[Pkg-gnupg-maint] Bug#526331: Auto-generate a revocation certificate?

martin f krafft madduck at debian.org
Thu Apr 30 13:41:55 UTC 2009

Package: gnupg
Version: 1.4.9-4
Severity: wishlist

Given the number of times that I've witnessed clueless people
generate keys, publish them and then delete them, it would be good
if revocation certificates would be automatically generated and
mailed to them, or otherwise some sort of backup bundle should be
created with clear instructions for the people about their
importance and how to treat them.

E.g. a mail:

  Dear user,

  You have just generated a new GPG key on $HOSTNAME. For your
  convenience, I've made a backup of the most important files in
  $HOME/gpg-$KEYID-backup-$TIMESTAMP.zip . Please make a backup of
  this file and keep it in a safe location. It is also a good idea
  to print the revocation certificate contained in the ZIP archive
  and store the printout separately. If someone else ever gains
  control over your key, this is the only way you have to prevent
  them from abusing your identity.


-- System Information:
Debian Release: squeeze/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.29-1-amd64 (SMP w/1 CPU core)
Locale: LANG=en_GB, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages gnupg depends on:
ii  gpgv                   1.4.9-4           GNU privacy guard - signature veri
ii  libbz2-1.0             1.0.5-1           high-quality block-sorting file co
ii  libc6                  2.9-8             GNU C Library: Shared libraries
ii  libreadline5           5.2-4             GNU readline and history libraries
ii  libusb-0.1-4           2:0.1.12-13       userspace USB programming library
ii  zlib1g                 1: compression library - runtime

Versions of packages gnupg recommends:
ii  libldap-2.4-2                 2.4.15-1.1 OpenLDAP libraries

Versions of packages gnupg suggests:
pn  gnupg-doc                    <none>      (no description available)
ii  imagemagick                  7: image manipulation programs
pn  libpcsclite1                 <none>      (no description available)
ii  xloadimage                   4.1-16.1    Graphics file viewer under X11

-- no debconf information

 .''`.   martin f. krafft <madduck at d.o>      Related projects:
: :'  :  proud Debian developer               http://debiansystem.info
`. `'`   http://people.debian.org/~madduck    http://vcs-pkg.org
  `-  Debian - when you have better things to do than fixing systems
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: Digital signature (see http://martin-krafft.net/gpg/)
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnupg-maint/attachments/20090430/9aefd0b2/attachment.pgp>

More information about the Pkg-gnupg-maint mailing list