GnuPGを使う -失効証明書の作成-
メールアドレスが無効になったときのために、失効証明書を作っておく。
vfr@stratocaster $ gpg --output revoke.asc --gen-revoke "Yasushi Matsuura <calbeez@mac.com>" sec 1024D/03369144 2005-09-11 Yasushi Matsuura <calbeez@mac.com> Create a revocation certificate for this key? (y/N) y Please select the reason for the revocation: 0 = No reason specified 1 = Key has been compromised 2 = Key is superseded 3 = Key is no longer used Q = Cancel (Probably you want to select 1 here) Your decision? 0 Enter an optional description; end it with an empty line: > Reason for revocation: No reason specified (No description given) Is this okay? (y/N) y You need a passphrase to unlock the secret key for user: "Yasushi Matsuura <calbeez@mac.com>" 1024-bit DSA key, ID 03369144, created 2005-09-11 ASCII armored output forced. Revocation certificate created. Please move it to a medium which you can hide away; if Mallory gets access to this certificate he can use it to make your key unusable. It is smart to print this certificate and store it away, just in case your media become unreadable. But have some caution: The print system of your machine might store the data and make it available to others!
各質問への答え方は、私の記事を参考に。
