD9BD
And it would be nice if you upload the signed to one of the key servers:
gpg --keyserver pgp.mit.edu --send-key 8D2DD9BD
You are of course free to give me a call in order to verify the fingerprint ;-)
Leave a comment
There are multiple options to leave a comment: