[pass] How to migrate database with expiring GPG key?
Andrew Todd
at at auspicacious.org
Fri May 20 03:12:35 CEST 2016
On Thu, May 19, 2016 at 11:32 AM, Brian J. Duffy <bduffy at gmail.com> wrote:
>
> What's the best way to transition pass to a new key?
>
As mentioned, the prevailing wisdom is not to rotate PGP keys too often,
although there's arguments for both sides.
That being said, if you need to do so, you can re-run pass init <gpg-id> on
an existing repository. Existing keys will be decrypted and re-encrypted
for the new gpg-id.
In fact, you can supply as many gpg-ids as you want to the command, so you
can re-encrypt the files for both the existing key and the new key by
passing both IDs.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.zx2c4.com/pipermail/password-store/attachments/20160519/45f91b4a/attachment.html>
More information about the Password-Store
mailing list