Methods to work with offline primary keys
I created a number of profiles with separate subkeys for authentication, signature, and encryption while primary keys are saved on USB Stick. It's working alright but I was wondering if there are some good methods to link to a primary key when it is needed to certify certain operations, such as signing another key, adding identities etc.
I followed this blog, which I thought would be a solution. I imported private keys into a temp gpg directory ~/ram/gpgtmp/
and tried to sign ID2 with ID1 both in a default folder ~/.gnupg/puring.kbx
.
gpg --homdir ~/ram/gpgtmp --keyring ~/.gnupg/pubring.kbx -u ID1 --edit-key ID2
The ID2 is not signed in a default gnupg folder but in ~/ram/gpgtmp
. I tested it when invoking command gpg --homedir ~/ram/gpgtmp -k
. Therefore it is not necessarily working.
Do you know how to bring an offline primary key?