[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Determining key permission bits
On 12/20/13 08:51, Andy Lutomirski wrote:
> FWIW, ls -l does give some hint -- keys with fewer permissions seem to
> be smaller.
Yes, this is generally correct, although there can be confounding factors -- if
a key file is passphrase-protected then it will be larger than a file with the
same keys but no encryption.
> Also, it would be nice if there was a way to revoke or rotate the delete key.
Hmm, interesting idea. I wonder what credentials should be used to authorize
a key-rotation request...
--
Colin Percival
Security Officer Emeritus, FreeBSD | The power to serve
Founder, Tarsnap | www.tarsnap.com | Online backups for the truly paranoid