Wow, good thing I still use RSA keys and have a short expiration on all of them plus a plan for quick revocation if any are compromised :)
@jakehamilton out of interest, how do you deal with revocation? thinking mostly of ssh access to servers
@puppy all of my ssh stuff is hooked up via gpg. I have revocation files ready to go on a usb drive which I can push up to key servers which would prevent any new usage of my keys. Existing users would need to fetch the update, but I would be shouting it from the rooftops. As well, my subkeys expire after a year so I can renew them every 12 months and confirm I am still in possession of the private key.