How to trust a key only for users in one domain
Chris Covington
Ccovington at logis.org
Thu Dec 13 20:03:53 CET 2007
That works - thanks!
-----Original Message-----
From: gnupg-users-bounces+ccovington=logis.org at gnupg.org [mailto:gnupg-users-bounces+ccovington=logis.org at gnupg.org] On Behalf Of David Shaw
Sent: Thursday, December 13, 2007 11:46 AM
To: gnupg-users at gnupg.org
Subject: Re: How to trust a key only for users in one domain
On Thu, Dec 13, 2007 at 10:19:07AM -0600, Chris Covington wrote:
> What would the command line be in GnuPG to sign a key and specify a
> domain, so that if that signed key signs another key in the
> specified domain, the other key would be listed as valid?
>
> For instance if I want to sign the gnupgAdmin at example.org public key
> so that any key that the gnupgAdmin signs is listed as valid, if the
> key is for a user in the example.org domain. This is typically
> referred to as a "Trusted Introducer" signature and is listed in RFC
> 4880 section 5.2.3.14.
Use "gpg --edit-key (thekey)" and then "tsign". You will be asked the
usual signature questions, and also the trust level (RFC-4880 section
5.2.3.13) and then the domain.
David
_______________________________________________
Gnupg-users mailing list
Gnupg-users at gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users
More information about the Gnupg-users
mailing list