Password troubles

gpg + pass part deux

 Posted on December 1, 2021  (Last modified on June 2, 2026)  |  5 min  |  953 words  |  Martijn Hemeryck

Last Saturday, my new phone arrived in the mail. As a techie, I was naturally delighted to get my new treat up and running. Both my old and my new phone are Android phones and I was surprised to see how (shockingly) easy it was to migrate all my stuff. Not all settings were migrated directly though; mostly passwords would need to be set up again.

Since I did use gnu pass + GPG for my password management as described in my previous password management post earlier this year, I figured this would be quite easy to do!

[Read More]
Tags: gpg pass git yubikey note-to-self 

Updating GPG subkeys

My yearly yubikey GPG subkey rotation process

 Posted on July 9, 2019  (Last modified on June 2, 2026)  |  3 min  |  522 words  |  Martijn Hemeryck

This is just a list of things to consider when updating my GPG subkeys (encryption, signing, authentication) for the particular setup I use on a daily basis:

  1. one master key without any expiry date to generate and revoke subkeys
  2. I use pass as my password manager.
    1. the basic idea is that it’s a command-line password manager that uses gpg under the hood for encrypting / decrypting the passwords.
    2. the passwords are encrypted with an encryption subkey
    3. pass allows managing its history with git, linking the storage on a remote gitlab / github server.
  3. the subkeys are only stored on my yubikey
  4. the subkeys are always valid for a period of one year
  5. the yubikey I use also has NFC, which makes it possible to use it on my android phone as well

I recently needed to go through this process and did forget to re-encrypt …

[Read More]
Tags: gpg yubikey note-to-self