LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Slackware
User Name
Password
Slackware This Forum is for the discussion of Slackware Linux.

Notices


Reply
  Search this Thread
Old 06-19-2015, 02:00 AM   #1
kikinovak
MLED Founder
 
Registered: Jun 2011
Location: Montpezat (South France)
Distribution: CentOS, OpenSUSE
Posts: 3,453

Rep: Reputation: 2154Reputation: 2154Reputation: 2154Reputation: 2154Reputation: 2154Reputation: 2154Reputation: 2154Reputation: 2154Reputation: 2154Reputation: 2154Reputation: 2154
GPG key expiration and keyservers


Hi,

I'm currently writing a little HOWTO on GPG: creating and managing keypairs, encrypting, decrypting, signing, etc. I have a few test users (alice, bob, mallory) on a local machine, with a few dummy keypairs.

I know it's bad practice to upload test keys to public keyservers. But then, I wonder what happens if I define a very short period of validity for these, like a couple days or a week? If I upload such a key to a keyserver and it expires after a week, will its record disappear from the keyservers? Or will it stay there eternally like that half dozen test keys I created over the last ten years and that litter the landscape like discarded plastic bottles?

Cheers,

Niki
 
Old 06-19-2015, 03:48 AM   #2
willysr
Senior Member
 
Registered: Jul 2004
Location: Jogja, Indonesia
Distribution: Slackware-Current
Posts: 4,651

Rep: Reputation: 1772Reputation: 1772Reputation: 1772Reputation: 1772Reputation: 1772Reputation: 1772Reputation: 1772Reputation: 1772Reputation: 1772Reputation: 1772Reputation: 1772
Mit pgp keyserver doesn't have an option to delete your keys
You can only revoke it
Normally people will set it to no expiry date
 
Old 06-19-2015, 03:58 AM   #3
navigium
Member
 
Registered: Aug 2014
Location: Switzerland
Distribution: Slackware, FreeBSD
Posts: 119

Rep: Reputation: 58
Quote:
Originally Posted by willysr View Post
Mit pgp keyserver doesn't have an option to delete your keys
You can only revoke it
Normally people will set it to no expiry date
But I think it should be considered good practice to set a expiry date. If you don't set it and you loose your revocation and your private key, your key will linger uselessly on the keyservers forever. All my keys have a expiry date set. If I approach the date, I just change it and push the new version to the key servers. This should work.
 
Old 06-19-2015, 04:17 AM   #4
kikinovak
MLED Founder
 
Registered: Jun 2011
Location: Montpezat (South France)
Distribution: CentOS, OpenSUSE
Posts: 3,453

Original Poster
Rep: Reputation: 2154Reputation: 2154Reputation: 2154Reputation: 2154Reputation: 2154Reputation: 2154Reputation: 2154Reputation: 2154Reputation: 2154Reputation: 2154Reputation: 2154
Thank you, but that was not the question. Let me formulate it differently.

If I create a key with an expiration date of, say, one week, and upload this key to a keyserver, will the key automagically disappear from the keyserver after a week? Because I checked for revoked keys, and they seem to stay there forever.
 
Old 06-19-2015, 05:08 AM   #5
Alien Bob
Slackware Contributor
 
Registered: Sep 2005
Location: Eindhoven, The Netherlands
Distribution: Slackware
Posts: 8,559

Rep: Reputation: 8105Reputation: 8105Reputation: 8105Reputation: 8105Reputation: 8105Reputation: 8105Reputation: 8105Reputation: 8105Reputation: 8105Reputation: 8105Reputation: 8105
Quote:
Originally Posted by kikinovak View Post
Thank you, but that was not the question. Let me formulate it differently.

If I create a key with an expiration date of, say, one week, and upload this key to a keyserver, will the key automagically disappear from the keyserver after a week? Because I checked for revoked keys, and they seem to stay there forever.
It will not be deleted. Even expired keys have most likely been used before and therefore should be available for eternity.
 
2 members found this post helpful.
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
GPG: Bad session key gpg between gpg on linux and gpg gui on windows XP konqi Linux - Software 1 07-21-2009 09:37 AM
RSA key expiration poblano Linux - Security 5 01-20-2009 10:18 PM
Question about exact timing of GPG key expiration Asymmetry Linux - Security 2 11-12-2007 11:51 AM
Revoking GPG key with only passphrase and public key djib Linux - Security 2 03-13-2007 03:20 AM
GPG Data, Secret Key but no Public Key? Aeiri Linux - Software 5 07-20-2004 06:00 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Slackware

All times are GMT -5. The time now is 09:37 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration