1
I'm playing around with GPG (v2.2.8), trying to get a primary/master key with subkeys and several uids attached. To get to the point I'm at, I:
- Created the master key and gave it only (C)ertify ability.
- Created 3 subkeys, each with only one of (E)ncrypt, (S)ign, (A)uthenticate ability.
- Created revocations and paperkeys for them.
- Exported .gnupg folder off the machine.
- Removed the master private key.
As I did this quite a few times having made mistakes and misunderstanding the process (you've used gpg, right?;) I started to become more confident and in my new found state added a uid I shouldn't have. So I did the following:
gpg --edit-key 0xXXX
gpg> 2
gpg> deluid
Really remove this user ID? (y/N) y
gpg> save
What puzzles me is that there was no prompt or warning about the primary key - does it not have the uid too? Are they only tied to the public key so the private part doesn't care? Should I reimport it and remove the uid and then export it?
These are the questions this episode has prompted.
I haven't shared the keys and I'm playing around so I can blitz the whole lot if need be, just trying to understand how gpg works. Then I'm going to move on to creating a super secure crypto algo because that's probably easier to manage!