tag:gpgtools.tenderapp.com,2011-11-04:/discussions/problems/304-secret-key-storageGPGTools: Discussion 2017-09-14T12:13:34Ztag:gpgtools.tenderapp.com,2011-11-04:Comment/127326292012-01-07T09:16:45Z2012-01-07T09:16:45Zsecret key storage?<div><p>Hi,</p>
<p>I think a lot of people, especially less experienced ones<br>
store their keys on a local harddrive, which is fine in most
cases.<br>
It basically always makes sense though to store your keys on a
thumbdrive, since your keys won't be comprimised if your computer
is.<br>
But it's sure more convenient to keep in on the local hard
drive.</p>
<p>Hope that helps :)</p></div>Luke Letag:gpgtools.tenderapp.com,2011-11-04:Comment/127326292012-01-07T16:30:34Z2012-01-07T16:30:34Zsecret key storage?<div><p>That's what I figured, I just wanted to get a sense of what most
users were actually doing. What was bothering me was the time
machine issue. I work in a couple different places and leave Time
Machine backup drives in each of them, which I realize have a copy
of my secret key just sitting out there. In some ways I am okay
with this as I most about encryption for messages stored on servers
and I am not quite as worried about someone impersonating me or
sending email as me; however, it also seems like not a best
practice.<br>
Perhaps just striking that file from Time Machine and storing a
backup on a thumb drive is a better option than what I currently
do.</p>
<p>/Art</p></div>Arthur Lee-Feldmantag:gpgtools.tenderapp.com,2011-11-04:Comment/127326292012-01-07T16:48:43Z2012-01-07T16:48:43Zsecret key storage?<div><p>It's true, Time Machine imposes kind of a security issue,<br>
but if you make sure the Backups aren't easily accessible it's
basically similar to a thumbdrive option. If you keep that lying
around,<br>
people could again get a hold of your keys</p></div>Luke Letag:gpgtools.tenderapp.com,2011-11-04:Comment/127326292012-01-07T19:56:08Z2012-01-07T19:56:08Zsecret key storage?<div><p>Thanks for weighing in.</p>
<p>/Art</p></div>Arthur Lee-Feldmantag:gpgtools.tenderapp.com,2011-11-04:Comment/127326292012-01-08T11:48:31Z2012-01-08T11:48:31Zsecret key storage?<div><p>In this context: you con encrypt (FileVault 2) your hard drive
as well as your backup drive.</p></div>Alex