Open Bug 1657901 Opened 4 years ago Updated 2 years ago

Write a HOWTO document for automatic revocation statements

Categories

(MailNews Core :: Security: OpenPGP, task)

Tracking

(Not tracked)

People

(Reporter: KaiE, Unassigned)

References

(Blocks 1 open bug)

Details

Every time TB generates an OpenPGP key, we automatically create a revocation statement, that could later be used in a situation, in which the key is no longer available.

We use filenames like 0x8C908A1FB593A114_rev.asc

Possible scenarios:

  • master password was set and forgotten
  • corruption/loss of files key4.db, secring.*, or encrypted-openpgp-passphrase.txt

If the above happens, the user can locate their profile directory, find the revocation statement, and publish it.

We should write a SUMO article that allows users to find this information, and document how to use the file, etc.

Related: in bug 1722825, I'm proposing to make it easier for people to know that a revocation certificate was generated and use it from the UI.

Blocks: 1595230
You need to log in before you can comment on or make changes to this bug.