On Sat, Sep 21, 2002 at 11:20:49AM -0700, Jon Callas wrote:
"Bodo Moeller"
<moeller(_at_)cdc(_dot_)informatik(_dot_)tu-darmstadt(_dot_)de>:
I am talking about main keys, not subkeys. Simply don't set an
expiration time for the signing key if you want to be able to continue
to use it indefinitely.
So am I. I'm talking about main keys.
I have a vision where my program might (for example) re-create my
self-signature every day with a 48-hour expiration, and upload it to the
server.
But why would you want to do this?! This key "expiration" does not
provide any security. You can just as well submit a key without an
expiration date; instead of stopping to send updated self-signatures,
you just stop to use the key.
--
Bodo Möller <moeller(_at_)cdc(_dot_)informatik(_dot_)tu-darmstadt(_dot_)de>
PGP http://www.informatik.tu-darmstadt.de/TI/Mitarbeiter/moeller/0x36d2c658.html
* TU Darmstadt, Theoretische Informatik, Alexanderstr. 10, D-64283 Darmstadt
* Tel. +49-6151-16-6628, Fax +49-6151-16-6036