"allow-non-selfsigned-uid"
L. Sassaman
rabbi at quickie.net
Fri Feb 4 20:31:06 CET 2000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Wed, 2 Feb 2000, Werner Koch wrote:
> On Wed, 2 Feb 2000, L. Sassaman wrote:
>
> > Would it be possible tonarrow this option down to be
> > "allow-non-selfsigned-uid-if-main-uid"? I find most rsa keys I deal with
>
> So waht is the main uid? The newest one or the one with the most
> signatures on it?
Ok. So let me modify my proposal here. What about an option for
"allow-non-selfsigned-uid-if-only-uid". There is obviously no risk of this
uid having been attached to the key without the key generator's
knowledge...
> The best solution to this problem is by asking the owner to sign his
> own key.
Yes, that is true. But you must certainly be aware that people don't
always comply.
> The allow-non* option has been intruduced because quite a couple of
> folks here in Germany use a hacked version of PGP 2 which splits
> signature and encryption key into 2 real keys with some magic strings
> in the user ID.
Interesting. What version is that?
> --
> Werner Koch at guug.de www.gnupg.org keyid 621CC013
>
__
L. Sassaman
System Administrator | "All of the chaos
Technology Consultant | Makes perfect sense..."
icq.. 10735603 |
pgp.. finger://ns.quickie.net/rabbi | --Joe Diffie
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.1 (GNU/Linux)
Comment: OpenPGP Encrypted Email Preferred.
iD8DBQE4m31fPYrxsgmsCmoRArRbAJ93G9np6ltzxrhk2LN9j2nI3idyrwCfdbWe
CTLTpiD6o6jLEfwtaeqA1V4=
=3CZk
-----END PGP SIGNATURE-----
More information about the Gnupg-devel
mailing list