[Nottingham] Tip

david at gbenet.com david at gbenet.com
Fri Feb 5 00:20:27 UTC 2016


Hi All,

You need to make sure that you are regularly refreshing your keys. The best way to do this
on Debian and Ubuntu is to use parcimonie:

sudo apt-get install parcimonie

Parcimonie is a daemon that slowly refreshes your keyring from a keyserver over Tor -. It
uses a randomized sleep, and fresh Tor circuits for each key. The purpose is to make it hard
for an attacker to correlate the key updates with your keyring.

You should not use gpg --refresh-keys or the refresh keys menu item on your email client
because you disclose to anyone listening, and the keyserver operator, the whole set of keys
that you are interested in refreshing.

David


-- 
“See the sanity of the man! No gods, no angels, no demons, no body. Nothing of the
kind.Stern, sane,every brain-cell perfect and complete even at the moment of death. No
delusion.” https://linuxcounter.net/user/512854.html - http://gbenet.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0xAAD8C47D.asc
Type: application/pgp-keys
Size: 5054 bytes
Desc: not available
URL: <http://mailman.lug.org.uk/pipermail/nottingham/attachments/20160205/4b8b5662/attachment-0001.key>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: OpenPGP digital signature
URL: <http://mailman.lug.org.uk/pipermail/nottingham/attachments/20160205/4b8b5662/attachment-0001.sig>


More information about the Nottingham mailing list