Hi Paul,

On 2017-10-27 12:57:46, you wrote to me:

 Wv>> This explains it very well:

 PH> It does, thanks :)

 PH> I think I will set mine 3 years in to the future and then extend
thereafter
 PH> as needed.

Seems like good practice...

 PH> I also need to consider  if this current key is technically strong
 PH> enough now or if I should shutter it and create a new one using a
 PH> stronger process and set that one to expire 3 years from now?

That's what I'm doing. I set my 1024bit DSA from 1998 to expire in 2 years,
and intend to use my newly created 4096bit (the maximum) RSA key from now on.

Bye, Wilfred.

--- FMail-lnx64 2.1.0.18-B20170815
 * Origin: FMail development HQ (2:280/464)