Christoph Anton Mitterer <calestyo(_at_)scientia(_dot_)net> writes:
On Mon, 2015-04-20 at 23:50 -0700, Jon Callas wrote:
Personally, I think that the present way things are done is
syntactically fine. Semantically, there are many bogosities. You can
time-limit your signature on a key, but no one ever does.
As I've explained before, I don't think that this is the same as
hardcoding it into the key, as it wouldn't change the fingerprint, would
it?!
No, it would not, which is IMHO the right thing.
I.e., IMNSHO I feel you should expire your key by expiring your
self-signature on the key. If you want to extend your key then you
re-sign it with a new self-signature.
-derek
--
Derek Atkins 617-623-3745
derek(_at_)ihtfp(_dot_)com www.ihtfp.com
Computer and Internet Security Consultant
_______________________________________________
openpgp mailing list
openpgp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/openpgp