diff options
| author | Thomas A Caswell <tcaswell@gmail.com> | 2019-08-26 21:10:19 -0400 |
|---|---|---|
| committer | Thomas A Caswell <tcaswell@gmail.com> | 2019-08-26 21:10:19 -0400 |
| commit | f8880975b8c5d2a3fdf779a85453748701a526cf (patch) | |
| tree | 2c51210a51f9ff669c4eb5399ea13711c7c41173 /README.md | |
| parent | DOC: notes an adding more emails (diff) | |
| download | YubiKey-Guide-f8880975b8c5d2a3fdf779a85453748701a526cf.tar.gz | |
DOC: justify why you would want to sign your new key
Diffstat (limited to 'README.md')
| -rw-r--r-- | README.md | 19 |
1 files changed, 14 insertions, 5 deletions
@@ -416,16 +416,25 @@ Export the key ID as a [variable](https://stackoverflow.com/questions/1158091/de $ export KEYID=0xFF3E7D88647EBCDB ``` -# Sign with an existing key (if you have one) +# Sign with an existing key (optional) -Export your existing key to move it to the working keyring. From a different terminal do: +If you already have a pgp key you may want want to sign your new key +with the old one to help prove that your new key is infact controlled +by you. - $ gpg --export-secret-keys --armor --output /tmp/new.sec +Export your existing key to move it to the working keyring. From a +different terminal do: -and then +```console +$ gpg --export-secret-keys --armor --output /tmp/new.sec +``` + +to export your old key and then - $ gpg --default-key $OLDKEY --sign-key $KEYID +```console +$ gpg --default-key $OLDKEY --sign-key $KEYID +``` # Sub-keys |