Sorry, you need to enable JavaScript to visit this website.

GnuPG keys and expiration dates

0 posts / 0 new
Joe Konno's picture
Starter
Joe Konno

Jan 12, 2015 - 09:04am

  • Hey gang,

    I updated the expiration date on my GnuPG public key several months ago.  If you are getting messages about my key being "expired", you will need to freshen my public key's expiration date by querying a public keyserver. If you are seeing the alert, nothing "bad" happened. I modify my key's expiration date regularly (every two years or so) to show I am actively using it.

    We sign packages with GnuPG keys to assure you, the end-user, that a particular software package was made by one of us at Intel, by name and email address. If you are curious about GnuPG and public key cryptography, documentation is widely available for a range of audiences. It is recommended you be aware of public keys associated with any "external" repository (like 01.org). Ubuntu and Fedora will alert you of packages signed by a key believed to be expired.

    To update my key-- or anyone else's with a bit of light editing-- steps are provided below.

    Ubuntu users, from Terminal (this command will require root/superuser access):

    sudo apt-key adv --keyserver keyserver.ubuntu.com --recv-keys 2F4AAA66

    Fedora users, it's a bit more involved (last command will require root/superuser access):

    gpg --recv-keys 2F4AAA66
    gpg -a -o pubkey.asc --export 2F4AAA66
    sudo rpm --import pubkey.asc
    
    Jan 12, 2015 - 09:04am