"allow-non-selfsigned-uid"

L. Sassaman rabbi at quickie.net
Fri Feb 4 20:31:06 CET 2000


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Wed, 2 Feb 2000, Werner Koch wrote:

> On Wed, 2 Feb 2000, L. Sassaman wrote:
> 
> > Would it be possible tonarrow this option down to be
> > "allow-non-selfsigned-uid-if-main-uid"? I find most rsa keys I deal with
> 
> So waht is the main uid?  The newest one or the one with the most
> signatures on it?  

Ok. So let me modify my proposal here. What about an option for
"allow-non-selfsigned-uid-if-only-uid". There is obviously no risk of this
uid having been attached to the key without the key generator's
knowledge...
 
> The best solution to this problem is by asking the owner to sign his
> own key.

Yes, that is true. But you must certainly be aware that people don't
always comply.
 
> The allow-non* option has been intruduced because quite a couple of
> folks here in Germany use a hacked version of PGP 2 which splits
> signature and encryption key into 2 real keys with some magic strings
> in the user ID.

Interesting. What version is that?
 
> -- 
> Werner Koch at guug.de           www.gnupg.org           keyid 621CC013
> 

__

L. Sassaman

System Administrator                |  "All of the chaos
Technology Consultant               |   Makes perfect sense..."
icq.. 10735603                      |
pgp.. finger://ns.quickie.net/rabbi |              --Joe Diffie



-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.1 (GNU/Linux)
Comment: OpenPGP Encrypted Email Preferred.

iD8DBQE4m31fPYrxsgmsCmoRArRbAJ93G9np6ltzxrhk2LN9j2nI3idyrwCfdbWe
CTLTpiD6o6jLEfwtaeqA1V4=
=3CZk
-----END PGP SIGNATURE-----



More information about the Gnupg-devel mailing list