Skip to content. | Skip to navigation

Personal tools

Navigation

You are here: Home / GPG Key Transition

GPG Key Transition

by Ross Patterson last modified Aug 03, 2009 02:19 AM
I'm now using a new and more secure OpenPGP key

Plain Text icon key-transition.txt.asc — Plain Text, 2 KB (2907 bytes)

File contents

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256,SHA1

For a number of reasons, i've recently set up a new OpenPGP key, and
will be transitioning away from my old one.

The old key will continue to be valid for some time, but i prefer all
future correspondence to come to the new one.  I would also like this
new key to be re-integrated into the web of trust.  This message is
also `available signed by both keys </key-transition.txt.asc>`_ to
certify the transition.

the old key was::

    pub   1024D/DA3C0A60 2007-10-03
          Key fingerprint = 5A41 9205 15DA 73C7 9D04  9EAF 79E1 C766 DA3C 0A60

And the new key is::

    pub   4096R/983EA5AB 2009-08-02
          Key fingerprint = A815 9EE0 8317 DE08 8FE8  4EA1 FC5B 12B8 983E A5AB
    
To fetch the full key, you can get it with::

      wget -q -O- http://rpatterson.net/rpatterson.gpg | gpg --import -
    
Or, to fetch my new key from a public key server, you can simply do::

      gpg --keyserver subkeys.pgp.net --recv-key 983EA5AB
    
If you already know my old key, you can now verify that the new key is
signed by the old one::

      gpg --check-sigs 983EA5AB
    
If you don't already know my old key, or you just want to be double
extra paranoid, you can check the fingerprint against the one above::

      gpg --fingerprint 983EA5AB
    
If you are satisfied that you've got the right key, and the UIDs match
what you expect, I'd appreciate it if you would sign my key::

      gpg --sign-key 983EA5AB
    
Lastly, if you could upload these signatures, i would appreciate it.
You can either send me an e-mail with the new signatures (if you have
a functional MTA on your system)::

      gpg --armor --export 983EA5AB | mail -s 'OpenPGP Signatures' rpatterson@rpatterson.net
    
Or you can just upload the signatures to a public keyserver directly::

      gpg --keyserver subkeys.pgp.net --send-key 983EA5AB
    
Please let me know if there is any trouble, and sorry for the
inconvenience.

Thanks!
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
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=7/26
-----END PGP SIGNATURE-----
OpenID Login

Contact

me@rpatterson.net

IRC: zenwryly@irc.freenode.net
plone.org: rossp
GTalk: mer@patterson.net
Yahoo IM: patterson_ross
AIM: rosspatters
MSN: me@rpatterson.net
Skype: merpattersonnet

PO Box 7775 #10587
San Francisco, CA
94120-7775

Phone
+1 (415) 894-5323