GPG Keychain: feature request: option to export secret subkeys only
reading the best practices at riseup.net
https://riseup.net/en/security/message-security/openpgp/best-practices they give the advice that you can encrypt and sign using subkeys, so the main key is only necessary for certification of other keys. Then it makes sense to not export this main secret key e.g. to your android phone, as it may be at somewhat more danger of getting compromised than on your computer.
My request: when exporting secret keys, provide an option to export only the secret subkeys and not the main key.
It is not an impossible problem, but it would be a nice added option. Now it can be done with some hand- and footwork using gpg in the command line.
macOS 10.11.6 15G1212 GPG Suite 2016.10 28n (172662f) GPGMail 2.6.2 1172n (f871731) GPG Keychain 1.3.3b1 1250n (cda0ef2) GPGServices 1.11 918n (872e77d) MacGPG2 2.0.30 882n (660b005) GPGPreferences 2.0.2b1 910n (e60baea) Libmacgpg 0.7 776n (82405d8) pinentry 0.9.7 17n (b75069d)
Comments are currently closed for this discussion. You can start a new one.
|?||Show this help|
|ESC||Blurs the current field|
|r||Focus the comment reply box|
|^ + ↩||Submit the comment|
You can use
Command ⌘ instead of
Control ^ on Mac
Support Staff 1 Posted by Luke Le on 22 Feb, 2017 04:36 PM
thank you for your proposal.
We've created a ticket for it and this discussion will be automatically updated once we make progress on this issue.
Steve closed this discussion on 04 May, 2017 02:46 PM.