Follow

So, in January I started using a YubiKey for my PGP needs. I made a new PGP key for it and signed it with my old one (to show that I "acknowledge" my new key)

On April 2nd my old key expired. I didn't care as I don't use it any more. However, Thunderbird didn't allow me to send an email, because my new key was signed with an expired key. So, I had to prolong it before doing so.

Is it a Thunderbird bug or a PGP feature? What is the correct way of dealing with expired keys' signatures?

Sign in to participate in the conversation
Fosstodon

Fosstodon is an English speaking Mastodon instance that is open to anyone who is interested in technology; particularly free & open source software.