I have always been struggling with task management. Always. And will always do. I have tried a lot of things, paper based, digital (starting on my Apple Newton, over to the Palm III, V, various mobile phones, Blackberry and now iPhone and Android.
But somehow I have learned over the years that I need the totally simple stuff or else it will fail.
Seems I am not alone 😉 I stumbled across the Corbinizer, a very simple but nice approach. More explanations here.
However, the usual Le Sigh after downloading it. It doesn’t fit on A4, it uses Letter. So I opened my Inkscape, fiddled around a bit and created the A4 version which is attached to this blog entry.
Remember, the Corbinizer is Copyright 2014, All Rights Reserved by Brandon Corbin.
The Corbinizer is released under the Creative Commons Attribution-NonCommerceial License.
Let’s give it a try. Print it at 100% and make sure “shrink to fit” is NOT selected.
#geekporn Today it made “click” in my head. I finally understood the use of subkeys in GPG. The genius of it!
You create your GPG-key on a truly safe machine (ideally a machine that has no connection to the network, runs a minimal and trusted OS (Linux, I personally use Fedora) and create subkeys for signing and encryption. You export your key to a safe device (USB Stick, SD card) and store it offline.
Now you can safely delete the master key from your keyring and carry ONLY the subkeys in your keyring on machines or mobile phones that you use to encrypt/decrypt/sign. So should your keys become compromised, you can revoke the subkeys, take out your masterkey again on a truly safe machine and generate a new set of subkeys for encryption and signing.
NOTE: You cannot sign other keys with this stripped down keyring as you need the master key for that.
And these new subkeys are still identified via the same keyID as that comes from the masterkey. So you can keep the masterkey longterm and swap out the subkeys every year or whenever you think they are compromised.