Quote from: random0 on July 22, 2012, 04:38 pmIs it possible to export the private key without its public key?Yes. You can do this to back-up your private keys for example. But remember to keep secret keys secret!Don't be uploading them to any 3rd party service or similar.Quote from: random0 on July 22, 2012, 04:38 pmCan someone get the public key from its private key?I'm not certain, I don't think it is. But it is impossible to obtain a private key from a public key, which is the pivotal thing, since you're handing out your public key everywhere.Quote from: random0 on July 22, 2012, 04:38 pmCan someone extract (crack, bruteforce) the password from a private key? Perhaps not 'from' the private key per se, but somebody can try to brute force your passphrase if they have your private key so they can impersonate yourself. So, make sure it's a nice long complex password you can remember easily (slightly non-trival exercise there).Quote from: random0 on July 22, 2012, 04:38 pmAm I still relatively safe if the password was complex enough?Yes, absolutely. My password wouldn't be broken for many trillions of years with current computer power.However, side channel attacks are possible such as key logging. You can use a virtual keyboard to dodgemost types of keyloggers and there are other defensive techniques too. Ideally however, you won't needto use such measures because if a keylogger is installed on your machine it means that your anonymity hasalready been broken. So, the first level of defense is always strong anonymity measures, like not yappingabout the game last night or the latest pizza you ate at a particular restaurant in a specific city and so forth.Quote from: random0 on July 23, 2012, 12:35 amBut even if I only import the private key block, it still imports the public key as well. Tried to import from clipboard and from a file but the same thing happened.Is this a bug or is the public key embedded into the private key block?I don't think so. You just exported your PGP key. Your PGP key is both your secret and public keys together, that is all. You could export only your private key probably if you hunt down the correct settings on the GUI or used the command line correctly.Your public key and private key blocks are not embedded into each other, they are separate pieces of information. If it still bothers you that your public key is being exported with your private key, then just get rid of it. But there's no reason to do that, and if you want to import your PGP key to a new type of PGP software you're going to need both of them anyway.