Hey guys, I wanted to ask you how you manage your gpg keys? Having them in plaintext all the time on my hard drive feels unsecure.
I have my ssh keys in a password manager (KeePassXC) that only exposes them to the keyagend, when unlocked. Do you know if something like that exists for pgp too?
You should not store your privates keys unencrypted. In fact by default your keys are stored password protected just as if you’d store them in keepass.
How secure is the password protection?
Depends on how strong your password is and the environment you are entering the password in