11Oca
Managing SSH authorized keys exported from OpenPGP keys
One of the benefits of using OpenPGP authentication subkeys instead of arbitrarily created SSH keyfiles, is key expiration and revocation.
While there is plenty of documentation on how to use OpenPGP for SSH Servers, I could not find anything (documentation or software) on how to automatically manage the exported public keys on the servers in case they expired or got revoked.
I have a hard time believing that we all go through all the hoops and hurdles of using OpenPGP in combination with SSH, but then let the authorized_keys file just sit on the server forever, no matter what.
