So, years ago I tried PGP/GPG and put my key up on the public keyservers.

And then promptly lost the private key data. Lather, rinse, repeat, and now there are like 5 old GPG/PGP identities for me up there that are gone forever and can’t be revoked.

So, it’s 2024, and I think “I have a NAS I do regular backups and test restores on. Surely I can keep my private key data safe and secure now”.

So I get GPG going, create my keys, and then, not knowing any better? copy my entire $HOME/.gnupg directory to my NAS.

The goal here is for me to be able to use the same private key across all the machines I use. There are several.

But when I copy down that directory, GPG refuses to “see” it. gpg --list-secret-keys prints - Nothing.

  1. Is there a better way to keep my key in sync across all my machines? I’d rather not use keybase if possible, they give me the willies after tainting themselves with cryptocurrency and being bought.
  2. Assuming there isn’t, what am I doing wrong with my ~/.gnupg directory?

Thanks in advance!

  • feohOP
    link
    fedilink
    arrow-up
    1
    ·
    11 months ago

    Interesting food for thought here, but you’re talking about making the keys more secure.

    These keys are ONLY used to store E-mail credentials, so “Good enough” is plenty :) I’ll work on successfully retaining and managing my single key first, and then we can work on flying around the room :)

    But thanks!