Refresh keys at randomized intervals through a unique, single-use Tor circuit
Please add seahorse's ability to update keys like parcimonie.sh
https://github.com/EtiennePerot/parcimonie.sh
What does it do?
parcimonie.sh
refreshes individual keys in your GnuPG keyring at randomized intervals. Each key is refreshed over a unique, single-use Tor circuit.
parcimonie.sh
guarantees that each key refresh happens over a unique Tor circuit even when multiple refreshes happen at the same time (torsocks --isolate
).
Why?
You can check the original Parcimonie design document if you are wondering why this is needed: https://github.com/EtiennePerot/parcimonie.sh/blob/master/parcimonie-original-design.md
The tl;dr version: gpg --refresh-keys
discloses your entire list of PGP keys to the keyserver you are using, as well as whoever is wiretapping your connection if you are using an unencrypted protocol such as HKP (which is the default for most setups). That is a bad thing.