Ask HN: How do you manage PGP/SSH key backups? | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

		Ask HN: How do you manage PGP/SSH key backups?
		2 points by xanthine on Nov 3, 2020 \| hide \| past \| favorite \| 1 comment

		With different SSH keys being used for different git repos, I was considering adding those keys to my GPG keyring (which also holds those PGP keys that I use for storing passwords with pass, and signing commits), as outlined in this article: https://opensource.com/article/19/4/gpg-subkeys-ssh-multiples I'm however skeptical of this, as it seems like a hack at best (if this was common enough, we wouldn't have to use options like '--expert' and '--edit-key' with gpg). I'm curious as to how most people take backups of their keys, and store them securely.

Hackbraten on Nov 3, 2020 [–]

All my SSH keypairs are files so they’re part of my usual backup regimen with hourly, daily and weekly filesystem snapshots, copied to several backup locations.

I wouldn’t bother though if I lost my SSH keys. I’d just create and deploy new ones and invalidate the lost public keys on the servers.

No strategy yet for PGP keys, though.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact