tag:gpgtools.tenderapp.com,2011-11-04:/discussions/problems/20265-how-to-migrate-to-a-new-computer-mk-iiGPGTools: Discussion 2018-10-18T19:55:14Ztag:gpgtools.tenderapp.com,2011-11-04:Comment/327574902014-04-30T19:51:49Z2014-05-25T19:28:52ZHow to migrate to a new computer? mk II<div><p>Hi Robert,</p>
<p>getting a MacBook stolen sucks! In case of secret keys that were
on that MacBook it also poses a security risk. Did you also have
your passphrase stored in the OS X keychain or did you always enter
it manually?</p>
<p>This KB-article covers the case of a lost sec key: <a href=
"http://support.gpgtools.org/kb/faq-gpg-keychain-access/how-to-revoke-a-key-or-can-i-delete-a-key-from-the-key-servers#no-sec-key-or-passphrase">
http://support.gpgtools.org/kb/faq-gpg-keychain-access/how-to-revok...</a></p>
<p>Edit: Do you have any backup of your sec key? Either on a
USB-stick or on an entire time-machine or cloned harddrive
backup?</p>
<p>Let me know if you have more questions after going through that
article.</p>
<p>All the best,<br>
steve</p></div>Stevetag:gpgtools.tenderapp.com,2011-11-04:Comment/327574902014-05-10T12:01:15Z2014-05-10T12:01:16ZHow to migrate to a new computer? mk II<div><p>Thanks Steve. If I understand correctly (probably unlikely), I'm
outa luck. I have written down all the keys and IDs I think - but
this doesn't seem to be the same thing.</p>
<p>I think my course of action must be to create a new key-pair,
and revoke the old. That's what I'll do. If that seems stupid
please let me know; and I'll be in touch should I have any
problems.</p>
<p>Many, many thanks<br>
Robert</p></div>Roberttag:gpgtools.tenderapp.com,2011-11-04:Comment/327574902014-05-25T19:34:47Z2014-05-25T19:34:47ZHow to migrate to a new computer? mk II<div><p>Hey Robert,</p>
<p>sorry for slow response times. Busy times here.</p>
<p>To do anything useful about this situation, you'd need both the
sec key and the passphrase. Writing down the KeyID or even only the
passphrase is nice but doesn't bring back the sec key. And without
that you are out of luck if you want to revoke it now.</p>
<p>In general it's a good idea to always create a revocation
certificate after you create a new key. We have an existing ticket
to suggest that to the user right after the key creation.</p>
<p>Then you could import that cert and thus revoke the key. But if
you currently also do not have that, creating a new key is your
only option.</p>
<p>You write "revoke the old key". How do you want to do that? Do
you actually have a revocation cert?</p>
<p>All the best,<br>
steve</p></div>Stevetag:gpgtools.tenderapp.com,2011-11-04:Comment/327574902014-05-26T09:22:16Z2014-05-26T09:22:18ZHow to migrate to a new computer? mk II<div><p>Steve: No problem; glad that interest in this is kicking on!</p>
<p>I created a new key-set, and am able to proceed as I was. I
think I probably mis-understood about the revocation certificate
previously (I'm not entirely clear now) but I'll try to implement
this new advice now.</p>
<p>Thanks for the support<br>
Robert</p></div>Roberttag:gpgtools.tenderapp.com,2011-11-04:Comment/327574902014-05-26T09:33:45Z2014-05-26T09:42:47ZHow to migrate to a new computer? mk II<div><p>The revocation certificate is a file you can create as a safety
net. Create it (do not import it!) and put it e.g. on a USB drive
in a secure location.</p>
<p>Should you then loose your sec key or forget your passphrase you
can import this revocation certificate to mark that key revoked. If
you then upload the revoked key to the key servers others will know
that your key was revoked and that you probably have a new key.</p>
<p>Can I close this discussion or do you have remaining questions?
You can always re-open if more trouble arises or just open a new
discussion.</p></div>Stevetag:gpgtools.tenderapp.com,2011-11-04:Comment/327574902014-05-26T09:39:34Z2014-05-26T09:39:36ZHow to migrate to a new computer? mk II<div><p>Got, it Steve; very clear instructions. Finally this part makes
sense.</p>
<p>Please do close the thread: I'm fully encrypted.</p>
<p>Thanks again for your support<br>
Robert</p></div>Roberttag:gpgtools.tenderapp.com,2011-11-04:Comment/327574902014-05-26T09:43:18Z2014-05-26T09:43:18ZHow to migrate to a new computer? mk II<div><p>Perfect. Glad, this is solved for you. I'm closing this
discussion. If you need further assistance or have questions you
can re-open this discussion here or open a new one any time.</p>
<p>Best, steve</p></div>Steve