On Wed, 02 Jan 2008 17:30:15 -0800 John Poelstra poelstra@redhat.com wrote:
- Do most people create keys that expire or is it okay to create one
that does not?
I've heard that a good strategy if you're going to generate a non-expiring key is to generate the revocation key at the same time, and replicate that in even more places, so in the event that you lose your private key you can revoke it instead of waiting for it to expire.