Subject: Re: Beer...and keys.
To: Curt Sampson <firstname.lastname@example.org>
From: Jim Wise <email@example.com>
Date: 12/18/2003 12:30:07
-----BEGIN PGP SIGNED MESSAGE-----
On Fri, 19 Dec 2003, Curt Sampson wrote:
>On Thu, 18 Dec 2003, Jim Wise wrote:
>> If someone has your private key (from stealing your laptop) you
>> *certainly* want to issue a revocation, even if you have a backup of the
>> key as well as the revocation....
>Certainly. But in that case you can issue a revocation without having
>previously created a revocation certificate.
This is definitely true -- but as others have pointed out, while the
revocation can be placed on relatively insecure media (a USB keychain in
your home file cabinet, your home directory on another system, given to
a friend), the key should not be.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (NetBSD)
-----END PGP SIGNATURE-----