[kde-linux] [OT] new pgp key

Kevin Krammer kevin.krammer at gmx.at
Tue Sep 29 07:53:05 UTC 2009

On Tuesday, 2009-09-29, g wrote:
> Kevin Krammer wrote:
> > Make sure you revoke your old key so it is no longer valid.
> i thank you for advisement, but,
> i personally send out my public keys. i do not put them on servers.

Revokation is independent of the form of key distribution. Once the keyis 
updated through any of the available means it will no longer be valid.

Especially since you said that this action is taken due to a potential system 
breach which means the potential attacker could have uploaded it if they 
wanted to impersonate you.

> i do have a list of who has keys, and i update them when i make a change.

Well, you sent the information about the change to a mailinglist but you did 
not include the revoked key not any information where to get it.


Kevin Krammer, KDE developer, xdg-utils developer
KDE user support, developer mentoring
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 190 bytes
Desc: This is a digitally signed message part.
URL: <http://mail.kde.org/pipermail/kde-linux/attachments/20090929/7ad1ae4d/attachment.sig>

More information about the kde-linux mailing list