Check the Expiration Date on your PGP Keys -- A Public Service Message from the Grand Wizard...

... who didn't check the date on his old 2048-bit key. And who can no longer log into Dream or DHL until they upgrade to his 4096-bit key.

(We've put in a service request at Dream. We're trying to log onto DHL to let them know, but we keep running into that "this key is invalid" loop).


Comments


[6 Points] DHL-1:

PM'ed you.


[4 Points] None:

[deleted]


[4 Points] sapiophile:

Honestly, I feel like the real mistake here is DHL invalidating the key when it "expires" even when another key isn't present.

OpenPGP Key "expiration" is really completely arbitrary and doesn't even actually have any effects whatsoever, except to display a message to users who try to use the key. It still functions exactly as it did before. Also, it may be useful for folks to know that a key's expiration date can simply be extended at any time.

Basically, key expiration is just a kind of "dead man's switch" so that adversaries who get ahold of an old key can't come out of the woodwork claiming to be somebody they aren't.

And to anyone who is changing/upgrading keys - make sure to Sign the new key with the Old one! This prevents the need for others to track down some obscure signed message posted about the new key - instead, that message is essentially integrated right into the new key! Key Signing is a useful (and in some regards, essential) feature of OpenPGP systems, and it's easy to do!


[1 Points] None:

[deleted]


[1 Points] YohanVandersmut:

Can you pm me GWL


[0 Points] vavapin:

Not something I would expect to hear from The Greatest Psychedelic Mind The Wold Has Ever Known