Support » Plugin: WP PGP Encrypted Emails » How to revoke keys generated with this plugin

  • Resolved Stefan Nagy

    (@stefannagy)


    I’d like to create a new keypair . But before I do that, I’d like to revoke the current key since I don’t want to collect dead “active” keys on keyservers…

    Is there a way to revoke keys generated with this plugin?

    I’m asking because I normally need a password not only to sign or encrypt e-mails but also to edit my keys.

    https://wordpress.org/plugins/wp-pgp-encrypted-emails/

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Author Meitar

    (@meitar)

    This is a good question, and I thought it would be possible to simply import the site’s signing keypair into your GnuPG keyring and then generate a revocation certificate manually. (I.e., using gpg --output revoke.asc --gen-revoke KEY_ID, where KEY_ID is the key’s fingerprint.) However, when I tried this myself I received an error, which leaves me a bit stumped.

    I’m asking because I normally need a password not only to sign or encrypt e-mails but also to edit my keys.

    Right, this is because, as I understand it, a revocation certificate is kind of a special signature signed by the same key itself, so you need to be able to access the private key. As is good practice, you normally encrypt the private key with a symmetric cipher (using a password), but in order for the plugin to sign outgoing emails, a password requiring human input is impractical. So the signing keypair generated by this plugin does not protect the private key with a password, under the assumption that a password accessible to the server offers no additional security in the event of a server compromise (for obvious reasons).

    Therefore, you shouldn’t need a password to generate a revocation certificate as long as you can access the private key stored in the WP database generated by this plugin.

    HOWEVER! Note the above error. I’ve asked the OpenPGP-PHP developers about this to see if they can provide more insight and will let you know what I learn.

    Stefan Nagy

    (@stefannagy)

    I thought it would be possible to simply import the site’s signing keypair into your GnuPG keyring and then generate a revocation certificate manually. (I.e., using gpg –output revoke.asc –gen-revoke KEY_ID, where KEY_ID is the key’s fingerprint.) However, when I tried this myself I received an error, which leaves me a bit stumped.

    Yes, that’s exactly what I did and I reveived an error. In german it gpg says “Beglaubigung fehlgeschlagen: Falsche Unterschrift”, I guess the english error message would be “signing failed: bad signature”.

    Oh… now I read your OpenPGP-PHP bug report. So we get the same error. Thanks for all the info and for reporting this issue upstream.

    Plugin Author Meitar

    (@meitar)

    Brief update: the upstream library has implemented part of the fix for this but in my most recent testing I still cannot create a revocation certificate manually. I will continue to keep you posted on any progress.

    Plugin Author Meitar

    (@meitar)

    Stefan, I have released version 0.4.4, which should correctly generate a signing key that you can also create a revocation certificate for. Please try re-generating your site’s signing key and creating a revocation certificate as before for the newly generated key. Thanks!

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘How to revoke keys generated with this plugin’ is closed to new replies.